6871 matches found
DEBIAN-CVE-2004-1110
The mtink status monitor before 1.0.5 for Epson printers allows local users to overwrite arbitrary files via a symlink attack on the epson temporary file...
CVE-2004-1294
The mget function in cmds.c for tnftp 20030825 allows remote FTP servers to overwrite arbitrary files via FTP responses containing file names with / slash characters...
CVE-2004-1110
The mtink status monitor before 1.0.5 for Epson printers allows local users to overwrite arbitrary files via a symlink attack on the epson temporary file...
CVE-2005-0182
The moddosevasive module 1.9 and earlier for Apache creates temporary files with predictable filenames, which could allow remote attackers to overwrite arbitrary files via a symlink attack...
CVE-2004-2569
ipmenu 0.0.3 before Debian GNU/Linux ipmenu0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file...
CVE-2004-1179
The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before 3.7.7 allows local users to overwrite arbitrary files via a symlink attack on temporary directories...
CVE-2004-2502
im-switch before 11.4-46.1 in Fedora Core 2 allows local users to overwrite arbitrary files via a symlink attack on the imswitcherPID temporary file...
CVE-2004-2462
cplay 1.49 on Linux allows local users to overwrite arbitrary files via a symlink attack on the cplaycontrol temporary file...
CVE-2004-2605
aStats 1.6.5 allows local users to overwrite arbitrary files via a symlink attack on 1 the aStats-Graphic-Signature-Generation file and 2 certain PNG image files...
CVE-2004-2569
ipmenu 0.0.3 before Debian GNU/Linux ipmenu0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file...
CVE-2004-2462
cplay 1.49 on Linux allows local users to overwrite arbitrary files via a symlink attack on the cplaycontrol temporary file...
CVE-2004-2743
upload.cgi in Mega Upload Progress Bar before 1.45 allows remote attackers to copy or overwrite arbitrary files via unspecified parameters related to names of uploaded files...
CVE-2004-1894
TEXutil in ConTEXt, when executed with the --silent option, allows local users to overwrite arbitrary files via a symlink attack on texutil.log...
CVE-2004-0906
The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary files or execute arbitrary code...
CVE-2004-1895
YaST Online Update YOU in SuSE 8.2 and 9.0 allows local users to overwrite arbitrary files via a symlink attack on you-$USER/cookies...
CVE-2004-1901
Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles...
CVE-2004-1951
xine 1.x alpha, 1.x beta, and 1.0rc through 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote attackers to overwrite arbitrary files via the 1 audio.sunaudiodevice or 2 dxr3.devicename options in an MRL link...
CVE-2004-2014
Wget 1.9 and 1.9.1 allows local users to overwrite arbitrary files via a symlink attack on the name of the file being downloaded...
CVE-2004-2473
wmFrog weather monitor 0.1.6 and other versions before 0.2.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files...
CVE-2004-2014
Wget 1.9 and 1.9.1 allows local users to overwrite arbitrary files via a symlink attack on the name of the file being downloaded...