CVE-2001-1331

mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via the command line options 1 -u or 2 -c, which do not drop privileges and follow symlinks...

CVE-2002-0296

The CVE-2002-0296 issue affects Tarantella Enterprise 3, where local users can overwrite arbitrary files through a symlink attack on the spinning temporary file. Root cause: improper handling of temporary files enabling a symlink-based overwrite. Impact: local/x local user access with partial int...

CVE-2001-1331

CVE-2001-1331 affects the man-db package’s mandb tool. The vulnerability exists in mandb before version 2.3.16-3, where invoking mandb with -u or -c does not drop privileges and does not drop file-system symlinks, enabling local users to overwrite arbitrary files. Impact is local, potentially ena...

CVE-2001-1268

Directory traversal vulnerability in Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. dot dot in an extracted filename...

CVE-2002-0296

The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a symlink attack on the "spinning" temporary file...

CVE-2001-1346

Computer Associates ARCserveIT 6.61 and 6.63 also called ARCservIT allows local users to overwrite arbitrary files via a symlink attack on the temporary files 1 asagent.tmp or 2 inetd.tmp...

DCShop Beta 1.0 - Form Manipulation

source: https://www.securityfocus.com/bid/4356/info DCShop Beta is a freely available shopping cart system, written in Perl. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. It is possible to overwrite setup files .setup by submitting attacker-supplied...

CVE-2002-0141

Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file...

CVE-2001-1101

The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of '.log' files when saving files, which allows 1 remote authenticated users to overwrite arbitrary files ending in '.log', or 2 local users to overwrite arbitrary files via...

CVE-2001-1197

klprfaxfilter in KDE2 KDEUtils allows local users to overwrite arbitrary files via a symlink attack on the klprfax.filter temporary file...

CVE-2001-1198

RLPDaemon in HP-UX 10.20 and 11.0 allows local users to overwrite arbitrary files and gain privileges by specifying the target file in the -L option...

CVE-2001-1102

CVE-2001-1102 affects Check Point FireWall-1 on Solaris, vulnerable in versions 3.0b through 4.1. A symlink attack on temporary policy files ending in .cpp, which are world-writable, allows local users to overwrite arbitrary files, impacting confidentiality, integrity, and availability. The descr...

CVE-2001-1101

The CVE-2001-1101 entry concerns the Check Point FireWall-1 GUI on Solaris (3.0b–4.1 SP2). The vulnerability arises in the Log Viewer function, which does not validate the existence of .log files when saving, enabling: (1) remote authenticated users to overwrite arbitrary files ending in .log, an...

CVE-2002-0137

CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file...

CVE-2001-0625

ftpdownload in Computer Associates InoculateIT 6.0 allows a local attacker to overwrite arbitrary files via a symlink attack on /tmp/ftpdownload.log...

CVE-1999-1263

Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file...

CVE-1999-1328

linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files and gain root access via a symlink attack...

CVE-1999-1386

Perl 5.00404 and earlier follows symbolic links when running with the -e option, which allows local users to overwrite arbitrary files via a symlink attack on the /tmp/perl-eaXXXXX file...

CVE-2001-0730

split-logfile in Apache 1.3.20 allows remote attackers to overwrite arbitrary files that end in the .log extension via an HTTP request with a / slash in the Host: header...

CVE-1999-1177

Directory traversal vulnerability in nph-publish before 1.2 allows remote attackers to overwrite arbitrary files via a .. dot dot in the pathname for an upload operation...