wget: FTP symlink arbitrary filesystem access

A flaw was found in the way Wget handled symbolic links. A malicious FTP server could allow Wget running in the mirror mode using the '-m' command line option to write an arbitrary file to a location writable to by the user running Wget, possibly leading to code execution...

DEBIAN-CVE-2014-4877

Absolute path traversal vulnerability in GNU Wget before 1.16, when recursion is enabled, allows remote FTP servers to write to arbitrary files, and consequently execute arbitrary code, via a LIST response that references the same filename within two entries, one of which indicates that the...

CVE-2014-3697

The CVE-2014-3697 issue affects Pidgin for Windows, where the untar_block function in win32/untar.c allows absolute path traversal via a tar archive’s drive name in a smiley theme. This enables remote attackers to write files to arbitrary locations on the victim system. Public references indicate...

CVE-2014-3697

Absolute path traversal vulnerability in the untarblock function in win32/untar.c in Pidgin before 2.10.10 on Windows allows remote attackers to write to arbitrary files via a drive name in a tar archive of a smiley theme...

DEBIAN-CVE-2014-7206

The changelog command in Apt before 1.0.9.2 allows local users to write to arbitrary files via a symlink attack on the changelog file...

CVE-2014-8086

Race condition in the ext4filewriteiter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service file unavailability via a combination of a write action and an FSETFL fcntl operation for the ODIRECT flag...

DEBIAN-CVE-2014-8086

Race condition in the ext4filewriteiter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service file unavailability via a combination of a write action and an FSETFL fcntl operation for the ODIRECT flag...

CVE-2014-8086

CVE-2014-8086 : A race condition in the Linux kernel’s ext4_file_write_iter (fs/ext4/file.c) up to version 3.17 can enable a local attacker to cause a denial of service (file unavailability) by racing a write action with an F_SETFL O_DIRECT flag operation. Affected software is the Linux kernel be...

CVE-2014-8086

Race condition in the ext4filewriteiter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service file unavailability via a combination of a write action and an FSETFL fcntl operation for the ODIRECT flag...

CVE-2014-8086

Race condition in the ext4filewriteiter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service file unavailability via a combination of a write action and an FSETFL fcntl operation for the ODIRECT flag...

DrayTek VigorACS SI 1.3.0 File Write / LFI / File Upload

DrayTek VigorACS SI /ACSServer/ We found that most of the VigorACS SI deployments are using the default http authentication settings acs/password. This is not so much a software vulnerability but more a configuration issue. 2.2 Unauthenticated arbitrary file read/write functionality via...

CVE-2014-7206

The changelog command in Apt before 1.0.9.2 allows local users to write to arbitrary files via a symlink attack on the changelog file...

UBUNTU-CVE-2014-7206

The changelog command in Apt before 1.0.9.2 allows local users to write to arbitrary files via a symlink attack on the changelog file...

CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

DEBIAN-CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

CVE-2014-5459

CVE-2014-5459 affects the PEAR REST class (REST.php) in PEAR for PHP up to 5.6.0. The vulnerability arises from insecure temporary files created in /tmp/pear/cache (rest.cachefile and rest.cacheid) used by retrieveCacheFirst and useLocalCache, enabling a local attacker to write to arbitrary files...

CVE-2014-5319

CVE-2014-5319 affects SLFileManager for Android (S-Link, Inc.) up to version 1.2.5. A flaw in processing file names enables a directory traversal (CWE-22) vulnerability, allowing a remote unauthenticated attacker to create or overwrite files in directories the app can access. The condition is des...

UBUNTU-CVE-2014-7169

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the...

CVE-2014-2375

CVE-2014-2375 affects Ecava IntegraXor SCADA Server (Stable 4.1.4360 and earlier; Beta 4.1.4392 and earlier) via the CSV export feature, which allows an unauthenticated user to read or write arbitrary files and potentially cause a denial of service. The root cause is External Control of File Name...

WordPress Advanced Access Manager 2.8.2 File Write / Code Execution

WordPress Advanced Access Manager plugin version 2.8.2 suffers from arbitrary file write and code execution vulnerabilities. Details ================ Software: Advanced Access Manager Version: 2.8.2 Homepage: http://wordpress.org/plugins/advanced-access-manager/ Advisory report:...