1475 matches found
Code injection
radiance 3R9+20080530 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/opt.fmt, b /tmp/out.fmt, c /tmp/tf.dat, d /tmp/gsf, e /tmp/sc.sh, f /tmp/il.pic, g /tmp/tl.pic, h /tmp/ds.pic, i /tmp/tfa, and j /tmp/sed temporary files, related to the 1 optics2rad, 2 pdelta, 3...
CVE-2008-4980
delqueueask in rccp 0.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cccptmp.txt temporary file...
Code injection
wims 3.62 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/env, b /tmp/sed, and c /tmp/referer-home.log temporary files, related to the 1 coqweb and 2 account.sh scripts...
Design/Logic Flaw
delqueueask in rccp 0.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cccptmp.txt temporary file...
CVE-2008-4973
i2myspell in myspell 3.1 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/i2my.1 and 2 /tmp/i2my.2 temporary files...
CVE-2008-4979
getipacctg in rancid 2.3.2a8 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/ipacct..prefixes, 2 /tmp/ipacct..sorted, 3 /tmp/ipacct..pl, and 4 /tmp/ipacct. temporary files...
CVE-2008-4973
i2myspell in myspell 3.1 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/i2my.1 and 2 /tmp/i2my.2 temporary files...
CVE-2008-4986
wims 3.62 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/env, b /tmp/sed, and c /tmp/referer-home.log temporary files, related to the 1 coqweb and 2 account.sh scripts...
CVE-2008-4972
mailgo in mgt 2.31 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mailgo temporary file...
CVE-2008-4965
liguidsoap.py in liguidsoap 0.3.8.1+2 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/liguidsoap.liq, 2 /tmp/lig..log, and 3 /tmp/emission.ogg temporary files...
CVE-2008-4981
perl.robot in realtimebattle 1.0.8 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/perl.robot.log temporary file...
CVE-2008-4968
The 1 rccs and 2 STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/sdiff. temporary file...
CVE-2008-4985
vdrleaktest in Video Disk Recorder aka vdr-dbg or vdr 1.6.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/memleaktest.log temporary file...
CVE-2008-4948
fest.pl in digitaldj 0.7.5 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ddjfest.tmp temporary file...
CVE-2008-4950
gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary files via a symlink attack on the tmp/gccross2.log temporary file. NOTE: the vendor disputes this vulnerability, stating that "There is no sense in this bug - the script ... is called under specific cross-building environments...
CVE-2008-4947
dhis-dummy-log-engine in dhis-server 5.3 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/dhis-dummy-log-engine.log temporary file...
DEBIAN-CVE-2008-4950
gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary files via a symlink attack on the tmp/gccross2.log temporary file. NOTE: the vendor disputes this vulnerability, stating that "There is no sense in this bug - the script ... is called under specific cross-building environments...
CVE-2008-4949
dist 3.5 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cil, b /tmp/pdo, and c /tmp/pdn temporary files, related to the 1 patcil and 2 patdiff scripts...
DEBIAN-CVE-2008-4952
emacs-jabber in emacs-jabber 0.7.91 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.log temporary file...
CVE-2008-4939
apertium 3.0.7 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.lex.cc, b /tmp/.deformat.l, c /tmp/.reformat.l, d /tmp/docxorig, e /tmp/docxsalida.zip, f /tmp/xlsxembed, g /tmp/xlsxorig, and h /tmp/xslxsalida.zip temporary files, related to the 1...