Lucene search
+L

1490 matches found

Cvelist
Cvelist
added 2001/07/27 4:0 a.m.19 views

CVE-2001-0556

The Nirvana Editor NEdit 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on 1 backup files or 2 temporary files used when nedit prints a file or portions of a file...

6.1AI score0.00517EPSS
Exploits1References7
CVE
CVE
added 2001/05/24 4:0 a.m.54 views

CVE-2001-0417

The CVE-2001-0417 entry concerns Kerberos 4 (krb4) where local users can overwrite arbitrary files via a symlink attack on new ticket files. The connected records corroborate a local-privilege impact vector with a partial integrity impact, and a low overall CVSS score (2.1/10, AV:L/AC:L/Au:N/I:P/...

2.1CVSS6.8AI score0.00412EPSS
Exploits1References2Affected Software2
CVE
CVE
added 2001/05/07 4:0 a.m.54 views

CVE-2001-0109

CVE-2001-0109 affects SuSE 7.0 and earlier, where the component rctab can be manipulated by a local user through a symlink attack on the temporary file rctmp , allowing creation or overwriting of arbitrary files. The vulnerability is due to insecure handling of temporary files leading to local pr...

1.2CVSS6.7AI score0.00752EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.72 views

CVE-2001-0117

CVE-2001-0117 concerns diffutils’ sdiff 2.7, where sdiff creates temporary files insecurely, enabling a local user to overwrite files via a symlink attack. The issue affects diffutils in affected distributions (e.g., Red Hat advisories note a temporary-file handling vulnerability in sdiff). Explo...

1.2CVSS6.2AI score0.00373EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.57 views

CVE-2001-0222

CVE-2001-0222 affects Webmin 0.84 and earlier. The vulnerability is a local, file-overwrite via a symlink attack, enabling local users to create or overwrite arbitrary files on the system. The available sources (NVD/CVE listing and Nessus plugin linking CVE-2001-0222 with Webmin 0.85+ family) con...

1.2CVSS6.4AI score0.00339EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.61 views

CVE-2001-0118

CVE-2001-0118 affects rdist 6.1.5 and describes a local vulnerability where an attacker can overwrite arbitrary files via a symlink attack. The Connected documents corroborate the issue as a local symlink-based overwrite vulnerability. No specific remediation, affected versions beyond 6.1.5, expl...

1.2CVSS6.8AI score0.00298EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.48 views

CVE-2001-0059

CVE-2001-0059 : Solaris’s patchadd is vulnerable to a local symlink attack that allows a local user to overwrite arbitrary files. This affects the patchadd utility used on Solaris, with a CVSSv2 base score of 6.2 (MEDIUM) and an impact of Confidentiality=Complete, Integrity=Complete, Availability...

6.2CVSS6.7AI score0.00695EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.26 views

CVE-2001-0140

arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations...

6.3AI score0.00298EPSS
Exploits0References4
CVE
CVE
added 2001/05/07 4:0 a.m.50 views

CVE-2001-0069

CVE-2001-0069 affects the Debian GNU/Linux package dialog prior to version 0.9a-20000118-3bis. The vulnerability is a symlink attack that allows a local user to overwrite arbitrary files. The issue arises from a race condition involving symlinks, enabling manipulation of file targets by a non-pri...

2.1CVSS6.7AI score0.00404EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2001/03/12 5:0 a.m.25 views

CVE-2001-0138

privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack...

1.2CVSS6.3AI score0.00298EPSS
Exploits0References5
CVE
CVE
added 2001/01/22 5:0 a.m.119 views

CVE-2000-0992

CVE-2000-0992 is linked to a directory traversal vulnerability in scp for OpenSSH, with the SUSE page noting OpenSSH before 3.4p1 and that this may be a rediscovery of CVE-2000-0992. The connected documents do not provide full technical details (exact affected versions, root cause specifics, or a...

5CVSS6.5AI score0.0567EPSS
Exploits1References4Affected Software2
CVE
CVE
added 2001/01/22 5:0 a.m.44 views

CVE-2000-0702

The CVE-2000-0702 issue affects HP-UX 11.00 (S008net.init) where the net.init rc script could be abused by a local user via a symlink attack from /tmp/stcp.conf to a targeted file, allowing overwriting of arbitrary files. The vulnerability is local and affects file integrity and confidentiality (...

7.2CVSS6.7AI score0.01151EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2000/12/19 5:0 a.m.40 views

CVE-2000-1134

Multiple shell programs on various Unix systems, including 1 tcsh, 2 csh, 3 sh, and 4 bash, follow symlinks when processing redirects aka here-documents or in-here documents, which allows local users to overwrite files of other users via a symlink attack...

6.2AI score0.01415EPSS
Exploits1References19
Positive Technologies
Positive Technologies
added 2000/12/19 12:0 a.m.17 views

PT-2000-1902 · Openssh +1 · Sshd +1

Name of the Vulnerable Software and Affected Versions: sshd versions 1.2.xx Description: A directory traversal issue in the scp component of sshd allows a remote malicious scp server to overwrite arbitrary files using a .. dot dot attack. Recommendations: For sshd versions 1.2.xx, consider...

10CVSS8AI score0.99506EPSS
Exploits208References337
exploitpack
exploitpack
added 2000/11/21 12:0 a.m.14 views

Solaris 2.x7.08 - Catman Race Condition (1)

Solaris 2.x7.08 - Catman Race Condition 1 source: https://www.securityfocus.com/bid/2149/info catman is a utility for creating preformatted man pages, distributed as part of the Solaris Operating Environment. A problem exists which could allow local users to overwrite or corrupt files owned by...

7.4AI score
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2000/11/20 12:0 a.m.4 views

FreeBSD-SA-00:71.mgetty

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:71 Security Advisory FreeBSD, Inc. Topic: mgetty can create or overwrite files Category: ports Module: mgetty Announced: 2000-11-20 Credits: Stan Bubrouski Affects: Ports...

5.8AI score
Exploits0
exploitpack
exploitpack
added 2000/11/19 12:0 a.m.13 views

HP-UX 11.0010.20 crontab - Overwrite Files

HP-UX 11.0010.20 crontab - Overwrite Files !/bin/sh HP-UX 11.00/10.20 crontab Kyong-won,Cho [email protected] Usage : ./crontab.sh if -z "$1" then echo "Usage : $0 " exit fi cat /tmp/crontabexp !/bin/sh ln -sf $1 $1 EOF chmod 755 /tmp/crontabexp EDITOR=/tmp/crontabexp export EDITOR crontab -e ...

0.2AI score
Exploits0
CVE
CVE
added 2000/10/13 4:0 a.m.53 views

CVE-2000-0468

CVE-2000-0468 affects HP-UX 10.20 and 11, where a local attacker can overwrite files via a symbolic link attack. The entry indicates local access with low complexity and partial confidentiality/integrity/availability impact (CVSS v2 base 4.6). The connected documents corroborate the description b...

4.6CVSS6.7AI score0.00845EPSS
Exploits1References2Affected Software1
exploitpack
exploitpack
added 2000/08/22 12:0 a.m.29 views

HP-UX 11.0 - net.init RC Script

HP-UX 11.0 - net.init RC Script source: https://www.securityfocus.com/bid/1602/info A vulnerability exists in HP-UX, from Hewlett Packard, under certain configurations. Version 11.0 is confirmed to have this problem; other versions may also be susceptible. If the CLEARTMP option in /etc/rc.config...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/08/22 12:0 a.m.32 views

HP-UX 11.0 - net.init RC Script

source: https://www.securityfocus.com/bid/1602/info A vulnerability exists in HP-UX, from Hewlett Packard, under certain configurations. Version 11.0 is confirmed to have this problem; other versions may also be susceptible. If the CLEARTMP option in /etc/rc.config.d is set to 1, meaning enabled,...

7.4AI score
Exploits0
Rows per page
Query Builder