77 matches found
CVE-2019-18575
Dell Command Configure versions prior to 4.2.1 contain an uncontrolled search path vulnerability. A locally authenticated malicious user could exploit this vulnerability by creating a symlink to a target file, allowing the attacker to overwrite or corrupt a specified file on the system...
CVE-2019-3750
Dell Command Update versions prior to 3.1 contain an Arbitrary File Deletion Vulnerability. A local authenticated malicious user with low privileges potentially could exploit this vulnerability to delete arbitrary files by creating a symlink from the "Temp\IC\ICDebugLog.txt" to any targeted file...
DEBIAN-CVE-2010-4817
pithos before 0.3.5 allows overwrite of arbitrary files via symlinks...
CVE-2010-4817
pithos before 0.3.5 allows overwrite of arbitrary files via symlinks...
MGASA-2019-0063 Updated cinnamon packages fix security vulnerability
A flaw was found in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of for example other users' icon files in onfacebrowsemenuitemactivated and onfacemenuitemactivated. These icon files are written to the respective user's $HOME/.face locatio...
CVE-2014-9983
Directory Traversal exists in RAR 4.x and 5.x because an unpack operation follows any symlinks, including symlinks contained in the archive. This allows remote attackers to write to arbitrary files via a crafted archive...
CVE-2016-6613
An issue was discovered in phpMyAdmin. A user can specially craft a symlink on disk, to a file which phpMyAdmin is permitted to read but the user is not, which phpMyAdmin will then expose to the user. All 4.6.x versions prior to 4.6.4, 4.4.x versions prior to 4.4.15.8, and 4.0.x versions prior to...
CVE-2010-4226
cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive...
PT-2014-2081 · Gnu +1 · Cpio +1
Name of the Vulnerable Software and Affected Versions: cpio versions 2007.05.10 through 2010.07.28 Description: The issue allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive. Recommendations: For versions 2007.05.10 through 2010.07.28, consider...
PHP 5.2.125.3.1 - symlink() open_basedir Bypass
PHP 5.2.125.3.1 - symlink openbasedir Bypass This is exploit from Security Audit Lab - SecurityReason labs. Author : Maksymilian Arciemowicz Script for legal use only. PHP 5.2.12 5.3.1 symlink openbasedir bypass More: SecurityReason '; ifempty$file exit; if!iswritable"." die"not writable...
DEBIAN-CVE-2009-0842
mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to read arbitrary invalid .map files via a full pathname in the map parameter, which triggers the display of partial file contents within an error message, as demonstrated by a /tmp/sekrut.map symlink...
USN-593-1: Dovecot vulnerabilities
It was discovered that the default configuration of dovecot could allow access to any email files with group "mail" without verifying that a user had valid rights. An attacker able to create symlinks in their mail directory could exploit this to read or delete another user's email. CVE-2008-1199 ...
Debian DSA-679-1 : toolchain-source - insecure temporary files
Sean Finney discovered several insecure temporary file uses in toolchain-source, the GNU binutils and GCC source code and scripts. These bugs can lead a local attacker with minimal knowledge to trick the admin into overwriting arbitrary files via a symlink attack. The problems exist inside the...
fkey 0.0.2 - Local File Accessibility
/ fkeyv0.0.2: local/remote file accessibility exploit. by: vade79/v9 [email protected] fakehalo/realhalo netris homepage/URL: http://www.freshmeat.net/projects/fkey compile: gcc xfkey.c -o xfkey syntax: ./xfkey /etc/shadow 2/savefilename bug: fkey is a finger-like daemon for accessing remote files i...
Cscope <= 15.5 Symlink Vulnerability Exploit
Exploit for linux platform in category local exploits ============================================ Cscope include include include define BSIZE 64 int mainint ac, char av pidt cur; uint i=0, lst; char bufferBSIZE + 1; fprintfstdout, "\n -- Cscope Exploit --\n"\ " version 15.5 and minor \n" \ "...
RX171104 Cscope v15.5 and minors - symlink vulnerability - advisory, exploit and patch.
| REXOTECdotCOM | |=-----= ADV RX171104 - Cscope :: Race condition on temporary file -----=| | | |=--- - INFORMATION ----------------------------------------------------------------------| VulnDiscovery: 2003/05/21 Release Date : 2004/11/17 Author : Gangstuck / Psirac [email protected]...
[SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 575-1 [email protected] http://www.debian.org/security/ Martin Schulze October 28th, 2004 http://www.debian.org/security/faq -...
CDE bug in Unixware 7.1
Hi, I'm jGgM. Unixware 7.1 dtlogin make bug reporting to /var/dt/Xerrors. but, permision of /var/dt is 777. make symlink /var/dt/Xerrors to any file. for example ln -sf /etc/.rhosts /var/dt/Xerrors and, Login from another system to Unixware machine. If another system does not have hostname,...
CVE-1999-1229
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file...
CVE-1999-1480
1 acledit and 2 aclput in AIX 4.3 allow local users to create or modify files via a symlink attack...