Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2183 matches found

Tenable Nessus
Tenable Nessusadded 2005/02/14 12:0 a.m.22 views

GLSA-200502-01 : FireHOL: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200502-01 FireHOL: Insecure temporary file creation FireHOL insecurely creates temporary files with predictable names. Impact : A local attacker could create malicious symbolic links to arbitrary system files. When FireHOL is...

2.1CVSS5.6AI score0.00348EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2005/01/12 6:38 p.m.32 views

Low: Red Hat Security Advisory: unarj security update

An updated unarj package that fixes a buffer overflow vulnerability and a directory traversal vulnerability is now available. The unarj program is an archiving utility which can extract ARJ-compatible archives. A buffer overflow bug was discovered in unarj when handling long file names contained ...

10CVSS6.2AI score0.07369EPSS
Exploits0References3
NVD
NVDadded 2004/12/31 5:0 a.m.14 views

CVE-2004-0824

PPPDialer for Mac OS X 10.2.8 through 10.3.5 allows local users to overwrite system files via a symlink attack on PPPDialer log files...

2.1CVSS6.3AI score0.00649EPSS
Exploits0References6
Packet Storm
Packet Stormadded 2004/12/20 12:0 a.m.28 views

DilAurDimag-Advisory-07-20-12-2004.txt

------------------------------------------------------------------------------------ DilAurDimag - Advisory 07 - 20/12/04 ------------------------------------------------------------------------------------ Program: ChangePassword, a YP/Samba/Squid password-changing tool Homepage:...

7.4AI score
Exploits0
Slackware Linux
Slackware Linuxadded 2004/10/04 7:52 p.m.17 views

[slackware-security] getmail

New getmail packages are available for Slackware 9.1, 10.0 and -current to fix a security issue. If getmail is used as root to deliver to user owned files or directories, it can be made to overwrite system files. More details about this issue may be found in the Common Vulnerabilities and Exposur...

6.5AI score
Exploits0
CVE
CVEadded 2004/09/01 4:0 a.m.41 views

CVE-2004-0306

CVE-2004-0306 affects several Cisco ONS platforms (ONS 15327 prior to 4.1(3); ONS 15454 prior to 4.6(1); ONS 15454 SD prior to 4.1(3); Cisco ONS 15600 prior to 1.3(0)) where TFTP is enabled on UDP port 69 by default. This allows remote attackers to GET or PUT ONS system files on the current activ...

5CVSS6.9AI score0.02117EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessusadded 2004/08/30 12:0 a.m.29 views

GLSA-200405-09 : ProFTPD Access Control List bypass vulnerability

The remote host is affected by the vulnerability described in GLSA-200405-09 ProFTPD Access Control List bypass vulnerability ProFTPD 1.2.9 introduced a vulnerability that allows CIDR-based ACLs such as 10.0.0.1/24 to be bypassed. The CIDR ACLs are disregarded, with the net effect being similar t...

7.5CVSS5.6AI score0.09197EPSS
Exploits0References2
securityvulns
securityvulnsadded 2004/08/19 12:0 a.m.23 views

CVS information leak

By using undocumented -X key for 'cvs history' command it's possible to check existance of system files...

1.2AI score
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2004/08/19 12:0 a.m.51 views

[Full-Disclosure] iDEFENSE Security Advisory 08.16.04: CVS Undocumented Flag Information Disclosure Vulnerability

CVS Undocumented Flag Information Disclosure Vulnerability iDEFENSE Security Advisory 08.16.04 www.idefense.com/application/poi/display?id=130&type=vulnerabilities August 16, 2004 I. BACKGROUND CVS Concurrent Versions System is an open-source network-transparent version control system. II...

5CVSS0.5AI score0.024EPSS
Exploits0
Gentoo Linux
Gentoo Linuxadded 2004/07/08 12:0 a.m.28 views

Shorewall : Insecure temp file handling

Background Shorewall is a high level tool for configuring Netfilter, the firewall facility included in the Linux Kernel. Description Shorewall uses temporary files and directories in an insecure manner. A local user could create symbolic links at specific locations, eventually overwriting other...

4.6CVSS6.2AI score0.0034EPSS
Exploits0
Exploit DB
Exploit DBadded 2004/04/19 12:0 a.m.63 views

UTempter 0.5.x - Multiple Local Vulnerabilities

source: https://www.securityfocus.com/bid/10178/info It has been reported that utempter is affected by multiple local vulnerabilities. The first issue is due to an input validation error that causes the application to exit improperly; facilitating symbolic link attacks. The second issue is due to...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2004/03/25 12:0 a.m.30 views

[NT] Nexgen FTP Server Directory Traversal Vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

0.3AI score
Exploits0
exploitpack
exploitpackadded 2004/02/25 12:0 a.m.9 views

MTools 3.9.x - MFormat Local Privilege Escalation

MTools 3.9.x - MFormat Local Privilege Escalation source: https://www.securityfocus.com/bid/9746/info It has been reported that mformat is prone to a privilege escalation vulnerability when installed as a setUID application. This issue is due to a design error allowing a user to create any...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2004/02/25 12:0 a.m.22 views

MTools 3.9.x - 'MFormat' Local Privilege Escalation

source: https://www.securityfocus.com/bid/9746/info It has been reported that mformat is prone to a privilege escalation vulnerability when installed as a setUID application. This issue is due to a design error allowing a user to create any arbitrary files as the root user. A local attacker could...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2004/02/18 12:0 a.m.17 views

Fools Workshop Owls Workshop 1.0 - resultsignore.php Arbitrary File Access

Fools Workshop Owls Workshop 1.0 - resultsignore.php Arbitrary File Access source: https://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2004/02/18 12:0 a.m.24 views

Fool's Workshop Owl's Workshop 1.0 - '/glossaries/index.php?File' Arbitrary File Access

source: https://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these issues, an attacker may be able t...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2004/02/18 12:0 a.m.20 views

Fool's Workshop Owl's Workshop 1.0 - 'newmultiplechoice.php' Arbitrary File Access

source: https://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these issues, an attacker may be able t...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2004/02/18 12:0 a.m.23 views

Fool's Workshop Owl's Workshop 1.0 - 'resultsignore.php' Arbitrary File Access

source: https://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these issues, an attacker may be able t...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2004/02/18 12:0 a.m.23 views

Fool's Workshop Owl's Workshop 1.0 - 'multiplechoice/index.php' Arbitrary File Access

source: https://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these issues, an attacker may be able t...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2004/02/16 12:0 a.m.15 views

ShopCartCGI 2.3 - genindexpage.cgi Traversal Arbitrary File Access

ShopCartCGI 2.3 - genindexpage.cgi Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/9670/info It has been reported that ShopcartCGI is prone to a remote file disclosure vulnerability. This issue is due to insufficient validation of user-supplied input. Upon successful...

0.3AI score
Exploits0
Rows per page
Query Builder