25 matches found
dotnet: Nuget cache poisoning on Linux via world-writable cache directory
A vulnerability was found in dotnet. This flaw allows an attacker to triage a NuGet cache poisoning on Linux via a world-writable cache directory...
CVE-2017-5397
The cache directory on the local file system is set to be world writable. Firefox defaults to extracting libraries from this cache. This allows for the possibility of an installed malicious application or tools with write access to the file system to replace files used by Firefox with their own...
DEBIAN-CVE-2015-5723
Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local...
UBUNTU-CVE-2013-5724
Phpbb3 before 3.0.11-4 for Debian GNU/Linux uses world-writable permissions for cache files, which allows local users to modify the file contents via standard filesystem write operations...
EMC Avamar: World writable cache files
Product: Avamar backup client for Linux Proberly also Unix but not tested Vendor: EMC http://www.emc.com Tested version: 6.1.100-402 Latest Vendor Notification: December 17, 2012 Vender Patch: None Vender Workaround: quoteworkaround is to run a script at the end of each backup which set the files...