2 matches found
Unauthorized Access Vulnerability in Phisung House Website Building System
Phaethon House is an online notebook for operators and maintainers. An unauthorized access vulnerability exists in the Phaidon House builder system, which can be exploited by an attacker to arbitrarily edit site content...
kernel: don't allow splice() to files opened with O_APPEND
The dosplicefrom function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the OAPPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file...