CVE-2009-1577

Multiple stack-based buffer overflows in the putstring function in find.c in Cscope before 15.6 allow user-assisted remote attackers to execute arbitrary code via a long 1 function name or 2 symbol in a source-code file...

Debian: Security Advisory (DSA-610-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2006-4262

Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via multiple vectors including 1 a long pathname that is not properly handled during file list parsing, 2 long pathnames that result from path...

CVE-2004-0996

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack...

CVE-2004-0996

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack...

Cscope <= 15.5 Symlink Vulnerability Exploit

Exploit for linux platform in category local exploits ============================================ Cscope include include include define BSIZE 64 int mainint ac, char av pidt cur; uint i=0, lst; char bufferBSIZE + 1; fprintfstdout, "\n -- Cscope Exploit --\n"\ " version 15.5 and minor \n" \ "...

GLSA-200412-11 : Cscope: Insecure creation of temporary files

The remote host is affected by the vulnerability described in GLSA-200412-11 Cscope: Insecure creation of temporary files Cscope creates temporary files in world-writable directories with predictable names. Impact : A local attacker could create symbolic links in the temporary files directory,...

DSA-610-1 cscope - insecure temporary file

Bulletin has no description...

CVE-2004-0996

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack...

advRX181104.txt

| REXOTECdotCOM | |=-----= ADV RX171104 - Cscope :: Race condition on temporary file -----=| | | |=--- - INFORMATION ----------------------------------------------------------------------| VulnDiscovery: 2003/05/21 Release Date : 2004/11/17 Author : Gangstuck / Psirac Application : Cscope Affecte...

RX171104 Cscope v15.5 and minors - symlink vulnerability - advisory, exploit and patch.

| REXOTECdotCOM | |=-----= ADV RX171104 - Cscope :: Race condition on temporary file -----=| | | |=--- - INFORMATION ----------------------------------------------------------------------| VulnDiscovery: 2003/05/21 Release Date : 2004/11/17 Author : Gangstuck / Psirac [email protected]...

Cscope 13.015.x - Insecure Temporary File Creation (1)

Cscope 13.015.x - Insecure Temporary File Creation 1 source: https://www.securityfocus.com/bid/11697/info Cscope creates temporary files in an insecure way. A design error causes the application to fail to verify the presence of a file before writing to it. During execution, the utility reportedl...

cscope -- symlink attack vulnerability

cscope is vulnerable to a symlink attack which could lead to an attacker overwriting arbitrary files with the permissions of the user running cscope...