3 matches found
Ubuntu: Security Advisory (USN-412-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2007-0159
Directory traversal vulnerability in the GeoIPupdatedatabasegeneral function in libGeoIP/GeoIPUpdate.c in GeoIP 1.4.0 allows remote malicious update servers possibly only update.maxmind.com to overwrite arbitrary files via a .. dot dot in the database filename, which is returned by a request to...
CVE-2007-0159
CVE-2007-0159 describes a directory traversal in the GeoIP project. The vulnerable component is the GeoIP_update_database_general function in libGeoIP/GeoIPUpdate.c (GeoIP 1.4.0). A malicious update server (potentially update.maxmind.com) can cause the updater to write to arbitrary files by provi...