6 matches found
CVE-2006-1279
CGI::Session 4.03-1 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by 1 Driver::File, 2 Driver::dbfile, and possibly 3 Driver::sqlite...
CVE-2006-1280
CGI::Session 4.03-1 does not set proper permissions on temporary files created in 1 Driver::File and 2 Driver::dbfile, which allows local users to obtain privileged information, such as session keys, by viewing the files...
CVE-2006-1279
CGI::Session 4.03-1 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by 1 Driver::File, 2 Driver::dbfile, and possibly 3 Driver::sqlite...
CVE-2006-1279
CGI::Session 4.03-1 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by 1 Driver::File, 2 Driver::dbfile, and possibly 3 Driver::sqlite...
CVE-2006-1279
CVE-2006-1279 affects CGI::Session 4.03-1. The vulnerability allows local users to overwrite arbitrary files by exploiting a symlink attack on temporary files used by the drivers File, db_file, and possibly sqlite. The issue is a local-privilege/file-write vulnerability rather than a remote-execu...
CVE-2006-1280
CGI::Session 4.03-1 does not set proper permissions on temporary files created in 1 Driver::File and 2 Driver::dbfile, which allows local users to obtain privileged information, such as session keys, by viewing the files...