CVE-2025-53906

Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim’s zip.vim plugin can allow overwriting of arbitrary files when opening specially crafted zip archives. Impact is low because this exploit requires direct user interaction. However, successful...

CVE-2025-36631

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrite arbitrary local system files with log content at SYSTEM privilege...

Geany .18 - Local File Overwrite

!/bin/sh redbull.sh AKA Geany 0.18 Local File Overwrite Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 10.06.2009 I was checking out some IDEs and decided on Geany. Nice interface, good features, but it doesn't defend against symbolic links when writing the run...

Office Viewer Active-X Control File Overwrite

======================================================================================= Author: Houssamix ======================================================================================= Office Viewer ActiveX Control v 3.0.1 Remote File Overwrite exploit Tested on Windows XP Professional S...

CVE-2008-5135

os-prober in os-prober 1.17 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/mounted-map or 2 /tmp/raided-map temporary file. NOTE: the vendor disputes this issue, stating "the insecure code path should only ever run inside a d-i environment, which has no non-roo...

Flux CMS 1.5.0 - 'loadsave.php' Arbitrary File Overwrite

?php / ------------------------------------------------------------------------ Flux CMS = 1.5.0 loadsave.php Remote Arbitrary File Overwrite Exploit ------------------------------------------------------------------------ author...: EgiX mail.....: n0b0d13satgmaildotcom link.....:...

ARPUSCe - Local File Overwrite (setuid)

ARPUSCe - Local File Overwrite setuid / Copyright Kevin Finisterre - ripped from my perlex.c DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU KNOW WHAT...

Microsoft Internet Explorer 5 - ActiveX Object For Constructing Type Libraries For Scriptlets File Write

Microsoft Internet Explorer 5.0 for Windows 95/Windows 98/Windows NT 4 ActiveX "Object for constructing type libraries for scriptlets" Vulnerability source: https://www.securityfocus.com/bid/598/info The 'scriptlet.typlib' ActiveX control can create, edit, and overwrite files on the local disk...

Slackware Linux 3.4 - 'netconfig' Temporary File

source: https://www.securityfocus.com/bid/81/info netconfig creates the file /tmp/tmpmsg insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/tmpmsg to any file and wait for root to run the program. This will clober the target file. The file created has...

SGI IRIX 5.36.2 SGI license_oeo 1.0 LicenseManager - NETLS_LICENSE_FILE Local Privilege Escalation

SGI IRIX 5.36.2 SGI licenseoeo 1.0 LicenseManager - NETLSLICENSEFILE Local Privilege Escalation source: https://www.securityfocus.com/bid/72/info Under normal operation LicenseManager1M is a program used to view and manage FLEXlm and NetLS software licenses. Unfortunately, a set of vulnerabilitie...