Lucene search
+L

6947 matches found

CVE
CVE
added 2001/01/22 5:0 a.m.50 views

CVE-2000-1178

The CVE covers the joe text editor, where on abnormal exit it follows symbolic links when creating the rescue file DEADJOE, enabling local attackers to append/overwrite files of other users’ sessions. The core issue is unsafe handling of DEADJOE links during crash/exit, allowing symlink abuse to ...

5.5CVSS5.4AI score0.0056EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.22 views

CVE-2000-0934

Glint in Red Hat Linux 5.2 allows local users to overwrite arbitrary files and cause a denial of service via a symlink attack...

6.4AI score0.00412EPSS
Exploits0References3
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.25 views

CVE-2000-1136

elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack...

6.3AI score0.0038EPSS
Exploits0References3
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.21 views

CVE-2000-0992

Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. dot dot attack...

6.4AI score0.0567EPSS
Exploits1References4
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.23 views

CVE-2000-0080

AIX techlibss allows local users to overwrite files via a symlink attack...

6.2AI score0.00302EPSS
Exploits0References2
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.17 views

CVE-2000-1178

Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes...

5.4AI score0.0056EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2001/01/22 5:0 a.m.36 views

CVE-2000-0992

Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. dot dot attack...

5CVSS6.4AI score0.0567EPSS
Exploits1
securityvulns
securityvulns
added 2001/01/16 12:0 a.m.48 views

Serious security flaw in SuSE rctab

Hi @ll, it seems that the problem described below has not been discussed on Bugtraq. Problem description ------------------- Due to a various race conditions in the init level editing script /sbin/rctab it is possible for any local user to overwrite any system's file with arbitrary data. This may...

7.3AI score
Exploits0
NVD
NVD
added 2001/01/09 5:0 a.m.28 views

CVE-2000-1134

Multiple shell programs on various Unix systems, including 1 tcsh, 2 csh, 3 sh, and 4 bash, follow symlinks when processing redirects aka here-documents or in-here documents, which allows local users to overwrite files of other users via a symlink attack...

7.2CVSS6.2AI score0.01415EPSS
Exploits1References19
NVD
NVD
added 2001/01/09 5:0 a.m.13 views

CVE-2000-1162

ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack...

3.7CVSS6.2AI score0.00322EPSS
Exploits0References7
NVD
NVD
added 2001/01/09 5:0 a.m.16 views

CVE-2000-1178

Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes...

5.5CVSS5.3AI score0.0056EPSS
Exploits1References8
NVD
NVD
added 2001/01/09 5:0 a.m.19 views

CVE-2000-1137

GNU ed before 0.2-18.1 allows local users to overwrite the files of other users via a symlink attack...

4.6CVSS6.1AI score0.00392EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2001/01/09 12:0 a.m.6 views

PT-2001-1011 · Joe · Joe

Name of the Vulnerable Software and Affected Versions: joe affected versions not specified Description: The issue allows local users to overwrite the files of other users whose joe session crashes, due to the joe text editor following symbolic links when creating a rescue copy called DEADJOE duri...

5.5CVSS6AI score0.0056EPSS
Exploits1References12
Packet Storm
Packet Storm
added 2001/01/08 12:0 a.m.34 views

tar-symlink.txt

Title : GNU tar Tape ARchive symlinkvulnerability Author : Marco van Berkum Organisation : OBIT b.v. URL : http://www.obit.nl Email : [email protected] Date : 06-01-2001 The usefull program tar Tape ARchive is used by all UNIX, Linux and BSD versions around and is used to ARCHIVE files to disk o...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/01/03 12:0 a.m.23 views

Advisory: exmh symlink vulnerability

Author: Stan Bubrouski [email protected] Date: December 31, 2000 Package: exmh Versions affected: 2.2 and probably previous versions. Severity: A malicious local user could use a symlink attack to overwrite any file writable by the user executing exmh. Problem: When exmh detects a problem at start...

0.7AI score
Exploits0
NVD
NVD
added 2000/12/19 5:0 a.m.21 views

CVE-2000-0934

Glint in Red Hat Linux 5.2 allows local users to overwrite arbitrary files and cause a denial of service via a symlink attack...

7.2CVSS6.4AI score0.00412EPSS
Exploits0References3
NVD
NVD
added 2000/12/19 5:0 a.m.25 views

CVE-2000-0935

Samba Web Administration Tool SWAT in Samba 2.0.7 allows local users to overwrite arbitrary files via a symlink attack on the cgi.log file...

7.2CVSS6.3AI score0.01287EPSS
Exploits1References3
NVD
NVD
added 2000/12/19 5:0 a.m.22 views

CVE-2000-0992

Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. dot dot attack...

5CVSS6.5AI score0.0567EPSS
Exploits1References4
securityvulns
securityvulns
added 2000/12/14 12:0 a.m.36 views

STM symlink Vulnerability

Support Tool Manager Symlink Vulnerability From the STM manual page : The Support Tools Manager STM provides three interfaces that allow a user access to an underlying toolset, consisting of information modules, firmware update tools, verifiers, diagnostics, exercisers, expert tools, and utilitie...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2000/12/11 12:0 a.m.27 views

University of Washington Pico 3.x4.x - File Overwrite

University of Washington Pico 3.x4.x - File Overwrite source: https://www.securityfocus.com/bid/2097/info A vulnerability exists in several versions of University of Washington's Pico, a widely-distributed text editor shipped with most versions of Linux / Unix. Under very specific circumstances, ...

7.4AI score
Exploits0
Rows per page
Query Builder