6947 matches found
University of Washington Pico 3.x/4.x - File Overwrite
source: https://www.securityfocus.com/bid/2097/info A vulnerability exists in several versions of University of Washington's Pico, a widely-distributed text editor shipped with most versions of Linux / Unix. Under very specific circumstances, it is possible to cause this version of Pico to...
FreeBSD-SA-00:76.tcsh-csh
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:76 Security Advisory FreeBSD, Inc. Topic: tcsh/csh creates insecure temporary file Category: core, ports Module: tcsh, 44bsd-csh Announced: 2000-11-20 Affects: FreeBSD...
HP-UX 11.00/10.20 crontab - Overwrite Files
!/bin/sh HP-UX 11.00/10.20 crontab Kyong-won,Cho [email protected] Usage : ./crontab.sh if -z "$1" then echo "Usage : $0 " exit fi cat /tmp/crontabexp !/bin/sh ln -sf $1 $1 EOF chmod 755 /tmp/crontabexp EDITOR=/tmp/crontabexp export EDITOR crontab -e 2 /tmp/crontab$$ grep -v "error on previous...
Slackware Linux /usr/bin/ppp-off Insecure /tmp Call Exploit
Exploit for linux platform in category dos / poc =========================================================== Slackware Linux /usr/bin/ppp-off Insecure /tmp Call Exploit =========================================================== !/bin/sh In SlackWare Linux the script /usr/bin/ppp-off writes the...
Samba 2.0.7 - SWAT Symlink (2)
source: https://www.securityfocus.com/bid/1872/info The Samba software suite is a collection of programs that implements the SMB protocol for unix systems, allowing you to serve files and printers to Windows, NT, OS/2 and DOS clients. This protocol is sometimes also referred to as the LanManager ...
Уязвимость в Oracle Listener
Используя команды SET TRCFILE или SET LOGFILE пользователь может перезаписать любой файл своими данными...
CVE-2000-0715
DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file...
CVE-2000-0728
xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack...
CVE-2000-0724
The go-gnome Helix GNOME pre-installer allows local users to overwrite arbitrary files via a symlink attack on various files in /tmp, including uudecode, snarf, and some installer files...
CVE-2000-0702
The net.init rc script in HP-UX 11.00 S008net.init allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file...
CVE-2000-0566
makewhatis in Linux man package allows local users to overwrite files via a symlink attack...
CVE-2000-0533
Technical details about CVE-2000-0533 (SGI IRIX WorkShop cvconnect) are not publicly provided in the supplied documents. Monitor for updates from official sources.
CVE-2000-0728
xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack...
CVE-2000-0530
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files...
CVE-2000-0533
Vulnerability in cvconnect in SGI IRIX WorkShop allows local users to overwrite arbitrary files...
CVE-2000-0728
CVE-2000-0728 affects the xpdf PDF viewer client prior to 0.91. The issue is a local file overwrite via a symlink attack, enabling a local user to overwrite arbitrary files. The connected documents do not provide explicit exploit details, mitigations, or patched versions beyond this description. ...
CVE-2000-0566
The CVE-2000-0566 issue concerns the makewhatis script in the Linux man package. The attached documents confirm a local-privilege escalation/vector: makewhatis creates files in /tmp with predictable names and can be exploited via symlink attacks to overwrite arbitrary files or gain elevated privi...
CVE-2000-0530
The CVE-2000-0530 entry describes a vulnerability in KDE 1.1.2 where the KApplication-class creates configuration files without proper ownership checks or existence verification. The result is a local privilege-attack risk: a local user can exploit a symlink/ownership flaw to overwrite arbitrary ...
FreeBSD-SA-00:55.xpdf
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:55 Security Advisory FreeBSD, Inc. Topic: xpdf contains multiple vulnerabilities Category: ports Module: xpdf Announced: 2000-10-13 Credits: Unknown Affects: Ports...
MDKSA-2000:057 - openssh update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Linux-Mandrake Security Update Advisory Package name: openssh Date: October 10th, 2000 Advisory ID: MDKSA-2000:057 Affected versions: 7.0, 7.1 Problem Description: A problem exists with openssh's scp program. If a user uses scp to move files from a...