Lucene search
K

16 matches found

CVE
CVE
added 2025/05/07 12:0 a.m.47 views

CVE-2025-26169

CVE-2025-26169 affects IXON VPN Client for Windows prior to 1.4.4. The issue allows Local Privilege Escalation to SYSTEM due to code execution from a configuration file that can be controlled by a low-privileged user, with a race condition that lets a temporary config file in a world-writable dir...

8.1CVSS8.3AI score0.00205EPSS
Exploits0References2
CVE
CVE
added 2021/06/24 1:19 p.m.231 views

CVE-2021-29948

Thunderbird prior to 78.10.0 is affected by CVE-2021-29948, where signatures are written to disk before verification and may be at risk of a race condition if a local attacker replaces the file. Impact includes potential signature forgery; remediation is to upgrade Thunderbird to 78.10.0 or newer...

2.5CVSS5AI score0.00286EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/12/15 9:21 p.m.24 views

CVE-2014-3701

eDeploy has tmp file race condition flaws...

8.2AI score0.015EPSS
Exploits0References3
OSV
OSV
added 2018/07/23 7:50 p.m.8 views

GHSA-G982-9R8G-6QXW Ciborg gem for Ruby allows local users to write files and gain privileges via Symlink

There is a /tmp file race condition in chef/travis-cookbooks/cienvironment/perlbrew/recipes/default.rb in the ciborg gem 3.0.0 when creating /tmp/perlbrew-installer. If a malicious local user creates the file first they can overwrite the contents with their own code executing it as the ciborg...

5.5CVSS5.4AI score0.00379EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2018/07/23 7:50 p.m.26 views

Ciborg gem for Ruby allows local users to write files and gain privileges via Symlink

There is a /tmp file race condition in chef/travis-cookbooks/cienvironment/perlbrew/recipes/default.rb in the ciborg gem 3.0.0 when creating /tmp/perlbrew-installer. If a malicious local user creates the file first they can overwrite the contents with their own code executing it as the ciborg...

5.5CVSS5.5AI score0.00379EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.31 views

openSUSE Security Update : python-imaging (openSUSE-SU-2014:0591-1)

A temporary file race condition has been fixed in python-imaging when converting images CVE-2014-1932, CVE-2014-1933. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-326. The tex...

4.4CVSS7.8AI score0.00492EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.27 views

Mandrake Linux Security Advisory : inn (MDKSA-2001:010)

WireX discovered a potential temporary file race condition in the inn program. This condition is due partly to the way inn is compiled and configured on some Linux distributions, including Linux-Mandrake, and partly due to the lack of information in the inn package detailing potential security...

1.2CVSS5.4AI score0.00339EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.33 views

Mandrake Linux Security Advisory : shadow-utils (MDKSA-2001:007)

WireX discovered a potential temporary file race condition in the useradd program contained in the shadow-utils package. The useradd program creates it's temporary files in the protected directory /etc/default, but if this directory is changed to world-writable, a problem could occur. This update...

1.2CVSS5.4AI score0.00298EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.11 views

Mandrake Linux Security Advisory : rdist (MDKSA-2001:005)

WireX discovered a potential temporary file race condition in the rdist program. This update corrects the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Mandrake Linux Security Advisory MDKSA-2001:005. The...

5.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.30 views

Mandrake Linux Security Advisory : squid (MDKSA-2001:003)

WireX discovered a potential temporary file race condition in the way that squid sends out email messages notifying the administrator about updating the program. Usually this will only happen if you are running a development version of squid or if the clock on your system is incorrect. This probl...

1.2CVSS5.3AI score0.00304EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.29 views

openSUSE Security Update : sblim-sfcb (sblim-sfcb-505)

A tmp file race condition in the genSslCerts.sh helper script could be used by local attackers to gain root privileges. CVE-2009-0416 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

6.9CVSS5.4AI score0.00243EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 019-1 (squid)

The remote host is missing an update to squid announced via advisory DSA 019-1. OpenVAS Vulnerability Test $Id: deb0191.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 019-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

1.2CVSS0.3AI score0.00304EPSS
Exploits0
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.26 views

CVE-2002-1366

Common Unix Printing System CUPS 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream...

7.3AI score0.00329EPSS
Exploits0References9
securityvulns
securityvulns
added 2002/03/01 12:0 a.m.24 views

Remote exploit against xtelld and other fun

Release : 27/2/2002 Author : Spybreak [email protected] Software: xtell package Versions: 2.6.1, most of the vulnerabilities are present in all previous versions Problems: Remote execution of arbitrary code through several buffer overflows, information leakage, writing into arbitrary files with th...

8.4AI score
Exploits0
securityvulns
securityvulns
added 2001/06/26 12:0 a.m.30 views

RH 7.0 Crontab exploit - apparently fixed

/ Crontab tmp file race condition http://bugzilla.redhat.com/bugzilla/showbug.cgi?id=37771 Apparently this is fixed. Wonder why it still works. Local exploit Quick and dirty exploit for crontab insecure tmp files Redhat 7.0 - kept up2date with up2date Checked Tue Jun 26 00:15:32 NZST 2001...

Exploits0
Exploit DB
Exploit DB
added 2000/05/10 12:0 a.m.28 views

Netscape Communicator 4.5/4.51/4.6/4.61/4.7/4.72/4.73 - '/tmp' Symlink

source: https://www.securityfocus.com/bid/1201/info Netscape Communicator version 4.73 and prior may be susceptible to a /tmp file race condition when importing certificates. Netscape creates a /tmp file which is world readable and writable in /tmp, without calling stat or fstat on the file. As...

7.4AI score
Exploits0
Rows per page
Query Builder