9 matches found
CVE-2016-10846
cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube database conversions SEC-79...
CVE-2016-10775
cPanel before 60.0.25 allows arbitrary file-chown operations via reassignpostterminatecruft SEC-173...
CVE-2016-10775
cPanel before 60.0.25 allows arbitrary file-chown operations via reassignpostterminatecruft SEC-173...
Code injection
cPanel before 60.0.25 allows arbitrary file-chown operations via reassignpostterminatecruft SEC-173...
CVE-2016-10775
CVE-2016-10775 affects cPanel prior to 60.0.25. The vulnerability allows arbitrary file ownership changes via reassign_post_terminate_cruft (SEC-173), with impact described as high confidentiality risk and no reported impact to availability. Public details across sources consistently identify the...
CVE-2016-10775
cPanel before 60.0.25 allows arbitrary file-chown operations via reassignpostterminatecruft SEC-173...
CVE-2016-10846
cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube database conversions SEC-79...
CVE-2016-10846
CVE-2016-10846 affects cPanel prior to 11.54.0.4, enabling arbitrary file-chown and file-chmod operations during Roundcube database conversions (SEC-79). The issue is rooted in the Roundcube database conversion process and allows limited privileges to perform file ownership and permission changes...
CVE-2003-0704
KisMAC before 0.05d is affected. The vulnerability arises because it trusts user-supplied variables when chown’ing files or directories, allowing a local user to escalate privileges via the $DRIVER_KEXT environment variable in the scripts: viha_driver.sh, macjack_load.sh, airojack_load.sh, setuid...