Lucene search
K

57 matches found

OSV
OSV
added 2011/06/30 3:55 p.m.1 views

DEBIAN-CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.2AI score0.00357EPSS
Exploits0References1
OSV
OSV
added 2011/06/30 3:55 p.m.11 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

6AI score
Exploits0References6
OSV
OSV
added 2011/06/30 3:55 p.m.5 views

CVE-2009-5078

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.5CVSS6.3AI score
Exploits0References7
OSV
OSV
added 2011/06/30 3:55 p.m.6 views

CVE-2009-5082

The 1 configure and 2 config.guess scripts in GNU troff aka groff 1.20.1 on Openwall GNU//Linux aka Owl improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file...

6.4AI score
Exploits0References4
NVD
NVD
added 2011/06/30 3:55 p.m.21 views

CVE-2009-5079

The 1 gendef.sh, 2 doc/fixinfo.sh, and 3 contrib/gdiffmk/tests/runtests.in scripts in GNU troff aka groff 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro.tmp or /tmp/ temporary file...

3.3CVSS6.2AI score0.00301EPSS
Exploits0References6
OSV
OSV
added 2011/06/30 3:55 p.m.9 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

6AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.33 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

3.3CVSS6.7AI score0.00295EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.24 views

CVE-2009-5078

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.5CVSS6.8AI score0.02305EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.24 views

CVE-2009-5079

The 1 gendef.sh, 2 doc/fixinfo.sh, and 3 contrib/gdiffmk/tests/runtests.in scripts in GNU troff aka groff 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro.tmp or /tmp/ temporary file...

3.3CVSS6.7AI score0.00301EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.26 views

CVE-2009-5082

The 1 configure and 2 config.guess scripts in GNU troff aka groff 1.20.1 on Openwall GNU//Linux aka Owl improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file...

3.3CVSS6.7AI score0.0032EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.23 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.7AI score0.00357EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2011/06/30 3:55 p.m.3 views

CVE-2009-5078

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.5CVSS5.8AI score0.02305EPSS
Exploits0References7
Prion
Prion
added 2011/06/30 3:55 p.m.20 views

Directory traversal

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.2AI score0.00357EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2011/06/30 3:55 p.m.4 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

3.3CVSS5.6AI score0.00377EPSS
Exploits0References7
Prion
Prion
added 2011/06/30 3:55 p.m.15 views

Code injection

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.4CVSS6.8AI score0.02305EPSS
Exploits0References7Affected Software2
OSV
OSV
added 2011/06/30 3:55 p.m.3 views

UBUNTU-CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.7AI score0.00357EPSS
Exploits0References2
Cvelist
Cvelist
added 2011/06/30 3:26 p.m.29 views

CVE-2009-5082

The 1 configure and 2 config.guess scripts in GNU troff aka groff 1.20.1 on Openwall GNU//Linux aka Owl improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file...

6.2AI score0.0032EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/06/30 3:26 p.m.24 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

6.1AI score0.00357EPSS
Exploits0References6
Cvelist
Cvelist
added 2011/06/30 3:26 p.m.43 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

6.4AI score0.00295EPSS
Exploits0References5
CVE
CVE
added 2011/06/30 3:26 p.m.50 views

CVE-2009-5079

Vulnerability summary (CVE-2009-5079) : In Groff (GNU troff) versions up to 1.21 and earlier, several scripts (gendef.sh, doc/fixinfo.sh, contrib/gdiffmk/tests/runtests.in) allow local users to overwrite arbitrary files via a symlink attack on groff temporary files (gro#####.tmp or /tmp/#####). T...

3.3CVSS6.1AI score0.00301EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder