11 matches found
EUVD-2009-1252
Malware in sbrugna...
CVE-2009-1253
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file...
CVE-2009-1254
James Stone Tunapie 2.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a stream URL...
Design/Logic Flaw
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file...
Code injection
James Stone Tunapie 2.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a stream URL...
CVE-2009-1253
Tunapie is affected by CVE-2009-1253, a local vulnerability caused by insecure handling of temporary files that allows a local user to overwrite arbitrary files via a symlink attack. Debian's DSA-1764-1 notes fixes in tunapie 2.1.8-2 for the lenny release (and earlier 1.3.1-1+etch2 for etch), add...
CVE-2009-1254
James Stone Tunapie 2.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a stream URL...
CVE-2009-1254
Removed by vendor...
CVE-2009-1253
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file...
CVE-2009-1254
Tunapie (GUI frontend for video/radio streams) is affected by CVE-2009-1254 due to insufficient escaping of stream URLs, enabling remote command execution via a crafted URL. The issue is part of a set also including CVE-2009-1253 (symlink-based local DoS); Debian DSAs document fixes. Remediation ...
CVE-2009-1253
Removed by vendor...