Lucene search
K

47 matches found

Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.23 views

Debian DSA-916-1 : inkscape - buffer overflow

Several vulnerabilities have been discovered in Inkscape, a vector-based drawing program. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-3737 Joxean Koret discovered a buffer overflow in the SVG parsing routines that can lead to the execution of...

5.1CVSS6.1AI score0.13419EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.21 views

Ubuntu 4.10 / 5.04 : cfengine vulnerabilities (USN-198-1)

Javier Fernandez-Sanguino Pena discovered that several tools in the cfengine package vicf, cfmailfilter, and cfcron create and use temporary files in an insecure way. A local attacker could exploit this with a symlink attack to create or overwrite arbitrary files with the privileges of the user...

2.1CVSS5.6AI score0.00428EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.22 views

Ubuntu 4.10 : groff vulnerabilities (USN-43-1)

Javier Fernandez-Sanguino Pena discovered that the auxiliary scripts 'eqn2graph' and 'pic2graph' created temporary files in an insecure way, which allowed exploitation of a race condition to create or overwrite files with the privileges of the user invoking the program. Note that Tenable Network...

5.5AI score
Exploits0
securityvulns
securityvulns
added 2005/10/19 12:0 a.m.38 views

[SA17242] YIFF Sound Systems Arbitrary File Playback Weakness

TITLE: YIFF Sound Systems Arbitrary File Playback Weakness SECUNIA ADVISORY ID: SA17242 VERIFY ADVISORY: http://secunia.com/advisories/17242/ CRITICAL: Not critical IMPACT: Security Bypass WHERE: Local system SOFTWARE: YIFF Sound Systems 2.x http://secunia.com/product/5945/ DESCRIPTION: Javier...

1.2AI score
Exploits0
Ubuntu
Ubuntu
added 2005/10/17 10:17 p.m.81 views

USN-208-1: graphviz vulnerability

Javier Fernández-Sanguino Peña discovered that the "dotty" tool created and used temporary files in an insecure way. A local attacker could exploit this with a symlink attack to create or overwrite arbitrary files with the privileges of the user running dotty...

5.3AI score
Exploits0
Ubuntu
Ubuntu
added 2005/08/01 5:47 p.m.63 views

USN-157-1: Mozilla Thunderbird vulnerabilities

Vladimir V. Perepelitsa discovered a bug in Thunderbird's handling of anonymous functions during regular expression string replacement. A malicious HTML email could exploit this to capture a random block of client memory. CAN-2005-0989 Georgi Guninski discovered that the types of certain XPInstal...

7.5CVSS6AI score0.68097EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.30 views

FreeBSD : a2ps -- insecure temporary file creation (9168253c-5a6d-11d9-a9e7-0001020eed82)

A Secunia Security Advisory reports that Javier Fernandez-Sanguino Pena has found temporary file creation vulnerabilities in the fixps and psmandup scripts which are part of a2ps. These vulnerabilities could lead to an attacker overwriting arbitrary files with the credentials of the user running...

2.1CVSS5.6AI score0.00362EPSS
Exploits0References2
Rows per page
Query Builder