PT-2025-46897

Name of the Vulnerable Software and Affected Versions Dell Alienware Command Center versions prior to 6.10.15.0 Description Dell Alienware Command Center 6.x has an issue involving insecure temporary files. A local attacker with limited privileges could potentially modify information...

UBUNTU-CVE-2013-5724

Phpbb3 before 3.0.11-4 for Debian GNU/Linux uses world-writable permissions for cache files, which allows local users to modify the file contents via standard filesystem write operations...

packstack: answerfile creation permissions issue

PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory, which allows local users to modify deployed systems by changing this file...

Candlepin: bootstrap RPM deploys CA certificate file with mode 666

modules/certs/manifests/config.pp in katello-configure before 1.3.3.pulpv2 in Katello uses weak permissions 666 for the Candlepin bootstrap RPM, which allows local users to modify the Candlepin CA certificate by writing to this file...

DEBIAN-CVE-2009-4029

The 1 dist or 2 distcheck rules in GNU Automake 1.11.1, 1.10.3, and release branches branch-1-4 through branch-1-9, when producing a distribution tarball for a package that uses Automake, assign insecure permissions 777 to directories in the build tree, which introduces a race condition that allo...

Дырка в MailFile

С помощью локальной модификации формы можно выслать себе любой файл...

Дырка в Lyris List Manager

Возможен доступ к административному интерфейсу путем локальной модификации Wev-страницы...