331 matches found
USN-70-1: Perl DBI module vulnerability
Javier Fernández-Sanguino Peña from the Debian Security Audit Project discovered that the module DBI::ProxyServer in Perl's DBI library created a PID file in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking...
perl DBI::ProxyServer module symbolic links problem
Symbolic links problem on pid file creation...
DEBIAN-CVE-2004-2698
Race condition in IMWheel 1.0.0pre11 and earlier, when running with the -k option, allows local users to cause a denial of service IMWheel crash and possibly modify arbitrary files via a symlink attack on the imwheel.pid file...
FreeBSD : imwheel -- insecure handling of PID file (77)
The following package needs to be updated: imwheel %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkge31d44a221e311d99289000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...
CVE-2002-1381
Format string vulnerability in daemon.c for Exim 4.x through 4.10, and 3.x through 3.36, allows exim administrative users to execute arbitrary code by modifying the pidfilepath value...
imwheel symbolic links problem
PID file is created in /tmp directory...
DEBIAN-CVE-2002-1827
Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the 1 alias, 2 map, 3 statistics, and 4 pid files...
DEBIAN-CVE-2002-1381
Format string vulnerability in daemon.c for Exim 4.x through 4.10, and 3.x through 3.36, allows exim administrative users to execute arbitrary code by modifying the pidfilepath value...
APC UPS 3.7.2 (apcupsd) Local Denial of Service Exploit
Exploit for linux platform in category dos / poc ======================================================= APC UPS 3.7.2 apcupsd Local Denial of Service Exploit ======================================================= / Local Denial of Service for any linux box running APCUPSD v3.7.2 APCUPSD has his...
APC UPS 3.7.2 - 'apcupsd' Local Denial of Service
/ Local Denial of Service for any linux box running APCUPSD v3.7.2 APCUPSD has his pid file world writeable, therefore it is possible to let it kill another pid and create a denial of service against any running daemon. when the apcupsd is stopped, for example Bug discovered by: Mattias Dartsch...
apcupsd 3.7.2 Denial of Service
Title: apcupsd 3.7.2 Denial of Service Affected Application: apcupsd daemon Affected Versions: 3.7.2 and maybe prior Not affected: 3.8.0 and above Affected Platforms: all Linux / Unix Vulnerability Class: Denial of Service local Author Notified: Yes July 12th 2000 Fix available: Yes included...