Lucene search
K

110 matches found

Debian CVE
Debian CVE
added 2008/11/18 3:0 p.m.383 views

CVE-2008-5135

os-prober in os-prober 1.17 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/mounted-map or 2 /tmp/raided-map temporary file. NOTE: the vendor disputes this issue, stating "the insecure code path should only ever run inside a d-i environment, which has no non-roo...

6.2CVSS8.8AI score0.00383EPSS
Exploits0
Ubuntu
Ubuntu
added 2007/10/05 5:8 p.m.64 views

USN-527-1: xen-3.0 vulnerability

Joris van Rantwijk discovered that the Xen host did not correctly validate the contents of a Xen guests's grug.conf file. Xen guest root users could exploit this to run arbitrary commands on the host when the guest system was rebooted...

6.9CVSS5.5AI score0.00633EPSS
Exploits0
Prion
Prion
added 2007/01/11 8:28 p.m.15 views

Code injection

The jail rc.d script in FreeBSD 5.3 up to 6.2 does not verify pathnames when writing to /var/log/console.log during a jail start-up, or when file systems are mounted or unmounted, which allows local root users to overwrite arbitrary files, or mount/unmount files, outside of the jail via a symlink...

6.6CVSS6.8AI score0.00391EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2007/01/11 8:0 p.m.29 views

CVE-2007-0166

The jail rc.d script in FreeBSD 5.3 up to 6.2 does not verify pathnames when writing to /var/log/console.log during a jail start-up, or when file systems are mounted or unmounted, which allows local root users to overwrite arbitrary files, or mount/unmount files, outside of the jail via a symlink...

6.2AI score0.00391EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2006/03/21 12:0 a.m.30 views

Mandrake Linux Security Advisory : xorg-x11 (MDKSA-2006:056)

Versions of Xorg 6.9.0 and greater have a bug in xf86Init.c, which allows non-root users to use the -modulepath, -logfile and -configure options. This allows loading of arbitrary modules which will execute as the root user, as well as a local DoS by overwriting system files. Updated packages have...

7.2CVSS6.6AI score0.01099EPSS
Exploits4References1
Cvelist
Cvelist
added 2006/01/09 8:0 p.m.33 views

CVE-2005-4351

The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running...

6.5AI score0.00426EPSS
Exploits2References5
UbuntuCve
UbuntuCve
added 2005/12/31 5:0 a.m.45 views

CVE-2005-4351

The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running...

4.3CVSS5.8AI score0.00426EPSS
Exploits2References1
securityvulns
securityvulns
added 2003/08/08 12:0 a.m.27 views

VMware Workstation 4.0.1 (for Linux systems) vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Description - ----------- The following products have a vulnerability that can allow a non-root user of the host system to delete files. VMware Workstation 4.0.1 for Linux systems build 5289 and earlier releases Details/Impact - -------------- By...

7AI score
Exploits0
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.21 views

CVE-2001-0482

Configuration error in Argus PitBull LX allows root users to bypass specified access control restrictions and cause a denial of service or execute arbitrary commands by modifying kernel variables such as MaxFiles, MaxInodes, and ModProbePath in /proc/sys via calls to sysctl...

7.4AI score0.00547EPSS
Exploits1References2
securityvulns
securityvulns
added 2000/08/22 12:0 a.m.27 views

Helix Code Security Advisory - Helix GNOME Update

HELIX CODE, INC. SECURITY ADVISORY [email protected] Issue Date: 20 Aug 2000 PACKAGES AFFECTED: Helix GNOME Updater helix-update, versions 0.1 through 0.5 SYNOPSIS: A vulnerability in Helix GNOME Update allow non-root users to exploit world-writable permissions on /tmp, permitting arbitraril...

0.2AI score
Exploits0
Rows per page
Query Builder