CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The make include files in NetBSD before 1.6.2, as used in pmake 1.111 and other products, allow local users to overwrite arbitrary files via a symlink attack on...

3.3CVSS6AI score0.00438EPSS

Exploits1References2

BDU FSTEC•added 2020/12/15 12:0 a.m.•1 views

The vulnerability lies in the implementation of the PrintData or PrintStats functions in the network traffic balancing system’s Keepalived component. This allows attackers to gain access to the protected information.

The vulnerability of the PrintData or PrintStats implementation in the network traffic balancing system of Keepalived is related to errors in processing temporary files. Exploiting this vulnerability can allow an attacker to access protected information through a specially created file...

4.7CVSS5.8AI score0.00366EPSS

Exploits0References3Affected Software2

OSV•added 2015/06/02 2:59 p.m.•4 views

CVE-2015-4156

GNU Parallel before 20150522 Nepal, when using 1 --cat or 2 --fifo with --sshlogin, allows local users to write to arbitrary files via a symlink attack on a temporary file...

6.6AI score

Exploits0References4

OSV•added 2008/12/08 11:30 p.m.•4 views

CVE-2008-5368

muttprint in muttprint 0.72d allows local users to overwrite arbitrary files via a symlink attack on the /tmp/muttprint.log temporary file...

6.1AI score

Exploits0References3

OSV•added 2008/11/06 3:55 p.m.•4 views

CVE-2008-4985

vdrleaktest in Video Disk Recorder aka vdr-dbg or vdr 1.6.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/memleaktest.log temporary file...

6.2AI score

Exploits0References7

OSV•added 2005/11/29 7:3 p.m.•7 views

CVE-2005-3885

The ps2epsi extension shell script ps2epsi.sh in Inkscape before 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file...

6AI score

Exploits0References7

Gentoo Linux•added 2004/07/01 12:0 a.m.•18 views

Esearch: Insecure temp file handling

Background Esearch is a replacement for the Portage command "emerge search". It uses an index to speed up searching of the Portage tree. Description The eupdatedb utility uses a temporary file /tmp/esearchdb.py.tmp to indicate that the eupdatedb process is running. When run, eupdatedb checks to s...

7.2CVSS6.4AI score0.00337EPSS

Exploits0

Debian•added 2001/04/26 10:32 p.m.•5 views

[SECURITY] [DSA-053-1] nedit symlink attack

Package : nedit Problem type : insecure temporary file Debian-specific: no The nedit Nirvana editor package as shipped in the non-free section accompanying Debian GNU/Linux 2.2/potato had a bug in its printing code: when printing text it would create a temporary file with the to be printed text a...

5.9AI score

Exploits0

NVD•added 2001/01/09 5:0 a.m.•19 views

CVE-2000-1096

crontab by Paul Vixie uses predictable file names for a temporary file and does not properly ensure that the file is owned by the user executing the crontab -e command, which allows local users with write access to the crontab spool directory to execute arbitrary commands by creating...

3.7CVSS7.2AI score0.00786EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by