Lucene search
+L

73 matches found

nvd
nvd
added 2008/11/18 4:0 p.m.14 views

CVE-2008-5145

ltpmenu in ltp 20060918 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/runltp.mainmenu. temporary file...

6.9CVSS6.3AI score0.00286EPSS
Exploits0References3
cvelist
cvelist
added 2008/11/18 3:0 p.m.21 views

CVE-2008-5149

fwdcheck.sh in libncbi6 6.1.20080302 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/ temporary file...

6.3AI score0.00363EPSS
Exploits1References3
cve
cve
added 2008/11/06 11:0 a.m.57 views

CVE-2008-4975

The CVE-2008-4975 entry concerns mkmailpost in newsgate 1.6, where a symlink attack on a /tmp/mmp##### temporary file allows local users to overwrite arbitrary files. The root cause is a symlink-based file overwrite vulnerability in the mkmailpost routine, enabling local privilege impact (complet...

6.9CVSS6.3AI score0.0039EPSS
Exploits1References6Affected Software1
nvd
nvd
added 2008/11/05 3:0 p.m.11 views

CVE-2008-4948

fest.pl in digitaldj 0.7.5 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ddjfest.tmp temporary file...

6.9CVSS6.3AI score0.0039EPSS
Exploits1References6
nvd
nvd
added 2008/11/05 3:0 p.m.19 views

CVE-2008-4950

gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary files via a symlink attack on the tmp/gccross2.log temporary file. NOTE: the vendor disputes this vulnerability, stating that "There is no sense in this bug - the script ... is called under specific cross-building environments...

6.9CVSS6.2AI score0.00378EPSS
Exploits1References4
debiancve
debiancve
added 2008/11/05 2:51 p.m.26 views

CVE-2008-4950

gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary files via a symlink attack on the tmp/gccross2.log temporary file. NOTE: the vendor disputes this vulnerability, stating that "There is no sense in this bug - the script ... is called under specific cross-building environments...

6.9CVSS6.3AI score0.00378EPSS
Exploits1
debiancve
debiancve
added 2007/08/14 6:0 p.m.29 views

CVE-2007-3852

The init script sysstat.in in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code...

4.4CVSS4.5AI score0.00433EPSS
Exploits0
securityvulns
securityvulns
added 2007/03/18 12:0 a.m.33 views

netperf netserver symbolic links vulnerability

Symbolic links vulnerability on /tmp/netperf.debug file creation...

4.4CVSS1.9AI score0.003EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2005/05/17 12:0 a.m.33 views

[Full-disclosure] MySQL < 4.0.12 && MySQL <= 5.0.4 : Insecure tmp file handling

MySQL mysqlinstalldb data manipulation vendor: http://www.mysql.com advisory: http://www.zataz.net/adviso/mysql-05172005.txt vendor informed: yes exploit available:no MySQL contain a security flaw how could allow a malicious local attacker to inject arbitrary SQL commands during database creation...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2001/06/26 12:0 a.m.31 views

RH 7.0 Crontab exploit - apparently fixed

/ Crontab tmp file race condition http://bugzilla.redhat.com/bugzilla/showbug.cgi?id=37771 Apparently this is fixed. Wonder why it still works. Local exploit Quick and dirty exploit for crontab insecure tmp files Redhat 7.0 - kept up2date with up2date Checked Tue Jun 26 00:15:32 NZST 2001...

Exploits0
exploitpack
exploitpack
added 2001/04/17 12:0 a.m.22 views

Samba 2.0.x - Insecure TMP File Symbolic Link

Samba 2.0.x - Insecure TMP File Symbolic Link // source: https://www.securityfocus.com/bid/2617/info Samba is a flexible file sharing packaged maintained by the Samba development group. It provides interoperatability between UNIX and Microsoft Windows systems, permitting the sharing of files and...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/11/17 12:0 a.m.25 views

Slackware Linux - usrbinppp-off Insecure tmp Call

Slackware Linux - usrbinppp-off Insecure tmp Call !/bin/sh In SlackWare Linux the script /usr/bin/ppp-off writes the output of 'ps x' to /tmp/grep.tmp. Since root is the user that runs ppp-off, a non-privileged user could create a link from /tmp/grep.tmp to any fileie: /etc/issue, thus when root...

0.6AI score
Exploits0
exploitdb
exploitdb
added 2000/05/10 12:0 a.m.28 views

Netscape Communicator 4.5/4.51/4.6/4.61/4.7/4.72/4.73 - '/tmp' Symlink

source: https://www.securityfocus.com/bid/1201/info Netscape Communicator version 4.73 and prior may be susceptible to a /tmp file race condition when importing certificates. Netscape creates a /tmp file which is world readable and writable in /tmp, without calling stat or fstat on the file. As...

7.4AI score
Exploits0
Rows per page
Query Builder