1110 matches found
PYSEC-2011-23
virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/...
CVE-2011-4617
virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/...
SuSE 11.1 Security Update : hplip (SAT Patch Number 5307)
This update provides an update of hplip to version 3.11.10 : - Fixed insecure tmp file handling in hpcupsfax.cpp CVE-2011-2722 see https://bugs.launchpad.net/hplip/+bug/809904. bnc704608 - New tech classes for HP OfficeJet Pro 8100, HP Deskjet 3070 B611 series and HP Photosmart 7510 e-All-in-One....
CVE-2011-3616
The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf...
CVE-2011-3616
The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf...
Code injection
The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf...
CVE-2011-3616
The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf...
CVE-2011-3616
The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf...
caml-light -- insecure use of temporary files
caml-light uses mktemp insecurely, and also does unsafe things in /tmp during make install...
CVE-2011-3204
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on 1 /tmp/hammer.log aka the HHLOG file or 2 the REPORTLOG file...
Design/Logic Flaw
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on 1 /tmp/hammer.log aka the HHLOG file or 2 the REPORTLOG file...
CVE-2011-3204
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on 1 /tmp/hammer.log aka the HHLOG file or 2 the REPORTLOG file...
CentOS Update for xen CESA-2009:0003 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2011-2185
Fabric before 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on 1 a /tmp/fab..tar file or 2 certain other files in the top level of /tmp/...
DEBIAN-CVE-2009-5044
contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 allows local users to overwrite arbitrary files via a symlink attack on a pdf.tmp temporary file...
CVE-2011-2533
The configure script in D-Bus aka DBus 1.2.x before 1.2.28 allows local users to overwrite arbitrary files via a symlink attack on an unspecified file in /tmp/...
DEBIAN-CVE-2011-2533
The configure script in D-Bus aka DBus 1.2.x before 1.2.28 allows local users to overwrite arbitrary files via a symlink attack on an unspecified file in /tmp/...
CVE-2011-2533
The configure script in D-Bus aka DBus 1.2.x before 1.2.28 allows local users to overwrite arbitrary files via a symlink attack on an unspecified file in /tmp/...
Cisco IOS XR SSHv1 '/tmp/ssh_lock'远程拒绝服务漏洞
Bugtraq ID: 47982 CVE ID:CVE-2011-0949 Cisco IOS是一款流行的Internet操作系统。Cisco IOS XR是Cisco IOS软件家族的一员,使用基于微内核分配操作系统架构。 Cisco IOS XR软件中SSH应用存在一个漏洞,当使用SSH版本1SSHv1协议时可导致拒绝服务攻击。漏洞会导致不能删除的sshdlock文件消耗所有/tmp文件系统中的可用空间。 当SSHv1连接连接到Cisco IOS...
Fedora 13 : fail2ban-0.8.4-27.fc13 (2011-5151)
fail2ban used predictable /tmp files which a local user can allocate before fail2ban does. All tmp files have been moved to /var/lib/fail2ban. This also helps with selinux policies. Another security related fix is that fail2ban defaulted to gamin which conflicts with selinux, so users had to...