Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

OSV
OSVadded 2017/10/17 3:29 p.m.0 views

UBUNTU-CVE-2014-2277

The maketemporaryfilename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function...

7.1CVSS7.1AI score0.0006EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2017/10/17 3:29 p.m.17 views

CVE-2014-2277

The maketemporaryfilename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function...

7.1CVSS7AI score0.0006EPSS
Exploits0References1
OSV
OSVadded 2017/10/17 3:29 p.m.2 views

DEBIAN-CVE-2014-2277

The maketemporaryfilename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function...

7.1CVSS6.5AI score0.0006EPSS
Exploits0References1
NVD
NVDadded 2017/10/17 3:29 p.m.27 views

CVE-2014-2277

The maketemporaryfilename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function...

7.1CVSS6.6AI score0.0006EPSS
Exploits0References6
Prion
Prionadded 2017/10/17 3:29 p.m.8 views

Design/Logic Flaw

The maketemporaryfilename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function...

3.6CVSS6.3AI score0.0006EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVEadded 2017/10/17 3:0 p.m.16 views

CVE-2014-2277

The maketemporaryfilename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function...

7.1CVSS6.7AI score0.0006EPSS
Exploits0
Cvelist
Cvelistadded 2017/10/17 3:0 p.m.10 views

CVE-2014-2277

The maketemporaryfilename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function...

6.6AI score0.0006EPSS
Exploits0References6
CVE
CVEadded 2017/10/17 3:0 p.m.53 views

CVE-2014-2277

The CVE-2014-2277 issue affects perltidy up to version 20120701-1, where the make_temporary_filename function can be exploited by local users to read sensitive data or replace arbitrary files via a symlink attack tied to the use of tmpnam. This is the explicit vulnerability detail in the provided...

7.1CVSS6.4AI score0.0006EPSS
Exploits0References6Affected Software1
Mageia
Mageiaadded 2014/03/31 9:16 p.m.23 views

Updated perltidy package fixes security vulnerability

perltidy's maketemporaryfilename function insecurely created temporary files via the use of the tmpnam function. A local attacker could use this flaw to perform a symbolic link attack CVE-2014-2277...

7.1CVSS6.6AI score0.0006EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2012/09/06 12:0 a.m.18 views

Mandrake Linux Security Advisory : xpdf (MDKSA-2000:041-1)

There is a potential race condition when using tmpnam and fopen in xpdf versions prior to 0.91. This exploit can be only used as root to overwrite arbitrary files if a symlink is created between the calls to tmpname and fopen. There is also a problem with malicious URL-type links in PDF documents...

6AI score
Exploits0
Rows per page
Query Builder