Lucene search
K

88 matches found

CERT
CERT
added 2001/11/15 12:0 a.m.34 views

Tripwire vulnerable to arbitrary file overwriting via symlink redirection of temporary file

Overview Tripwire is a file integrity verification utility for Unix and Linux operating systems. In some implementations, tripwire opens insecure temporary files with predictable names in publically-writable directories. Using a symbolic link attack, a local intruder may overwrite or create...

4.6CVSS6.2AI score0.00367EPSS
Exploits0References4
NVD
NVD
added 2001/10/18 4:0 a.m.15 views

CVE-2001-0774

Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files...

4.6CVSS6.6AI score0.00367EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2001/08/29 12:0 a.m.17 views

Tripwire for Webpages Installation Disclosure

The remote host is running Tripwire for Webpages, a commercial product to monitor for changes in web pages. This information may prove useful to anyone doing reconnaissance before launching an actual attack. %NASLMINLEVEL 70300 C Tenable Network Security include'deprecatednasllevel.inc';...

5.5AI score
Exploits0References1
securityvulns
securityvulns
added 2001/07/10 12:0 a.m.48 views

Символьные линки в Tripwire (symbolic link)

Проблема символьнгых линков при создании временных файлов...

0.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2001/07/10 12:0 a.m.31 views

Tripwire temporary files

------------------------------------------------------------ Insecure temporary files in Tripwire [email protected] $Date: 2001/07/09 05:02:02 $ ------------------------------------------------------------ Author: Jarno Huuskonen [email protected] Discovered: Tue 16 Jan 2001 Vendor...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2000/06/02 4:0 a.m.25 views

CVE-1999-0464

Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames...

6.6AI score0.00331EPSS
Exploits0References3
CVE
CVE
added 2000/06/02 4:0 a.m.56 views

CVE-1999-0464

CVE-1999-0464 affects Tripwire 1.2 and earlier. Local users can trigger a denial of service by using long filenames, per the provided descriptions. Red Hat and CVE records corroborate the same issue. No remediation details are present in the connected documents. This is a historic local DoS vulne...

2.1CVSS7AI score0.00331EPSS
Exploits0References3Affected Software1
NVD
NVD
added 1999/01/04 5:0 a.m.18 views

CVE-1999-0464

Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames...

2.1CVSS6.6AI score0.00331EPSS
Exploits0References3
Rows per page
Query Builder