Lucene search
K

69 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

BSD lpr 0.54 -4 Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1834/info lpr is a set of printing tools for unix systems. The lpr package that ships with RedHat Linux 6.2 and possibly earlier versions contains a vulnerability that will allow an attacker to execute arbitrary commands...

7.1AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2013/10/25 12:0 a.m.51 views

Groff: Multiple Vulnerabilities

Background GNU Troff Groff is a text formatter used for man pages. Description Multiple vulnerabilities have been discovered in Groff. Please review the CVE identifiers referenced below for details. Impact A context-dependent attacker could perform symlink attacks to overwrite arbitrary files wit...

6.5CVSS7.4AI score0.02305EPSS
Exploits0
NVD
NVD
added 2011/06/30 3:55 p.m.21 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6AI score0.00357EPSS
Exploits0References6
OSV
OSV
added 2011/06/30 3:55 p.m.10 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

6AI score
Exploits0References5
NVD
NVD
added 2011/06/30 3:55 p.m.22 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

3.3CVSS6AI score0.00295EPSS
Exploits0References5
NVD
NVD
added 2011/06/30 3:55 p.m.23 views

CVE-2009-5078

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.5CVSS6.3AI score0.02305EPSS
Exploits0References7
NVD
NVD
added 2011/06/30 3:55 p.m.26 views

CVE-2009-5082

The 1 configure and 2 config.guess scripts in GNU troff aka groff 1.20.1 on Openwall GNU//Linux aka Owl improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file...

3.3CVSS6.1AI score0.0032EPSS
Exploits0References4
NVD
NVD
added 2011/06/30 3:55 p.m.22 views

CVE-2009-5079

The 1 gendef.sh, 2 doc/fixinfo.sh, and 3 contrib/gdiffmk/tests/runtests.in scripts in GNU troff aka groff 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro.tmp or /tmp/ temporary file...

3.3CVSS6.2AI score0.00301EPSS
Exploits0References6
OSV
OSV
added 2011/06/30 3:55 p.m.11 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

6AI score
Exploits0References6
OSV
OSV
added 2011/06/30 3:55 p.m.6 views

CVE-2009-5079

The 1 gendef.sh, 2 doc/fixinfo.sh, and 3 contrib/gdiffmk/tests/runtests.in scripts in GNU troff aka groff 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro.tmp or /tmp/ temporary file...

6.1AI score
Exploits0References6
OSV
OSV
added 2011/06/30 3:55 p.m.6 views

CVE-2009-5078

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.5CVSS6.3AI score
Exploits0References7
OSV
OSV
added 2011/06/30 3:55 p.m.1 views

DEBIAN-CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.2AI score0.00357EPSS
Exploits0References1
OSV
OSV
added 2011/06/30 3:55 p.m.8 views

CVE-2009-5082

The 1 configure and 2 config.guess scripts in GNU troff aka groff 1.20.1 on Openwall GNU//Linux aka Owl improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file...

6.4AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.33 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

3.3CVSS6.7AI score0.00295EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.24 views

CVE-2009-5078

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.5CVSS6.8AI score0.02305EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.26 views

CVE-2009-5082

The 1 configure and 2 config.guess scripts in GNU troff aka groff 1.20.1 on Openwall GNU//Linux aka Owl improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file...

3.3CVSS6.7AI score0.0032EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2011/06/30 3:55 p.m.2 views

CVE-2009-5082

The 1 configure and 2 config.guess scripts in GNU troff aka groff 1.20.1 on Openwall GNU//Linux aka Owl improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file...

3.3CVSS5.6AI score0.0032EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2011/06/30 3:55 p.m.4 views

CVE-2009-5081

The 1 config.guess, 2 contrib/groffer/perl/groffer.pl, and 3 contrib/groffer/perl/roff2.pl scripts in GNU troff aka groff 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary fil...

3.3CVSS5.6AI score0.00377EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.24 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.7AI score0.00357EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2011/06/30 3:55 p.m.3 views

CVE-2009-5078

contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document...

6.5CVSS5.8AI score0.02305EPSS
Exploits0References7
Rows per page
Query Builder