7 matches found
CVE-2009-1253
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file...
CVE-2009-1254
James Stone Tunapie 2.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a stream URL...
Code injection
James Stone Tunapie 2.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a stream URL...
CVE-2009-1253
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file...
CVE-2009-1253
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file...
CVE-2009-1253
Tunapie is affected by CVE-2009-1253, a local vulnerability caused by insecure handling of temporary files that allows a local user to overwrite arbitrary files via a symlink attack. Debian's DSA-1764-1 notes fixes in tunapie 2.1.8-2 for the lenny release (and earlier 1.3.1-1+etch2 for etch), add...
CVE-2009-1254
James Stone Tunapie 2.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a stream URL...