109 matches found
Mandriva Linux Security Advisory : hplip (MDVSA-2014:023)
Updated hplip packages fix security vulnerabilities : It was discovered that the HPLIP Polkit daemon incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files CVE-2013-6402. It was discovered that HPLIP contained an upgrade tool that would...
CVE-2013-2029
nagios.upgradetov3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5.1, and earlier, allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in /tmp/...
Debian Security Advisory DSA 2643-1 (puppet - several vulnerabilities)
Multiple vulnerabilities were discovered in Puppet, a centralized configuration management system. CVE-2013-1640An authenticated malicious client may request its catalog from the puppet master, and cause the puppet master to execute arbitrary code. The puppet master must be made to invoke the...
2X ApplicationServer 10.1 - TuxSystem Class ActiveX Control Remote File Overwrite
2X ApplicationServer 10.1 - TuxSystem Class ActiveX Control Remote File Overwrite 2X ApplicationServer 10.1 TuxSystem Class ActiveX Control TuxScripting.dll ExportSettings Remote File Overwrite Vulnerability tested against: Microsoft Windows Server 2003 r2 sp2 Internet Explorer 8 vendor...
WordPress Plugin oQey Gallery 0.4.8 - SQL Injection
WordPress Plugin oQey Gallery 0.4.8 - SQL Injection Exploit Title: WordPress oQey Gallery plugin getrow"SELECT FROM $oqeygalls WHERE id ='".$id."' ";...
PostgreSQL: PL/Perl Intended restriction bypass
PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrar...
Эксплоит для эксплуатации уязвимости EZSA-2008-003 с активацией учетной записи
Эксплоит для эксплуатации уязвимости EZSA-2008-003 с активацией учетной записи Описание: Уязвимость связана с недостаточной проверкой при регистрации нового пользователя /user/register. Успешная эксплуатация уязвимости позволяет получить привилегии администратора CMS. Уязвимости подвержены...
CVE-2008-5147
test-pipe-to-pyodconverter.org.sh in docvert 2.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/outer.odt temporary file...
CVE-2008-5152
inmail-show in mh-book 200605 allows local users to overwrite arbitrary files via a symlink attack on a 1 /tmp/inmail.log or 2 /tmp/inmail.stdin temporary file...