67 matches found
CVE-2001-1171
Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy...
CVE-2001-0040
APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file...
Проблема в apcupsd
Создается открытый на запись файл, в который записывается pid процесса. Это позволяет подменить pid, в результате чего при попытке остановить демон будет убит другой процесс...
CVE-2000-0494
Veritas Volume Manager creates a world writable .serverpids file, which allows local users to add arbitrary commands into the file, which is then executed by the vmsaserver script...
CVE-2000-0494
Veritas Volume Manager creates a world writable .serverpids file, which allows local users to add arbitrary commands into the file, which is then executed by the vmsaserver script...
SCO Unixware 7.17.1.1 - ARCserver tmp Symlink
SCO Unixware 7.17.1.1 - ARCserver tmp Symlink source: https://www.securityfocus.com/bid/988/info A symlink following vulnerability exists in the ARCserve agent, as shipped with SCO Unixware 7. Upon startup, the asagent program will create several files in /tmp. These are created mode 777, and can...
BMC Software Patrol 3.2.5 - Patrol SNMP Agent File CreationPermission
BMC Software Patrol 3.2.5 - Patrol SNMP Agent File CreationPermission source: https://www.securityfocus.com/bid/525/info Patrol 3.2, installed out of the box, allows for a local root compromise or denial of service. The vulnerability lies in the creation of a file by snmpagnt that is owned by the...