CVE-2005-1856

The CD-burning feature in backup-manager 0.5.8 and earlier uses a fixed filename in a world-writable directory for logging, which allows local users to overwrite files via a symlink attack...

CVE-2004-2303

MTools Mformat before 3.9.9, when installed setuid root, creates files with world-readable and world-writable permissions, which allows local users to read and overwrite files...

CVE-2005-2582

Kaspersky Anti-Virus for Unix/Linux File Servers 5.0-5 uses world-writable permissions for the 1 log and 2 license directory, which allows local users to delete log files, append to arbitrary files via a symlink attack on kavmonitor.log, or delete license keys and prevent keepup2date from properl...

CVE-2004-2228

Mozilla Firefox before 1.0 is installed with world-writable permissions on Mac OS X, which allows local users to gain privileges...

CVE-2005-2212

Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows attackers to modify or read the repository...

CVE-2005-2212

Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows attackers to modify or read the repository...

CVE-2005-2136

Raritan Dominion SX DSX Console Servers DSX16, DSX32, DSX4, DSX8, and DSXA-48 set 1 world-readable permissions for /etc/shadow and 2 world-writable permissions for /bin/busybox, which allows local users to obtain hashed passwords or execute arbitrary code as other users...

CVE-2002-1791

SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with world-writable permissions, which allows local users to overwrite or corrupt those files...

CVE-2002-1956

CVE-2002-1956 affects ROX Filer versions 1.1.9 and 1.2. The issue is due to world-writable permissions, enabling local users to write to arbitrary files. No remediation or exploit details are provided in the connected documents.

CVE-2002-1956

ROX Filer 1.1.9 and 1.2 is installed with world writable permissions, which allows local users to write to arbitrary files...

CVE-2002-1836

The default configuration of Xerox DocuTech 6110 and DocuTech 6115 exports certain NFS shares to the world with world writable permissions, which may allow remote attackers to modify sensitive files...

CVE-2002-1836

Xerox DocuTech 6110/6115 default configuration exports certain NFS shares globally with world-writable permissions, enabling remote modification of sensitive files. Root cause: misconfigured NFS exports allowing write access from any host. Impact: potential integrity risk to exposed files; no exp...

CVE-2002-1956

ROX Filer 1.1.9 and 1.2 is installed with world writable permissions, which allows local users to write to arbitrary files...

CVE-2002-1669

pkgadd in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation...

CVE-2002-1737

Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files...

kdbg security update

CentOS Errata and Security Advisory CESA-2005:416-01 An updated kdbg package that fixes a minor security issue is now available for Red Hat Enterprise Linux 2.1. This update has been rated as having low security impact by the Red Hat Security Response Team. Kdbg is a K Desktop Environment KDE GUI...

CVE-2004-2133

Certain third-party packages for CVSup 16.1h, such as SuSE Linux, contain untrusted paths in the ELF RPATH fields of certain executables, which could allow local users to execute arbitrary code by causing cvsup to link against malicious libraries that are created in world-writable directories suc...

[SA15386] Cheetah Insecure Module Importing Vulnerability

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Cheetah Insecure Module Importing Vulnerability SECUNI...

CVE-2004-1833

CVE-2004-1833 affects Borland Interbase 7.1 on Linux. The admin.ib file has default world-writable permissions, enabling local users to gain database administrative privileges (privilege escalation). No remediation details are provided in the supplied documents; mode is based on the concrete desc...

CVE-2004-1833

The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to gain database administrative privileges...