PT-1999-1179 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns inappropriate permissions for system-critical data in an anonymous FTP account. This includes the root directory being writeable by anyone, the ability to obtain ...

CVE-1999-1173

Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to 1 modify Word Perfect behavior by modifying files in the working directory, or 2 modify files of other users via a symlink attack...

Excite for Web Servers 1.1 - Administrative Password

Excite for Web Servers 1.1 - Administrative Password source: https://www.securityfocus.com/bid/2665/info Excite for Web Servers 1.1 EWS is a search engine suite for web servers running under Windows NT and UNIX. By default the file containing the administrative password, architext.conf, is world...

[SECURITY] Debian not affected by samba problems

There have been reports that some Linux distributions are affected by a vulnerability in samba. There are two issues: the wsmbconf program which is still a prototype application not meant for general release is unsafe. Debian does not distribute this program. some distributions used a...

[SECURITY] Debian not affected by samba problems

There have been reports that some Linux distributions are affected by a vulnerability in samba. There are two issues: the wsmbconf program which is still a prototype application not meant for general release is unsafe. Debian does not distribute this program. some distributions used a...

CVE-1999-1027

Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to gain privileges by replacing it with a Trojan horse program...

CVE-1999-1429

DIT TransferPro installs devices with world-readable and world-writable permissions, which could allow local users to damage disks through the ff device driver...

CVE-1999-1274

iPass RoamServer 3.1 creates temporary files with world-writable permissions...

CVE-1999-1095

sort creates temporary files and follows symbolic links, which allows local users to modify arbitrary files that are writable by the user running sort, as observed in updatedb and other programs that use sort...

Solaris 7.0 - Coredump File Write

Solaris 7.0 - Coredump File Write source: https://www.securityfocus.com/bid/296/info There is a vulnerability in the way Solaris 2.4 pre Jumbo Kernel Patch -35 for SPARC dumps core files. Under normal operation the operating system writes out a core image of a process when it is terminated due to...

Solaris 7.0 - 'Coredump' File Write

source: https://www.securityfocus.com/bid/296/info There is a vulnerability in the way Solaris 2.4 pre Jumbo Kernel Patch -35 for SPARC dumps core files. Under normal operation the operating system writes out a core image of a process when it is terminated due to the receipt of some signals. The...

CVE-1999-0120

Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root...

CVE-1999-1138

SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories 1 /tmp for the dos user, and 2 /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable...

CVE-1999-0084

Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0...

PT-1990-1000 · Nfs · Nfs

Name of the Vulnerable Software and Affected Versions: NFS servers affected versions not specified Description: The issue allows users to gain privileges by creating a writable kmem device and setting the UID to 0 using the mknod command. Recommendations: At the moment, there is no information...

Immunity Canvas: WPSYMPOSIUM_RCE

Name| wpsymposiumrce ---|--- CVE| CWE-434 Exploit Pack| CANVAS Description| WP-Symposium RCE Notes| CVE Name: CWE-434 VENDOR: www.wpsymposium.com Notes: WP-Symposium is a social networking plugin for WordPress with 150k downloads as of 12/12/2014. This is an exceptionally straight forward shell...

Immunity Canvas: WPEASYCART_RCE

Name| wpeasycartrce ---|--- CVE| CWE-434 Exploit Pack| CANVAS Description| WP-EasyCart Shell Upload Notes| CVE Name: CWE-434 VENDOR: http://www.wpeasycart.com/ Changelog: https://wordpress.org/plugins/wp-easycart/changelog/ Notes: Vulnerable versions are = 3.0.4 We assume that...