35 matches found
CVE-2017-0885
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a error message disclosing existence of file in write-only share. Due to an error in the application logic an adversary with access to a write-only share may enumerate the names of existing files and subfolders by comparing the exception...
CVE-2017-0885
CVE-2017-0885 affects Nextcloud Server prior to 9.0.55 and 10.0.2. An error-message disclosure in write-only shares allows an adversary with access to enumerate existing files and subfolders by comparing exception messages. The issue is documented across multiple sources (Nextcloud advisory NC-SA...
PT-2017-10686 · Nextcloud · Nextcloud Server
Name of the Vulnerable Software and Affected Versions: Nextcloud Server versions prior to 9.0.55 Nextcloud Server versions prior to 10.0.2 Description: The issue allows an adversary with access to a write-only share to enumerate the names of existing files and subfolders by comparing exception...
Error message discloses existence of file in write-only share (NC-SA-2017-003)
Due to an error in the application logic an adversary with access to a write-only share may enumerate the names of existing files and subfolders by comparing the exception messages...
PT-2010-3298 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.29 through 2.6.32 Description: The issue arises from the btrfs ioctl clone function in fs/btrfs/ioctl.c, which does not verify if a cloned file descriptor is opened for reading. This oversight allows local users to...
CVE-2010-1636
The btrfsioctlclone function in fs/btrfs/ioctl.c in the btrfs functionality in the Linux kernel 2.6.29 through 2.6.32, and possibly other versions, does not ensure that a cloned file descriptor has been opened for reading, which allows local users to read sensitive information from a write-only...
FreeBSD sendfile(2)函数只写文件权限绕过安全限制漏洞
BUGTRAQ ID: 27789 CVECAN ID: CVE-2008-0777 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD在处理文件的访问控制时存在漏洞,本地攻击者可能利用此漏洞获取敏感信息。 当进程打开文件(和其他文件系统对象,如目录)时,会指定访问标记说明所要进行的读、写或其他操作。会对这些标记检查文件系统权限,然后存储到所生成的文件描述符,以验证之后的操作。...
FreeBSD sendfile() privilege escalation
Syscall allows read access to write-only files...
FreeBSD Security Advisory FreeBSD-SA-08:03.sendfile
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-08:03.sendfile Security Advisory The FreeBSD Project Topic: sendfile2 write-only file permission bypass Category: core Module: syskern Announced: 2008-02-14...
Code injection
The sendfile system call in FreeBSD 5.5 through 7.0 does not check the access flags of the file descriptor used for sending a file, which allows local users to read the contents of write-only files...
CVE-2008-0777
The sendfile system call in FreeBSD 5.5 through 7.0 does not check the access flags of the file descriptor used for sending a file, which allows local users to read the contents of write-only files...
CVE-2008-0777
The sendfile system call in FreeBSD 5.5 through 7.0 does not check the access flags of the file descriptor used for sending a file, which allows local users to read the contents of write-only files...
FreeBSD-SA-08:03.sendfile
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-08:03.sendfile Security Advisory The FreeBSD Project Topic: sendfile2 write-only file permission bypass Category: core Module: syskern Announced: 2008-02-14...
hppsc2510.txt
Product Name: HP PSC 2510 Summary: Ftp print service is not configurable This printer comes with an ftp daemon which allows anonymous access, and drops the user into a write only directory. By default anyone from anywhere can drop a file into this directory and the printer will print the document...
Unsecure Ftpd on HP PSC 2510 Printer
Product Name: HP PSC 2510 Summary: Ftp print service is not configurable This printer comes with an ftp daemon which allows anonymous access, and drops the user into a write only directory. By default anyone from anywhere can drop a file into this directory and the printer will print the document...