CVE-2001-0135

CVE-2001-0135 affects Ultraboard 2000, version 2.11. The default install creates Skins, Database, and Backups directories with world-writable permissions, enabling a local user to modify sensitive information or potentially insert and execute CGI programs. The connected OpenVAS/Nessus entries ref...

CVE-2000-1072

CVE-2000-1072 affects iCal 2.1 Patch 2 where multiple files are installed with world-writable permissions. This allows a local user to modify the iCal configuration and, by replacing the iplncal.sh program with a Trojan horse, execute arbitrary commands. The underlying issue is improper permissio...

CVE-2000-1072

iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse...

CVE-2000-1072

iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse...

CVE-2000-0880

LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file...

CVE-2000-0791

Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse...

CVE-2000-0719

VariCAD 7.0 is installed with world-writeable files, which allows local users to replace the VariCAD programs with a Trojan horse program...

CVE-2000-0721

The FSserial, FlagShipc, and FlagShipp programs in the FlagShip package are installed world-writeable, which allows local users to replace them with Trojan horses...

CVE-2000-0880

LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file...

CVE-2000-0880

The CVE-2000-0880 entry concerns LPPlus creating the lpdprocess file with world-writable permissions, which allows local users to kill arbitrary processes by specifying a process ID and using the setuid dcclpdshut program to terminate the specified process. Impact is local access and partial inte...

CVE-2000-0714

The CVE-2000-0714 issue concerns umb-scheme 3.2-11 for Red Hat Linux, which is installed with world-writable files. This local-access vulnerability arises from permissions allowing modification of files by any user, potentially compromising integrity and confidentiality of affected components. Th...

CVE-2000-0791

Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse...

CVE-2000-0719

CVE-2000-0719 concerns VariCAD 7.0, where world-writable files enable local users to replace VariCAD binaries with a Trojan horse program. The vulnerability arises from permissions/ownership allowing overwrite of executable components. Reported impact is local code integrity compromise; no exploi...

CVE-2000-0719

VariCAD 7.0 is installed with world-writeable files, which allows local users to replace the VariCAD programs with a Trojan horse program...

CVE-2000-0791

CVE-2000-0791 describes a Trustix vulnerability where the httpsd binary (Apache-SSL) is installed with world-writeable permissions, enabling local users to replace it with a Trojan horse. The root cause is improper permissions on the httpsd executable, allowing local write access and substitution...

CVE-2000-0721

The FSserial, FlagShipc, and FlagShipp programs in the FlagShip package are installed world-writeable, which allows local users to replace them with Trojan horses...

Veritas Volume Manager 3.0.x hole

Veritas Volume Manager 3.0.x for Solaris contains a security hole which can, under specific circumstances, allow local users to gain root access. Details ------- When a system with Veritas Volume Manger 3.0.x installed boots, the initialization script for the Storage Administrator Server...

CVE-2000-0206

The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges...

CVE-2000-0206

The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges...

Ascom COLTSOHO Brocade Fabric OS MatchBox Win98NT4 Solaris Xyplex - SNMP World Writeable Community

Ascom COLTSOHO Brocade Fabric OS MatchBox Win98NT4 Solaris Xyplex - SNMP World Writeable Community Ascom COLTSOHO 2.0.21,Brocade Fabric OS 2.1.2,Cisco IOS 11.2,Cray MatchBox Router 2.0.1,Windows 98,Windows NT 4.0,Solaris 2.6,Xyplex Router 6.1.1 SNMP World Writeable Community Vulnerability source:...