Total
1092 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-7247 | 2 Mysql, Oracle | 2 Mysql, Mysql | 2024-02-04 | 6.0 MEDIUM | N/A |
sql/sql_table.cc in MySQL 5.0.x through 5.0.88, 5.1.x through 5.1.41, and 6.0 before 6.0.9-alpha, when the data home directory contains a symlink to a different filesystem, allows remote authenticated users to bypass intended access restrictions by calling CREATE TABLE with a (1) DATA DIRECTORY or (2) INDEX DIRECTORY argument referring to a subdirectory that requires following this symlink. | |||||
CVE-2008-4639 | 1 Sentex | 1 Jhead | 2024-02-04 | 4.6 MEDIUM | N/A |
jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | |||||
CVE-2008-4936 | 1 Gert Doering | 1 Mgetty | 2024-02-04 | 6.9 MEDIUM | N/A |
faxspool in mgetty 1.1.36 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/faxsp.##### temporary file. | |||||
CVE-2008-4994 | 1 Ti Kan | 1 Xmcd | 2024-02-04 | 6.9 MEDIUM | N/A |
The (1) ncsarmt and (2) ncsawrap scripts in xmcd 2.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.*pid temporary file. | |||||
CVE-2008-4964 | 1 Krzysztof Kozlowski | 1 Konwert | 2024-02-04 | 6.9 MEDIUM | N/A |
filters/any-UTF8 in konwert 1.8 allows local users to delete arbitrary files via a symlink attack on a /tmp/any-##### temporary file. | |||||
CVE-2008-4954 | 1 Fumitoshi Ukai | 1 Fml | 2024-02-04 | 6.9 MEDIUM | N/A |
mead.pl in fml 4.0.3 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/debugbuf temporary file. | |||||
CVE-2009-0032 | 2 Apple, Mandriva | 4 Cups, Corporate Server, Linux and 1 more | 2024-02-04 | 6.9 MEDIUM | N/A |
CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi Network Firewall (MNF) 2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pdf.log temporary file. | |||||
CVE-2009-4135 | 3 Canonical, Fedoraproject, Gnu | 3 Ubuntu Linux, Fedora, Coreutils | 2024-02-04 | 4.4 MEDIUM | N/A |
The distcheck rule in dist-check.mk in GNU coreutils 5.2.1 through 8.1 allows local users to gain privileges via a symlink attack on a file in a directory tree under /tmp. | |||||
CVE-2009-0876 | 2 Linux, Sun | 2 Linux Kernel, Xvm Virtualbox | 2024-02-04 | 6.9 MEDIUM | N/A |
Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux allows local users to gain privileges via a hardlink attack, which preserves setuid/setgid bits on Linux, related to DT_RPATH:$ORIGIN. | |||||
CVE-2008-5149 | 1 Aucko | 1 Libncbi6 | 2024-02-04 | 6.9 MEDIUM | N/A |
fwd_check.sh in libncbi6 6.1.20080302 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/##### temporary file. | |||||
CVE-2009-0347 | 1 Autonomy | 1 Ultraseek | 2024-02-04 | 5.8 MEDIUM | N/A |
Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter. | |||||
CVE-2008-5153 | 1 Moodle | 1 Moodle | 2024-02-04 | 6.9 MEDIUM | N/A |
spell-check-logic.cgi in Moodle 1.8.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/spell-check-debug.log, (2) /tmp/spell-check-before, or (3) /tmp/spell-check-after temporary file. | |||||
CVE-2008-4986 | 1 Georges Khaznadar | 1 Wims | 2024-02-04 | 6.9 MEDIUM | N/A |
wims 3.62 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/env#####, (b) /tmp/sed#####, and (c) /tmp/referer-home.log temporary files, related to the (1) coqweb and (2) account.sh scripts. | |||||
CVE-2008-4908 | 2 Crossfire, Debian | 2 Crossfire, Debian Linux | 2024-02-04 | 3.3 LOW | N/A |
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | |||||
CVE-2008-5376 | 1 Crip | 1 Crip | 2024-02-04 | 6.9 MEDIUM | N/A |
editcomment in crip 3.7 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/*.tag.tmp temporary file. | |||||
CVE-2008-4944 | 1 Gleydson Mazioli Da Silva | 1 Cdcontrol | 2024-02-04 | 6.9 MEDIUM | N/A |
writtercontrol in cdcontrol 1.90 allows local users to overwrite arbitrary files via a symlink attack on /tmp/v-recorder*-out temporary files. | |||||
CVE-2008-6759 | 1 Viart | 1 Viart Shop | 2024-02-04 | 4.3 MEDIUM | N/A |
ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to obtain sensitive information via a URL in the POST_DATA parameter to manuals_search.php, which reveals the installation path in an error message. | |||||
CVE-2008-4956 | 1 Firewallbuilder | 1 Fwbuilder | 2024-02-04 | 6.9 MEDIUM | N/A |
fwb_install in fwbuilder 2.1.19 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/ssh-agent.##### temporary file. | |||||
CVE-2008-1901 | 1 Debian | 1 Aptlinex | 2024-02-04 | 7.2 HIGH | N/A |
aptlinex before 0.91 allows local users to overwrite arbitrary files via a symlink attack on the gambas-apt.lock temporary file. | |||||
CVE-2009-1753 | 1 Emn | 1 Coccinelle | 2024-02-04 | 3.3 LOW | N/A |
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an unspecified "result file." |