Total
1026 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-5150 | 1 Jose Carlos Medeiros | 1 Maildirsync | 2023-12-10 | 6.9 MEDIUM | N/A |
sample.sh in maildirsync 1.1 allows local users to append data to arbitrary files via a symlink attack on a /tmp/maildirsync-*.#####.log temporary file. | |||||
CVE-2008-4965 | 1 Savonet | 1 Liguidsoap | 2023-12-10 | 6.9 MEDIUM | N/A |
liguidsoap.py in liguidsoap 0.3.8.1+2 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/liguidsoap.liq, (2) /tmp/lig.#####.log, and (3) /tmp/emission.ogg temporary files. | |||||
CVE-2008-4639 | 1 Sentex | 1 Jhead | 2023-12-10 | 4.6 MEDIUM | N/A |
jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | |||||
CVE-2008-4098 | 4 Canonical, Debian, Mysql and 1 more | 4 Ubuntu Linux, Debian Linux, Mysql and 1 more | 2023-12-10 | 4.6 MEDIUM | N/A |
MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL home data directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4097. | |||||
CVE-2008-3261 | 1 Claroline | 1 Claroline | 2023-12-10 | 4.3 MEDIUM | N/A |
Open redirect vulnerability in claroline/redirector.php in Claroline before 1.8.10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter. | |||||
CVE-2008-4973 | 1 Debian | 1 Myspell | 2023-12-10 | 6.9 MEDIUM | N/A |
i2myspell in myspell 3.1 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/i2my#####.1 and (2) /tmp/i2my#####.2 temporary files. | |||||
CVE-2008-4192 | 1 Redhat | 1 Cman | 2023-12-10 | 6.9 MEDIUM | N/A |
The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file. | |||||
CVE-2008-1694 | 1 Gnu | 2 Emacs, Sccs | 2023-12-10 | 4.6 MEDIUM | N/A |
vcdiff in Emacs 20.7 to 22.1.50, when used with SCCS, allows local users to overwrite arbitrary files via a symlink attack on temporary files. | |||||
CVE-2008-5704 | 1 Gpsdrive | 1 Gpsdrive | 2023-12-10 | 7.6 HIGH | N/A |
src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite arbitrary files via a symlink attack on the /tmp/gpsdrive-unit-test/proc temporary file, a different vector than CVE-2008-4959 and CVE-2008-5380. | |||||
CVE-2008-5703 | 1 Gpsdrive | 1 Gpsdrive | 2023-12-10 | 6.2 MEDIUM | N/A |
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380. | |||||
CVE-2008-4476 | 1 Sympa | 1 Sympa | 2023-12-10 | 6.9 MEDIUM | N/A |
sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/sympa_aliases.$$ temporary file. NOTE: wwsympa.fcgi was also reported, but the issue occurred in a dead function, so it is not a vulnerability. | |||||
CVE-2008-4964 | 1 Krzysztof Kozlowski | 1 Konwert | 2023-12-10 | 6.9 MEDIUM | N/A |
filters/any-UTF8 in konwert 1.8 allows local users to delete arbitrary files via a symlink attack on a /tmp/any-##### temporary file. | |||||
CVE-2008-4993 | 1 Xen | 1 Xen | 2023-12-10 | 6.9 MEDIUM | N/A |
qemu-dm.debug in Xen 3.2.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/args temporary file. | |||||
CVE-2008-4936 | 1 Gert Doering | 1 Mgetty | 2023-12-10 | 6.9 MEDIUM | N/A |
faxspool in mgetty 1.1.36 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/faxsp.##### temporary file. | |||||
CVE-2008-4191 | 1 Emacspeak Inc | 1 Emacspeak | 2023-12-10 | 6.6 MEDIUM | N/A |
extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file. | |||||
CVE-2008-4579 | 1 Gentoo | 2 Cman, Fence | 2023-12-10 | 1.9 LOW | N/A |
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly (b) cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file. | |||||
CVE-2008-3929 | 1 Ampache | 1 Ampache | 2023-12-10 | 7.2 HIGH | N/A |
gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filelist temporary file. | |||||
CVE-2008-5375 | 1 Cmus | 1 Cmus | 2023-12-10 | 6.9 MEDIUM | N/A |
cmus-status-display in cmus 2.2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cmus-status temporary file. | |||||
CVE-2009-1753 | 1 Emn | 1 Coccinelle | 2023-12-10 | 3.3 LOW | N/A |
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an unspecified "result file." | |||||
CVE-2008-5377 | 1 Apple | 1 Cups | 2023-12-10 | 6.9 MEDIUM | N/A |
pstopdf in CUPS 1.3.8 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pstopdf.log temporary file, a different vulnerability than CVE-2001-1333. |