Total
1174 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2010-3691 | 1 Apereo | 1 Phpcas | 2024-08-07 | N/A |
PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file. | ||||
CVE-2010-3095 | 1 Mailscanner | 1 Mailscanner | 2024-08-07 | 4.7 Medium |
mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files. NOTE: this issue exists because of an incomplete fix for CVE-2008-5313. | ||||
CVE-2010-2794 | 2 Mozilla, Redhat | 3 Firefox, Enterprise Linux, Spice-xpi | 2024-08-07 | N/A |
The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files via a symlink attack on an unspecified log file. | ||||
CVE-2010-2431 | 2 Apple, Redhat | 2 Cups, Enterprise Linux | 2024-08-07 | N/A |
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file. | ||||
CVE-2010-2064 | 1 Rpcbind Project | 1 Rpcbind | 2024-08-07 | 7.1 High |
rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr. | ||||
CVE-2010-2056 | 1 Gnu | 1 Gv | 2024-08-07 | N/A |
GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | ||||
CVE-2010-2027 | 2 Linux, Wolfram Research | 2 Linux Kernel, Mathematica | 2024-08-07 | N/A |
Mathematica 7, when running on Linux, allows local users to overwrite arbitrary files via a symlink attack on (1) files within /tmp/MathLink/ or (2) /tmp/fonts$$.conf. | ||||
CVE-2010-2053 | 1 Emesene | 1 Emesene | 2024-08-07 | N/A |
emesenelib/ProfileManager.py in emesene before 1.6.2 allows local users to overwrite arbitrary files via a symlink attack on the emsnpic temporary file. | ||||
CVE-2010-1693 | 1 Openfabrics | 1 Enterprise Distribution | 2024-08-07 | N/A |
openibd in OpenFabrics Enterprise Distribution (OFED) 1.5.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ib_set_node_desc.sh temporary file. | ||||
CVE-2010-1626 | 3 Mysql, Oracle, Redhat | 3 Mysql, Mysql, Enterprise Linux | 2024-08-07 | N/A |
MySQL before 5.1.46 allows local users to delete the data and index files of another user's MyISAM table via a symlink attack in conjunction with the DROP TABLE command, a different vulnerability than CVE-2008-4098 and CVE-2008-7247. | ||||
CVE-2010-1183 | 1 Sun | 1 Solaris | 2024-08-07 | N/A |
Certain patch-installation scripts in Oracle Solaris allow local users to append data to arbitrary files via a symlink attack on the /tmp/CLEANUP temporary file, related to use of Update Manager. | ||||
CVE-2010-1160 | 1 Gnu | 1 Nano | 2024-08-07 | N/A |
GNU nano before 2.2.4 does not verify whether a file has been changed before it is overwritten in a file-save operation, which allows local user-assisted attackers to overwrite arbitrary files via a symlink attack on an attacker-owned file that is being edited by the victim. | ||||
CVE-2010-0832 | 1 Canonical | 1 Ubuntu Linux | 2024-08-07 | N/A |
pam_motd (aka the MOTD module) in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user file stamps" and the motd.legal-notice file. | ||||
CVE-2010-0788 | 1 Ncpfs | 1 Ncpfs | 2024-08-07 | N/A |
ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs. | ||||
CVE-2010-0792 | 1 Thibault Godouet | 1 Fcron | 2024-08-07 | N/A |
fcrontab in fcron before 3.0.5 allows local users to read arbitrary files via a symlink attack on an unspecified file. | ||||
CVE-2010-0789 | 1 Fuse | 1 Fuse | 2024-08-07 | N/A |
fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint. | ||||
CVE-2010-0787 | 2 Redhat, Samba | 2 Enterprise Linux, Samba | 2024-08-07 | N/A |
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file. | ||||
CVE-2010-0439 | 1 Chip Salzenberg | 1 Deliver | 2024-08-07 | N/A |
Chip Salzenberg Deliver allows local users to cause a denial of service, obtain sensitive information, and possibly change the ownership of arbitrary files via a symlink attack on an unspecified file. | ||||
CVE-2010-0424 | 3 Fedorahosted, Paul Vixie, Redhat | 3 Cronie, Vixie Cron, Enterprise Linux | 2024-08-07 | N/A |
The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequently cause a denial of service, via a symlink attack on a temporary file in the /tmp directory. | ||||
CVE-2010-0398 | 1 Autokey Project | 1 Autokey | 2024-08-07 | 6.5 Medium |
The init script in autokey before 0.61.3-2 allows local attackers to write to arbitrary files via a symlink attack. |