Filtered by vendor Norman Ramsey Subscriptions
Filtered by product Noweb Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2005-3342 1 Norman Ramsey 1 Noweb 2024-11-21 N/A
noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.
CVE-2003-0381 1 Norman Ramsey 1 Noweb 2024-11-20 N/A
Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files via multiple vectors including the noroff script.