ownership software vulnerabilities
vulnerabilities.aspcode.net
Searching ownership software vulnerabilities
rcp on various Linux systems including Red Hat
including
|
"nobody"
|
various
|
systems
|
allows
|
other
|
Linux
|
user
|
UID
|
rcp
|
Red
|
Hat
|
rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file.
chuid 1.2 and earlier does not properly verify
attackers
|
ownership
|
properly
|
changed
|
earlier
|
remote
|
allows
|
change
|
verify
|
users
|
other
|
owned
|
chuid
|
files
|
which
|
such
|
root
|
does
|
not
|
chuid 1.2 and earlier does not properly verify the ownership of files that will be changed, which allows remote attackers to change files owned by other users, such as root.
The /proc filesystem in Linux allows local user
information
|
permissions
|
/proc/self
|
filesystem
|
sensitive
|
ownership
|
executing
|
various
|
entries
|
program
|
opening
|
allows
|
setuid
|
change
|
causes
|
obtain
|
before
|
/proc
|
Linux
|
those
|
local
|
which
|
users
|
fail
|
The /proc filesystem in Linux allows local users to obtain sensitive information by opening various entries in /proc/self before executing a setuid program, which causes the program to fail to change the ownership and permissions of those entries.
kdocker.cpp in kdocker 0.1 through 0.8 does not
kdockercpp
|
arbitrary
|
ownership
|
properly
|
programs
|
kdocker
|
execute
|
through
|
allow
|
local
|
users
|
files
|
check
|
could
|
which
|
does
|
not
|
kdocker.cpp in kdocker 0.1 through 0.8 does not properly check the ownership of files, which could allow local users to execute arbitrary programs.
The copy_symlink function in rsnapshot 1.2.0 an
copy_symlink
|
rsnapshot
|
function
|
The copy_symlink function in rsnapshot 1.2.0 and 1.1.x before 1.1.7 changes the ownership of files that a symlink points to rather than the symlink itself, which allows local users to obtain access to arbitrary files.
Unknown vulnerability in (1) Webmin and (2) Use
vulnerability
|
Unknown
|
Unknown vulnerability in (1) Webmin and (2) Usermin before 1.200 causes Webmin to change permissions and ownership of configuration files, with unknown impact.
Unspecified vulnerability in the Finder Get Inf
vulnerability
|
Unspecified
|
window
|
Finder
|
Info
|
Mac
|
Get
|
Unspecified vulnerability in the Finder Get Info window for Mac OS X 10.4 up to 10.4.2 causes Finder to misrepresent file and group ownership information. NOTE: it is not clear whether this issue satisfies the CVE definition of a vulnerability.
HylaFax 4.2.1 and earlier does not create or ve
HylaFax
|
HylaFax 4.2.1 and earlier does not create or verify ownership of the UNIX domain socket, which might allow local users to read faxes and cause a denial of service by creating the socket using the hyla.unix temporary file.
StoreBackup before 1.19 does not properly set t
StoreBackup
|
before
|
StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be restored with incorrect ownership.
yiff server (yiff-server) 2.14.2 on Debian GNU/
server
|
yiff
|
yiff server (yiff-server) 2.14.2 on Debian GNU/Linux runs as root and does not properly verify ownership of files that it opens, which allows local users to read arbitrary files.
Unspecified vulnerability in rshd in Heimdal 0.
vulnerability
|
Unspecified
|
Heimdal
|
before
|
rshd
|
06x
|
Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via unknown vectors.
Unspecified vulnerability in usermod in HP-UX B
vulnerability
|
permissions
|
directories
|
Unspecified
|
directory
|
ownership
|
intended
|
options
|
involve
|
usermod
|
certain
|
result
|
secure
|
change
|
which
|
under
|
files
|
B1111
|
B1100
|
B1123
|
HP-UX
|
cause
|
might
|
less
|
home
|
than
|
all
|
new
|
run
|
Unspecified vulnerability in usermod in HP-UX B.11.00, B.11.11, and B.11.23, when run with certain options that involve a new home directory, might cause usermod to change the ownership of all directories and files under the new directory, which might result in less secure permissions than intended.
Photo Organizer 2.32b and earlier does not prop
unauthorized
|
attackers
|
ownership
|
Organizer
|
properly
|
certain
|
related
|
vectors
|
objects
|
earlier
|
remote
|
access
|
allows
|
Photo
|
check
|
which
|
232b
|
does
|
gain
|
not
|
via
|
Photo Organizer 2.32b and earlier does not properly check the ownership of certain objects, which allows remote attackers to gain unauthorized access via vectors related to (1) camera del, (2) camera edit, (3) folder/album deletion, (4) photo.move, (5) content.indexer, (6) folder.content, and possibly other operations.
The PPP daemon (pppd) in Apple Mac OS X 10.4.8
daemon
|
PPP
|
The PPP daemon (pppd) in Apple Mac OS X 10.4.8 checks ownership of the stdin file descriptor to determine if the invoker has sufficient privileges, which allows local users to load arbitrary plugins and gain root privileges by bypassing this check.
Zend Platform 2.2.3 and earlier has incorrect o
Platform
|
Zend
|
Zend Platform 2.2.3 and earlier has incorrect ownership for scd.sh and certain other files, which allows local users to gain root privileges by modifying the files. NOTE: this only occurs when safe_mode and open_basedir are disabled; other settings require leverage for other vulnerabilities.
pam_console does not properly restore ownership
pam_console
|
privileges
|
ownership
|
properly
|
multiple
|
console
|
devices
|
restore
|
certain
|
logged
|
which
|
might
|
allow
|
local
|
there
|
users
|
does
|
gain
|
into
|
user
|
logs
|
one
|
out
|
not
|
pam_console does not properly restore ownership for certain console devices when there are multiple users logged into the console and one user logs out, which might allow local users to gain privileges.
xterm, including 192-7.el4 in Red Hat Enterpris
Enterprise
|
GNU/Linux
|
ownership
|
including
|
terminals
|
192-7el4
|
devices
|
allows
|
Debian
|
users'
|
208-31
|
other
|
which
|
users
|
local
|
write
|
Linux
|
xterm
|
wrong
|
group
|
data
|
sets
|
tty
|
Red
|
Hat
|
xterm, including 192-7.el4 in Red Hat Enterprise Linux and 208-3.1 in Debian GNU/Linux, sets the wrong group ownership of tty devices, which allows local users to write data to other users' terminals.
Unspecified vulnerability in Low Bandwidth X pr
vulnerability
|
Unspecified
|
Bandwidth
|
proxy
|
Low
|
Unspecified vulnerability in Low Bandwidth X proxy (lbxproxy) on Sun Solaris 8 through 10 before Wednesday, July 25, 2007 allows local users to read arbitrary files with root group ownership via unknown vectors.
AIX 5.2 and 5.3 install pioinit with user and g
privileges
|
modifying
|
ownership
|
possibly
|
install
|
pioinit
|
allows
|
printq
|
users
|
group
|
which
|
local
|
gain
|
root
|
user
|
AIX
|
bin
|
AIX 5.2 and 5.3 install pioinit with user and group ownership of bin, which allows local users with bin or possibly printq privileges to gain root privileges by modifying pioinit.
ChironFS before 1.0 RC7 sets user/group ownersh
user/group
|
privileges
|
ownership
|
ChironFS
|
instead
|
created
|
creator
|
account
|
mounter
|
allows
|
before
|
local
|
users
|
files
|
which
|
sets
|
gain
|
RC7
|
ChironFS before 1.0 RC7 sets user/group ownership to the mounter account instead of the creator account when files are created, which allows local users to gain privileges.
Software vulnerabilities results 1 to 20 of 23
Page:
1
2
►