Searching permission software vulnerabilities

Joe's Own Editor (joe) 2.8 sets the world-reada

Editor | Joe's | Own |

Joe's Own Editor (joe) 2.8 sets the world-readable permission on its crash-save file, DEADJOE, which could allow local users to read files that were being edited by other users.


The slip_down function in slip.c for the uml_ne

uml-utilities | slip_down | function | program | uml_net | slipc |

The slip_down function in slip.c for the uml_net program in uml-utilities Wednesday, September 03, 2003, when uml_net is installed setuid root, does not verify whether the calling user has sufficient permission to disable an interface, which allows local users to cause a denial of service (network service disabled).


PostgreSQL 8.0.0 and earlier allows local users

PostgreSQL |

PostgreSQL 8.0.0 and earlier allows local users to bypass the EXECUTE permission check for functions by using the CREATE AGGREGATE command.


minis.php in Minis 0.2.1 allows remote attacker

minisphp | Minis |

minis.php in Minis 0.2.1 allows remote attackers to cause a denial of service (infinite loop) via an HTTP request for a file that the web server does not have permission to read, as demonstrated using the month parameter.


FreeBSD 5.x to 5.4 on AMD64 does not properly i

restrictions | information | initialize | permission | privileges | sensitive | hardware | intended | possibly | properly | certain | FreeBSD | service | allows | bypass | obtain | bitmap | access | denial | cause | allow | AMD64 | which | users | local | gain | does | user | used | not |

FreeBSD 5.x to 5.4 on AMD64 does not properly initialize the IO permission bitmap used to allow user access to certain hardware, which allows local users to bypass intended access restrictions to cause a denial of service, obtain sensitive information, and possibly gain privileges.


Drupal 4.5.0 through 4.5.5 and 4.6.0 through 4.

Drupal |

Drupal 4.5.0 through 4.5.5 and 4.6.0 through 4.6.3, when running on PHP5, does not correctly enforce user privileges, which allows remote attackers to bypass the "access user profiles" permission.


Multiple Adobe products, including (1) Photosho

including | products | Multiple | Adobe |

Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator CS2, and (3) Adobe Help Center, install a large number of .EXE and .DLL files with write-access permission for the Everyone group, which allows local users to gain privileges via Trojan horse programs.


imageVue 16.1 allows remote attackers to obtain

imageVue |

imageVue 16.1 allows remote attackers to obtain folder permission settings via a direct request to dir.php, which returns an XML document that lists folders and their permissions.


Comvigo IM Lock 2006 uses a simple substitution

Comvigo | Lock |

Comvigo IM Lock 2006 uses a simple substitution cipher to encrypt a password stored in the msnvs\prc registry value, for which all users have Read permission, which allows local users to bypass the product's blocking functionality by decrypting the password.


Certain modifications to the Linux kernel 2.6.1

modifications | Certain | kernel | Linux |

Certain modifications to the Linux kernel 2.6.16 and earlier do not add the appropriate Linux Security Modules (LSM) file_permission hooks to the (1) readv and (2) writev functions, which might allow attackers to bypass intended access restrictions.


Linux kernel 2.4.x and 2.6.x up to 2.6.16 allow

kernel | Linux | 26x | 24x |

Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass IPC permissions and modify a readonly attachment of shared memory by using mprotect to give write permission to the attachment. NOTE: some original raw sources combined this issue with CVE-2006-1524, but they are different bugs.


Cross-site scripting (XSS) vulnerability in E-c

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in E-commerce 4.7 for Drupal before file.module 1.37.2.4 (Saturday, August 12, 2006) allows remote authenticated users with the "create products" permission to inject arbitrary web script or HTML via unspecified vectors.


PHP remote file inclusion vulnerability in incl

includes/logincphp | vulnerability | Guestbook | inclusion | SignKorn | Telekorn | remote | file | PHP |

PHP remote file inclusion vulnerability in includes/log.inc.php in Telekorn SignKorn Guestbook (SL) 1.3 and earlier, when register_globals is enabled and _SESSION[permission] parameter is set to "yes", allows remote attackers to execute arbitrary PHP code via a URL in the dir_path parameter.


Sun Solaris 10 before 20061006 uses "incorrect

Solaris | before | Sun |

Sun Solaris 10 before Friday, October 06, 2006 uses "incorrect and insufficient permission checks" that allow local users to intercept or spoof packets by creating a raw socket on a link aggregation (network device aggregation).


Variable overwrite vulnerability in blog.php in

vulnerability | demonstrated | PHP-Update | attackers | arbitrary | variables | overwrite | multiple | function | Variable | vectors | extract | execute | program | earlier | blogphp | allows | remote | code | PHP | use | via |

Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the (1) f, (2) newmessage, (3) newusername, (4) adminuser, and (5) permission parameters.


DiskManagementTool in the DiskManagement.framew

DiskManagementframework | DiskManagementTool |

DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation.


HP Network Node Manager (NNM) Remote Console 7.

Manager | Network | Node |

HP Network Node Manager (NNM) Remote Console 7.50 assigns Everyone Full Control permission for the %PROGRAMFILES%\HP OpenView directory tree, which allows local users to gain privileges via a Trojan horse executable file or ActiveX component, or a modified bin\ovtrcsvc.exe for the HP Open View Shared Trace Service.


ScramDisk 4 Linux before 1.0-1 does not perform

privileges | permission | container | ScramDisk | directory | perform | points | system | allows | before | checks | users | point | using | which | mount | local | Linux | 10-1 | gain | does | not |

ScramDisk 4 Linux before 1.0-1 does not perform permission checks on mount points, which allows local users to gain privileges by using a system directory as a mount point for a container.


Unspecified vulnerability in the Roles module i

vulnerability | Unspecified | module | Xaraya | Roles |

Unspecified vulnerability in the Roles module in Xaraya 1.1.2 and earlier allows attackers to gain privileges via unspecified vectors, probably related to incorrect permission checking in xartemplates/user-view.xd.


vtiger CRM before 5.0.3 allows remote authentic

before | vtiger | CRM |

vtiger CRM before 5.0.3 allows remote authenticated users to import and export the information for a contact even when they only have the View permission.


Software vulnerabilities results 1 to 20 of 28     
Page: 12