Searching permissions software vulnerabilities

pcnfsd (aka rpc.pcnfsd) allows local users to c

pcnfsd |

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.


The default permissions of /dev/kmem in Linux v

permissions | /dev/kmem | versions | default | before | Linux |

The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing.


A system-critical Unix file or directory has in

system-critical | inappropriate | permissions | directory | Unix | file | has |

A system-critical Unix file or directory has inappropriate permissions.


A system-critical Windows NT file or directory

system-critical | inappropriate | permissions | directory | Windows | file | has |

A system-critical Windows NT file or directory has inappropriate permissions.


The HKEY_LOCAL_MACHINE key in a Windows NT syst

HKEY_LOCAL_MACHINE | system-critical | inappropriate | permissions | Windows | system | key | has |

The HKEY_LOCAL_MACHINE key in a Windows NT system has inappropriate, system-critical permissions.


The HKEY_CLASSES_ROOT key in a Windows NT syste

HKEY_CLASSES_ROOT | system-critical | inappropriate | permissions | Windows | system | key | has |

The HKEY_CLASSES_ROOT key in a Windows NT system has inappropriate, system-critical permissions.


A system-critical Windows NT registry key has i

system-critical | inappropriate | permissions | registry | Windows | key | has |

A system-critical Windows NT registry key has inappropriate permissions.


An event log in Windows NT has inappropriate ac

inappropriate | permissions | Windows | access | event | log | has |

An event log in Windows NT has inappropriate access permissions.


An application-critical Windows NT registry key

application-critical | inappropriate | permissions | registry | Windows | key | has |

An application-critical Windows NT registry key has inappropriate permissions.


The default permissions for UnixWare /var/mail

permissions | /var/mail | UnixWare | default | modify | users' | other | local | allow | users | mail | read |

The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.


UNIX news readers tin and rtin create the /tmp/

/tmp/tin_log | permissions | attackers | insecure | symlinks | writable | symlink | readers | modify | attack | allows | create | follow | files | which | user | news | UNIX | rtin | file | tin | via |

UNIX news readers tin and rtin create the /tmp/.tin_log file with insecure permissions and follow symlinks, which allows attackers to modify the permissions of files writable by the user via a symlink attack.


iPass RoamServer 3.1 creates temporary files wi

world-writable | permissions | RoamServer | temporary | creates | iPass | files |

iPass RoamServer 3.1 creates temporary files with world-writable permissions.


The default permissions for the RAS Administrat

vulnerabilities | Administration | Permissions" | permissions | arbitrary | malicious | "Registry | changing | commands | execute | default | Windows | allows | point | local | users | value | key | RAS | DLL | aka | one |

The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.


The default permissions for the MTS Package Adm

Administration | Transaction | permissions | arbitrary | Microsoft | registry | install | default | Package | Windows | modify | Server | allows | users | local | MTS | key |

The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows local users to install or modify arbitrary Microsoft Transaction Server (MTS) packages and gain privileges, aka one of the "Registry Permissions" vulnerabilities.


Macintosh clients, when using NT file system vo

Macintosh | Windows | volumes | clients | system | using | file |

Macintosh clients, when using NT file system volumes on Windows 2000 SP1, create subdirectories and automatically modify the inherited NTFS permissions, which may cause the directories to have less restrictive permissions than intended.


Race condition in SDBINST for SAP database 7.3.

condition | database | SDBINST | Race | SAP |

Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed.


Race condition in bzip2 1.0.2 and earlier allow

condition | bzip2 | Race |

Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.


Race condition in cpio 2.6 and earlier allows l

decompression | decompressed | permissions | arbitrary | condition | complete | earlier | changed | attack | allows | modify | being | while | after | users | whose | local | files | Race | hard | file | link | cpio | via |

Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.


Race condition in Unzip 5.52 allows local users

condition | Unzip | Race |

Race condition in Unzip 5.52 allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by Unzip after the decompression is complete.


eZ publish 3.4.4 through 3.7 before 20050722 ap

publish |

eZ publish 3.4.4 through 3.7 before Friday, July 22, 2005 applies certain permissions on the node level, which allows remote authenticated users to bypass the original permissions on embedded objects in XML fields and read these objects.


Software vulnerabilities results 1 to 20 of 373     
Page: 12345...19