sysfs read file software vulnerabilities
vulnerabilities.aspcode.net
Searching sysfs read file software vulnerabilities
NFS allows attackers to read and write any file
specifying
|
attackers
|
system
|
allows
|
false
|
write
|
read
|
file
|
UID
|
NFS
|
any
|
NFS allows attackers to read and write any file on the system by specifying a false UID.
php.cgi allows attackers to read any file on th
attackers
|
system
|
phpcgi
|
allows
|
file
|
read
|
any
|
php.cgi allows attackers to read any file on the system.
The showcode.asp sample file in IIS and Site Se
showcodeasp
|
attackers
|
arbitrary
|
allows
|
remote
|
Server
|
sample
|
files
|
read
|
Site
|
file
|
IIS
|
The showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
The viewcode.asp sample file in IIS and Site Se
viewcodeasp
|
attackers
|
arbitrary
|
allows
|
remote
|
Server
|
sample
|
files
|
read
|
Site
|
file
|
IIS
|
The viewcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
The code.asp sample file in IIS and Site Server
attackers
|
arbitrary
|
codeasp
|
allows
|
remote
|
Server
|
sample
|
files
|
read
|
Site
|
file
|
IIS
|
The code.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
The codebrws.asp sample file in IIS and Site Se
codebrwsasp
|
attackers
|
arbitrary
|
allows
|
remote
|
Server
|
sample
|
files
|
read
|
Site
|
file
|
IIS
|
The codebrws.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
tin 1.40 creates the .tin directory with insecu
tin
|
tin 1.40 creates the .tin directory with insecure permissions, which allows local users to read passwords from the .inputhistory file.
The Winmsdp.exe sample file in IIS 4.0 and Site
Winmsdpexe
|
attackers
|
arbitrary
|
allows
|
remote
|
Server
|
sample
|
files
|
read
|
Site
|
file
|
IIS
|
The Winmsdp.exe sample file in IIS 4.0 and Site Server 3.0 allows remote attackers to read arbitrary files.
Slackware Linux 3.4 pkgtool allows local attack
arbitrary
|
Slackware
|
attacker
|
symlink
|
pkgtool
|
allows
|
attack
|
reply
|
files
|
Linux
|
local
|
write
|
file
|
read
|
via
|
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.
Directory traversal vulnerability in ustorekeep
vulnerability
|
ustorekeeper
|
Directory
|
traversal
|
Directory traversal vulnerability in ustorekeeper 1.61 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
Directory traversal vulnerability in zml.cgi al
vulnerability
|
arbitrary
|
attackers
|
traversal
|
Directory
|
remote
|
zmlcgi
|
allows
|
files
|
read
|
via
|
Directory traversal vulnerability in zml.cgi allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
comment2.jse in ScriptEase:WebServer allows rem
comment2jse
|
comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL.
tmp_view.php in FUDforum before 2.2.0 allows re
tmp_viewphp
|
FUDforum
|
before
|
tmp_view.php in FUDforum before 2.2.0 allows remote attackers to read arbitrary files via an absolute pathname in the file parameter.
Directory traversal vulnerability in the vfs_ge
vulnerability
|
vfs_getvfssw
|
arbitrary
|
Directory
|
traversal
|
function
|
modules
|
crafted
|
Solaris
|
kernel
|
allows
|
local
|
users
|
load
|
via
|
Directory traversal vulnerability in the vfs_getvfssw function in Solaris 2.6, 7, 8, and 9 allows local users to load arbitrary kernel modules via crafted (1) mount or (2) sysfs system calls. NOTE: this might be the same issue as CVE-2004-1767, but there are insufficient details to be sure.
Integer overflow in Linux kernel 2.6 allows loc
overwrite
|
overflow
|
writing
|
Integer
|
memory
|
kernel
|
allows
|
sysfs
|
Linux
|
local
|
users
|
file
|
Integer overflow in Linux kernel 2.6 allows local users to overwrite kernel memory by writing to a sysfs file.
The (1) it87 and (2) via686a drivers in I2C for
The (1) it87 and (2) via686a drivers in I2C for Linux 2.6.x before 2.6.11.8, and 2.6.12 before 2.6.12-rc2, create the sysfs "alarms" file with write permissions, which allows local users to cause a denial of service (CPU consumption) by attempting to write to the file, which does not have an associated store function.
drm.c in Linux kernel 2.6.10 to 2.6.13 creates
kernel
|
Linux
|
drmc
|
drm.c in Linux kernel 2.6.10 to 2.6.13 creates a debug file in sysfs with world-readable and world-writable permissions, which allows local users to enable DRM debugging and obtain sensitive information.
The fill_write_buffer function in sysfs/file.c
fill_write_buffer
|
sysfs/filec
|
function
|
kernel
|
Linux
|
The fill_write_buffer function in sysfs/file.c in Linux kernel 2.6.12 up to versions before 2.6.17-rc1 does not zero terminate a buffer when a length of PAGE_SIZE or more is requested, which might allow local users to cause a denial of service (crash) by causing an out-of-bounds read.
Microsoft Windows XP has weak permissions (FILE
permissions
|
Microsoft
|
Windows
|
weak
|
has
|
Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.
The sysfs_readdir function in the Linux kernel
sysfs_readdir
|
Enterprise
|
function
|
service
|
allows
|
denial
|
kernel
|
cause
|
Linux
|
users
|
local
|
Hat
|
Red
|
The sysfs_readdir function in the Linux kernel in Red Hat Enterprise Linux 4.5 allows local users to cause a denial of service (kernel OOPS) by dereferencing a null pointer to an inode in a dentry.
Software vulnerabilities results 1 to 20 of 5402
Page:
1
2
3
4
5
...
271
►