sysfs write file software vulnerabilities
vulnerabilities.aspcode.net
Searching sysfs write file software vulnerabilities
NFS allows attackers to read and write any file
specifying
|
attackers
|
system
|
allows
|
false
|
write
|
read
|
file
|
UID
|
NFS
|
any
|
NFS allows attackers to read and write any file on the system by specifying a false UID.
Slackware Linux 3.4 pkgtool allows local attack
arbitrary
|
Slackware
|
attacker
|
symlink
|
pkgtool
|
allows
|
attack
|
reply
|
files
|
Linux
|
local
|
write
|
file
|
read
|
via
|
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.
Red Hat Linux 6.0 installs the /dev/pts file sy
installs
|
/dev/pts
|
insecure
|
devices
|
system
|
allows
|
local
|
write
|
users
|
other
|
Linux
|
modes
|
which
|
file
|
Red
|
tty
|
Hat
|
Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices.
ghostscript before 6.51 allows local users to r
ghostscript
|
before
|
ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.
Microsoft Internet Information Server (IIS) 4.0
Information
|
Microsoft
|
Internet
|
Server
|
Microsoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while IIS is running.
Norton Internet Security 2001 opens log files w
Security
|
Internet
|
Norton
|
Norton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while Norton Internet Security is running.
Portmon 1.7 and possibly earlier versions allow
arbitrary
|
versions
|
possibly
|
Portmon
|
earlier
|
allows
|
write
|
files
|
local
|
users
|
read
|
via
|
Portmon 1.7 and possibly earlier versions allows local users to read and write arbitrary files via the (1) -c (host file) or (2) -l (log file) command line options.
lppasswd in CUPS 1.1.22 ignores write errors wh
lppasswd
|
CUPS
|
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
ELOG before 2.5.7 allows remote attackers to by
before
|
ELOG
|
ELOG before 2.5.7 allows remote attackers to bypass authentication and download a configuration file that contains a sensitive write password via a modified URL.
Integer overflow in Linux kernel 2.6 allows loc
overwrite
|
overflow
|
writing
|
Integer
|
memory
|
kernel
|
allows
|
sysfs
|
Linux
|
local
|
users
|
file
|
Integer overflow in Linux kernel 2.6 allows local users to overwrite kernel memory by writing to a sysfs file.
Race condition in JFS2 on AIX 5.2 and 5.3, when
information
|
occurring
|
different
|
sensitive
|
condition
|
deleting
|
write
|
which
|
could
|
still
|
while
|
Race
|
leak
|
file
|
data
|
JFS2
|
AIX
|
may
|
I/O
|
Race condition in JFS2 on AIX 5.2 and 5.3, when deleting a file while I/O is still occurring for that file, may write data to a different file, which could leak sensitive information.
Directory traversal vulnerability in cpio 2.6 a
vulnerability
|
directories
|
attackers
|
arbitrary
|
traversal
|
Directory
|
earlier
|
allows
|
remote
|
write
|
cpio
|
via
|
Directory traversal vulnerability in cpio 2.6 and earlier allows remote attackers to write to arbitrary directories via a .. (dot dot) in a cpio file.
The (1) it87 and (2) via686a drivers in I2C for
The (1) it87 and (2) via686a drivers in I2C for Linux 2.6.x before 2.6.11.8, and 2.6.12 before 2.6.12-rc2, create the sysfs "alarms" file with write permissions, which allows local users to cause a denial of service (CPU consumption) by attempting to write to the file, which does not have an associated store function.
syslogtocern in Acme thttpd before 2.23 allows
syslogtocern
|
thttpd
|
before
|
Acme
|
syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file.
drm.c in Linux kernel 2.6.10 to 2.6.13 creates
kernel
|
Linux
|
drmc
|
drm.c in Linux kernel 2.6.10 to 2.6.13 creates a debug file in sysfs with world-readable and world-writable permissions, which allows local users to enable DRM debugging and obtain sensitive information.
libungif library before 4.1.0 allows attackers
libungif
|
library
|
before
|
libungif library before 4.1.0 allows attackers to corrupt memory and possibly execute arbitrary code via a crafted GIF file that leads to an out-of-bounds write.
The fill_write_buffer function in sysfs/file.c
fill_write_buffer
|
sysfs/filec
|
function
|
kernel
|
Linux
|
The fill_write_buffer function in sysfs/file.c in Linux kernel 2.6.12 up to versions before 2.6.17-rc1 does not zero terminate a buffer when a length of PAGE_SIZE or more is requested, which might allow local users to cause a denial of service (crash) by causing an out-of-bounds read.
Microsoft Windows XP has weak permissions (FILE
permissions
|
Microsoft
|
Windows
|
weak
|
has
|
Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.
lharc.c in lha does not securely create tempora
temporary
|
creating
|
securely
|
invoked
|
lharcc
|
create
|
before
|
local
|
users
|
write
|
allow
|
files
|
which
|
might
|
file
|
does
|
read
|
lha
|
not
|
lharc.c in lha does not securely create temporary files, which might allow local users to read or write files by creating a file before LHA is invoked.
The sysfs_readdir function in the Linux kernel
sysfs_readdir
|
Enterprise
|
function
|
service
|
allows
|
denial
|
kernel
|
cause
|
Linux
|
users
|
local
|
Hat
|
Red
|
The sysfs_readdir function in the Linux kernel in Red Hat Enterprise Linux 4.5 allows local users to cause a denial of service (kernel OOPS) by dereferencing a null pointer to an inode in a dentry.
Software vulnerabilities results 1 to 20 of 4447
Page:
1
2
3
4
5
...
223
►