Searching tmp software vulnerabilities

aspppd on Solaris 2.5 x86 allows local users to

/tmp/aspppfifo | privileges | arbitrary | symlink | Solaris | modify | aspppd | allows | attack | users | local | files | gain | root | file | x86 | via |

aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.


Auto_FTP.pl script in Auto_FTP 0.2 uses the /tm

/tmp/ftp_tmp | permissions | Auto_FTPpl | directory | Auto_FTP | insecure | allows | script | shared | local | users | which | uses |

Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions, which allows local users to (1) send arbitrary files to the remote server by placing them in the directory, and (2) view files that are being transferred.


snap command in AIX before 4.3.2 creates the /t

command | before | snap | AIX |

snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a.


netstation.navio-com.rte 1.1.0.1 configuration

netstationnavio-comrte |

netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable.


ppd in Reliant Sinix allows local users to corr

/tmp/ppdtrace | arbitrary | corrupt | symlink | Reliant | allows | attack | files | users | local | Sinix | file | ppd | via |

ppd in Reliant Sinix allows local users to corrupt arbitrary files via a symlink attack in the /tmp/ppd.trace file.


kfm as included with KDE 1.x can allow a local

privileges | additional | directory | attacker | included | symlink | attack | cache | allow | local | /tmp | gain | KDE | kfm | via | can |

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.


Vulnerability in screen before 3.9.10, related

Vulnerability | before | screen |

Vulnerability in screen before 3.9.10, related to a multi-attach error, allows local users to gain root privileges when there is a subdirectory under /tmp/screens/.


kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows

kmmodreg | HP-UX |

kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows local users to create arbitrary world-writeable files via a symlink attack on the (1) /tmp/.kmmodreg_lock and (2) /tmp/kmpath.tmp temporary files.


Maelstrom GPL 3.0.1 allows local users to overw

Maelstrom | GPL |

Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file.


tmp_view.php in FUDforum before 2.2.0 allows re

tmp_viewphp | FUDforum | before |

tmp_view.php in FUDforum before 2.2.0 allows remote attackers to read arbitrary files via an absolute pathname in the file parameter.


BasiliX 1.1.0 saves attachments in a world read

BasiliX |

BasiliX 1.1.0 saves attachments in a world readable /tmp/BasiliX directory, which allows local users to read other users' attachments.


psbanner in the LPRng package allows local user

/tmp/before | overwrite | arbitrary | psbanner | symbolic | package | allows | attack | files | local | users | LPRng | file | link | via |

psbanner in the LPRng package allows local users to overwrite arbitrary files via a symbolic link attack on the /tmp/before file.


S-PLUS 6.0 allows local users to overwrite arbi

privileges | overwrite | arbitrary | possibly | elevate | symlink | S-PLUS | attack | allows | users | local | files | via |

S-PLUS 6.0 allows local users to overwrite arbitrary files and possibly elevate privileges via a symlink attack on (1) /tmp/__F8499 by Sqpe, (2) /tmp/PRINT.$$.out by PRINT, (3) /tmp/SUBST$PID.TXT and /tmp/ed.cmds$PID by mustfix.hlinks, (4) /tmp/file.1 and /tmp/file.2 by sas_get, (5) /tmp/file.1 by sas_vars, and (6) /tmp/sgml2html$$tmp /tmp/sgml2html$$tmp1 /tmp/sgml2html$$tmp2 by sglm2html.


AIM Sniff (aimSniff.pl) 0.9b allows local users

Sniff | AIM |

AIM Sniff (aimSniff.pl) 0.9b allows local users to overwrite arbitrary files via a symlink attack on /tmp/AS.log.


logcheck before 1.1.1 allows local users to ove

logcheck | before |

logcheck before 1.1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary directory in /var/tmp.


Multiple scripts on SuSE Linux 9.0 allow local

arbitrary | overwrite | Multiple | symlink | scripts | attack | files | allow | Linux | users | local | SuSE | via |

Multiple scripts on SuSE Linux 9.0 allow local users to overwrite arbitrary files via a symlink attack on (1) /tmp/fvwm-bug created by fvwm-bug, (2) /tmp/wmmenu created by wm-oldmenu2new, (3) /tmp/rates created by x11perfcomp, (4) /tmp/xf86debug.1.log created by xf86debug, (5) /tmp/.winpopup-new created by winpopup-send.sh, or (6) /tmp/initrd created by lvmcreate_initrd.


Cheetah 0.9.15 and 0.9.16 searches the /tmp dir

Cheetah |

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/.


D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G6

/cgi-bin/firmwarecfg | authentication | DSL-G604T | attackers | executed | DSL-504T | DSL-562T | DSL-502T | bypass | D-Link | allows | remote |

D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address.


xmysqladmin 1.0 and earlier allows local users

xmysqladmin | arbitrary | database | earlier | symlink | attack | backup | allows | delete | users | local | files | file | /tmp | via |

xmysqladmin 1.0 and earlier allows local users to delete arbitrary files via a symlink attack on a database backup file in /tmp.


netserver in netperf 2.4.3 allows local users t

netserver | netperf |

netserver in netperf 2.4.3 allows local users to overwrite arbitrary files via a symlink attack on /tmp/netperf.debug.


Software vulnerabilities results 1 to 20 of 69     
Page: 1234