CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 6 and 6.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
11751 CVE-2008-5378 59 2008-12-08 2009-07-15
6.9
None Local Medium Not required Complete Complete Complete
arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arb_pids_*_* temporary file.
11752 CVE-2008-5377 59 2008-12-08 2017-09-28
6.9
Admin Local Medium Not required Complete Complete Complete
pstopdf in CUPS 1.3.8 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pstopdf.log temporary file, a different vulnerability than CVE-2001-1333.
11753 CVE-2008-5376 59 2008-12-08 2008-12-09
6.9
None Local Medium Not required Complete Complete Complete
editcomment in crip 3.7 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/*.tag.tmp temporary file.
11754 CVE-2008-5375 59 2008-12-08 2009-09-11
6.9
None Local Medium Not required Complete Complete Complete
cmus-status-display in cmus 2.2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cmus-status temporary file.
11755 CVE-2008-5374 59 2008-12-08 2013-04-18
6.9
None Local Medium Not required Complete Complete Complete
bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb#####.? temporary file, related to the (1) aliasconv.sh, (2) aliasconv.bash, and (3) cshtobash scripts.
11756 CVE-2008-5373 59 2008-12-08 2018-10-09
6.9
Admin Local Medium Not required Complete Complete Complete
mtx-changer.Adic-Scalar-24 in bacula-common 2.4.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mtx.##### temporary file, probably a related issue to CVE-2005-2995.
11757 CVE-2008-5372 59 2008-12-08 2008-12-09
6.9
None Local Medium Not required Complete Complete Complete
sdm-login in sdm-terminal 0.4.0b allows local users to overwrite arbitrary files via a symlink attack on the /tmp/sdm.autologin.once temporary file.
11758 CVE-2008-5371 59 2008-12-08 2009-09-11
6.9
None Local Medium Not required Complete Complete Complete
screenie in screenie 1.30.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.screenie.##### temporary file.
11759 CVE-2008-5370 59 2008-12-08 2008-12-16
6.9
Admin Local Medium Not required Complete Complete Complete
pvpgn-support-installer in pvpgn 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pvpgn-support-1.0.tar.gz temporary file.
11760 CVE-2008-5369 59 2008-12-08 2008-12-09
6.9
None Local Medium Not required Complete Complete Complete
noip2 in noip2 2.1.7 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/noip2 temporary file.
11761 CVE-2008-5368 59 2008-12-08 2009-03-26
6.9
Admin Local Medium Not required Complete Complete Complete
muttprint in muttprint 0.72d allows local users to overwrite arbitrary files via a symlink attack on the /tmp/muttprint.log temporary file.
11762 CVE-2008-5367 59 2008-12-08 2008-12-09
6.9
None Local Medium Not required Complete Complete Complete
ip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on the /tmp/resolv.conf.tmp temporary file.
11763 CVE-2008-5366 59 2008-12-08 2009-01-23
6.9
None Local Medium Not required Complete Complete Complete
The postinst script in ppp 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/probe-finished or (2) /tmp/ppp-errors temporary file.
11764 CVE-2008-5360 2008-12-05 2017-09-28
6.4
None Remote Low Not required Partial Partial None
Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.2_18 and earlier; and SDK and JRE 1.3.1_23 and earlier creates temporary files with predictable file names, which allows attackers to write malicious JAR files via unknown vectors.
11765 CVE-2008-5335 89 Exec Code Sql 2008-12-04 2017-09-28
6.8
User Remote Medium Not required Partial Partial Partial
SQL injection vulnerability in messages.php in PHP-Fusion 6.01.15 and 7.00.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the subject and msg_send parameters, a different vector than CVE-2005-3157, CVE-2005-3158, CVE-2005-3159, CVE-2005-4005, and CVE-2006-2459.
11766 CVE-2008-5327 255 +Info 2008-12-04 2017-08-07
6.5
User Remote Low Single system Partial Partial Partial
The ClearQuest Maintenance Tool in IBM Rational ClearQuest 7 before 7.1 stores the database password in cleartext in an object in a ClearQuest connection profile or export file, which allows remote authenticated users to obtain sensitive information by locating the password object within the object tree.
11767 CVE-2008-5320 89 Exec Code Sql 2008-12-03 2017-09-28
6.5
User Remote Low Single system Partial Partial Partial
SQL injection vulnerability in usersettings.php in e107 0.7.13 and earlier allows remote authenticated users to execute arbitrary SQL commands via the ue[] parameter.
11768 CVE-2008-5313 59 2008-12-03 2010-12-28
6.9
Admin Local Medium Not required Complete Complete Complete
mailscanner 4.68.8 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the (1) f-prot-autoupdate, (2) clamav-autoupdate, (3) avast-autoupdate, and (4) f-prot-6-autoupdate scripts in /etc/MailScanner/autoupdate/; the (5) bitdefender-wrapper, (6) kaspersky-wrapper, (7) clamav-wrapper, and (8) rav-wrapper scripts in /etc/MailScanner/wrapper/; the (9) Quarantine.pm, (10) TNEF.pm, (11) MessageBatch.pm, (12) WorkArea.pm, and (13) SA.pm scripts in /usr/share/MailScanner/MailScanner/; (14) /usr/sbin/MailScanner; and (15) scripts that load the /etc/MailScanner/mailscanner.conf.with.mcp configuration file.
11769 CVE-2008-5312 59 2008-12-03 2010-12-28
6.9
Admin Local Medium Not required Complete Complete Complete
mailscanner 4.55.10 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the (1) f-prot-autoupdate, (2) clamav-autoupdate, (3) panda-autoupdate.new, (4) trend-autoupdate.new, and (5) rav-autoupdate.new scripts in /etc/MailScanner/autoupdate/, a different vulnerability than CVE-2008-5140.
11770 CVE-2008-5303 362 2008-12-01 2018-10-11
6.9
Admin Local Medium Not required Complete Complete Complete
Race condition in the rmtree function in File::Path 1.08 (lib/File/Path.pm) in Perl 5.8.8 allows local users to to delete arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is a regression error related to CVE-2005-0448. It is different from CVE-2008-5302 due to affected versions.
11771 CVE-2008-5302 362 2008-12-01 2018-10-11
6.9
Admin Local Medium Not required Complete Complete Complete
Race condition in the rmtree function in File::Path 1.08 and 2.07 (lib/File/Path.pm) in Perl 5.8.8 and 5.10.0 allows local users to create arbitrary setuid binaries via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is a regression error related to CVE-2005-0448. It is different from CVE-2008-5303 due to affected versions.
11772 CVE-2008-5301 22 Dir. Trav. 2008-12-01 2017-08-07
6.4
None Remote Low Not required Partial Partial None
Directory traversal vulnerability in the ManageSieve implementation in Dovecot 1.0.15, 1.1, and 1.2 allows remote attackers to read and modify arbitrary .sieve files via a ".." (dot dot) in a script name.
11773 CVE-2008-5299 59 2008-12-01 2017-08-07
6.9
Admin Local Medium Not required Complete Complete Complete
chm2pdf 0.9 allows user-assisted local users to delete arbitrary files via a symlink attack on .chm files in the (1) /tmp/chm2pdf/work or (2) /tmp/chm2pdf/orig temporary directories.
11774 CVE-2008-5296 287 Bypass 2008-12-01 2017-08-07
6.8
User Remote Medium Not required Partial Partial Partial
Gallery 1.5.x before 1.5.10 and 1.6 before 1.6-RC3, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative via unspecified cookies. NOTE: some of these details are obtained from third party information.
11775 CVE-2008-5288 94 Exec Code File Inclusion 2008-12-01 2017-09-28
6.8
User Remote Medium Not required Partial Partial Partial
PHP remote file inclusion vulnerability in include/header.php in Werner Hilversum FAQ Manager 1.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the config_path parameter.
11776 CVE-2008-5283 264 2008-11-28 2008-12-02
6.4
None Remote Low Not required None Partial Partial
Google Hack Honeypot (GHH) File Upload Manager 1.3 allows remote attackers to delete uploaded files via unknown vectors related to the delall action to index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. CVE analysis suggests that the most recent version as of 20081128 is 1.2, and the File Upload Manager does not have a "delall" action.
11777 CVE-2008-5267 89 Exec Code Sql 2008-11-28 2017-09-28
6.8
User Remote Medium Not required Partial Partial Partial
SQL injection vulnerability in answer.php in Experts 1.0.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the question_id parameter.
11778 CVE-2008-5265 22 Dir. Trav. 2008-11-28 2017-09-28
6.8
None Remote Medium Not required Partial Partial Partial
Directory traversal vulnerability in index.php in TNT Forum 0.9.4, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the modulo parameter.
11779 CVE-2008-5263 119 Exec Code Overflow 2009-02-26 2018-10-11
6.8
User Remote Medium Not required Partial Partial Partial
Multiple stack-based buffer overflows in the mt_codec::getHdrHead function in kernel/kls_hdr/fmt_codec_hdr.cpp in ksquirrel-libs 0.8.0 allow context-dependent attackers to execute arbitrary code via a crafted Radiance RGBE image (aka .hdr file).
11780 CVE-2008-5242 119 DoS Exec Code Overflow 2008-11-25 2018-10-11
6.8
User Remote Medium Not required Partial Partial Partial
demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not validate the count field before calling calloc for STSD_ATOM atom allocation, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted media file.
11781 CVE-2008-5230 310 2008-11-25 2008-12-03
6.8
User Remote Medium Not required Partial Partial Partial
The Temporal Key Integrity Protocol (TKIP) implementation in unspecified Cisco products and other vendors' products, as used in WPA and WPA2 on Wi-Fi networks, has insufficient countermeasures against certain crafted and replayed packets, which makes it easier for remote attackers to decrypt packets from an access point (AP) to a client and spoof packets from an AP to a client, and conduct ARP poisoning attacks or other attacks, as demonstrated by tkiptun-ng.
11782 CVE-2008-5229 119 DoS Overflow +Priv 2008-11-25 2018-10-11
6.9
Admin Local Medium Not required Complete Complete Complete
Stack-based buffer overflow in Microsoft Device IO Control in iphlpapi.dll in Microsoft Windows Vista Gold and SP1 allows local users in the Network Configuration Operator group to gain privileges or cause a denial of service (system crash) via a large invalid PrefixLength to the CreateIpForwardEntry2 method, as demonstrated by a "route add" command. NOTE: this issue might not cross privilege boundaries.
11783 CVE-2008-5207 22 Dir. Trav. 2008-11-21 2017-08-07
6.8
User Remote Medium Not required Partial Partial Partial
Multiple directory traversal vulnerabilities in Jonascms 1.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the taal parameter to (1) backup.php and (2) gb_voegtoe.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
11784 CVE-2008-5204 22 Exec Code Dir. Trav. 2008-11-21 2017-09-28
6.8
None Remote Medium Not required Partial Partial Partial
Multiple directory traversal vulnerabilities in PowerAward 1.1.0 RC1, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the lang parameter to (1) agb.php, (2) angemeldet.php, (3) anmelden.php, (4) charts.php, (5) external_vote.php, (6) guestbook.php, (7) impressum.php, (8) index.php, (9) rss-reader.php, (10) statistic.php, (11) teilnehmer.php, (12) topsites.php, (13) votecode.php, (14) voting.php, and (15) winner.php.
11785 CVE-2008-5182 362 +Priv 2008-11-20 2018-10-11
6.9
None Local Medium Not required Complete Complete Complete
The inotify functionality in Linux kernel 2.6 before 2.6.28-rc5 might allow local users to gain privileges via unknown vectors related to race conditions in inotify watch removal and umount.
11786 CVE-2008-5162 310 2008-11-26 2008-12-03
6.9
None Local Medium Not required Complete Complete Complete
The arc4random function in the kernel in FreeBSD 6.3 through 7.1 does not have a proper entropy source for a short time period immediately after boot, which makes it easier for attackers to predict the function's return values and conduct certain attacks against the GEOM framework and various network protocols, related to the Yarrow random number generator.
11787 CVE-2008-5157 59 2008-11-18 2017-08-07
6.9
None Local Medium Not required Complete Complete Complete
tau 2.16.4 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/makefile.tau.*.##### or (2) /tmp/makefile.tau*.##### temporary file, related to the (a) tau_cxx, (b) tau_f90, and (c) tau_cc scripts.
11788 CVE-2008-5156 59 2008-11-18 2012-10-30
6.9
None Local Medium Not required Complete Complete Complete
si_mkbootserver in systemimager-server 3.6.3 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/*.inetd.conf or (2) /tmp/pxe.conf.*.tmp temporary file.
11789 CVE-2008-5154 59 2008-11-18 2017-08-07
6.9
None Local Medium Not required Complete Complete Complete
bluetooth.rc in p3nfs 5.19 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/blue.log temporary file.
11790 CVE-2008-5153 59 2008-11-18 2017-08-07
6.9
None Local Medium Not required Complete Complete Complete
spell-check-logic.cgi in Moodle 1.8.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/spell-check-debug.log, (2) /tmp/spell-check-before, or (3) /tmp/spell-check-after temporary file.
11791 CVE-2008-5152 59 2008-11-18 2017-08-07
6.9
None Local Medium Not required Complete Complete Complete
inmail-show in mh-book 200605 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/inmail#####.log or (2) /tmp/inmail#####.stdin temporary file.
11792 CVE-2008-5151 59 2008-11-18 2008-11-18
6.9
None Local Medium Not required Complete Complete Complete
test_parser.py in mayavi 1.5 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/err.log temporary file.
11793 CVE-2008-5150 59 2008-11-18 2017-08-07
6.9
None Local Medium Not required Complete Complete Complete
sample.sh in maildirsync 1.1 allows local users to append data to arbitrary files via a symlink attack on a /tmp/maildirsync-*.#####.log temporary file.
11794 CVE-2008-5149 59 2008-11-18 2009-02-17
6.9
None Local Medium Not required Complete Complete Complete
fwd_check.sh in libncbi6 6.1.20080302 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/##### temporary file.
11795 CVE-2008-5148 59 2008-11-18 2008-12-03
6.9
None Local Medium Not required Complete Complete Complete
sch2eaglepos.sh in geda-gnetlist 1.4.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/##### temporary file.
11796 CVE-2008-5147 59 2008-11-18 2017-08-07
6.9
None Local Medium Not required Complete Complete Complete
test-pipe-to-pyodconverter.org.sh in docvert 2.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/outer.odt temporary file.
11797 CVE-2008-5146 59 2008-11-18 2008-11-18
6.9
None Local Medium Not required Complete Complete Complete
add-accession-numbers in ctn 3.0.6 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/accession temporary file.
11798 CVE-2008-5145 59 2008-11-18 2017-08-07
6.9
None Local Medium Not required Complete Complete Complete
ltpmenu in ltp 20060918 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/runltp.mainmenu.##### temporary file.
11799 CVE-2008-5144 59 2008-11-18 2009-02-17
6.9
None Local Medium Not required Complete Complete Complete
nvidia-cg-toolkit-installer in nvidia-cg-toolkit 2.0.0015 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/nvidia-cg-toolkit-manifest temporary file.
11800 CVE-2008-5143 59 2008-11-18 2008-12-03
6.9
None Local Medium Not required Complete Complete Complete
mgt-helper in multi-gnome-terminal 1.6.2 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/*.debug or (2) /tmp/*.env temporary file.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.