Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eric romang vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2918
The open_cmd_tube function in mount.c for gtkdiskfree 1.9.3 and previous versions allows local users to overwrite arbitrary files via a symlink attack on the gtkdiskfree temporary file.
Gtkdiskfree Gtkdiskfree
NA
CVE-2005-1751
Race condition in shtool 2.0.1 and previous versions allows local users to create or modify arbitrary files via a symlink attack on the .shtool.$$ temporary file, a different vulnerability than CVE-2005-1759.
Shtool Shtool
NA
CVE-2005-1759
Race condition in shtool 2.0.1 and previous versions allows local users to modify or create arbitrary files via a symlink attack on temporary files after they have been created, a different vulnerability than CVE-2005-1751.
Shtool Shtool
NA
CVE-2005-4802
Flexbackup 1.2.1 and previous versions allows local users to overwrite files and execute code via a symlink attack on temporary files. NOTE: the raw source referenced an incorrect candidate number; this is the correct number to use.
Flexbackup Flexbackup
NA
CVE-2005-2240
xpvm.tcl in xpvm 1.2.5 allows local users to overwrite arbitrary files via a symlink attack on the xpvm.trace.$user temporary file.
Xpvm Xpvm 1.2.5
NA
CVE-2005-2660
apachetop 0.12.5 and previous versions, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug.
Apachetop Apachetop
NA
CVE-2005-2231
High Availability Linux Project Heartbeat 1.2.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files.
High Availability Linux Project Heartbeat 1.2.3
NA
CVE-2005-1636
mysql_install_db in MySQL 4.1.x prior to 4.1.12 and 5.x up to 5.0.4 creates the mysql_install_db.X file with a predictable filename and insecure permissions, which allows local users to execute arbitrary SQL commands by modifying the file's contents.
Oracle Mysql 4.0.11
Oracle Mysql 4.0.7
Mysql Mysql 5.0.1
Mysql Mysql 5.0.2
Mysql Mysql 5.0.3
Oracle Mysql 4.0.0
Oracle Mysql 4.0.4
Oracle Mysql 4.0.5
Oracle Mysql 4.0.9
Oracle Mysql 4.0.1
Oracle Mysql 4.0.10
Oracle Mysql 4.0.5a
Oracle Mysql 4.0.6
Oracle Mysql 5.0.0
Oracle Mysql 4.0.2
Oracle Mysql 4.0.3
Oracle Mysql 4.0.8
Mysql Mysql 5.0.4
NA
CVE-2005-3319
The apache2handler SAPI (sapi_apache2.c) in the Apache module (mod_php) for PHP 5.x prior to 5.1.0 final and 4.4 prior to 4.4.1 final allows malicious users to cause a denial of service (segmentation fault) via the session.save_path option in a .htaccess file or VirtualHost.
Php Php 4.0.1
Php Php 4.0.7
Php Php 4.0.0
Php Php 4.0.5
Php Php 4.0.6
Php Php 4.1.2
Php Php 4.2.0
Php Php 4.3.10
Php Php 4.3.11
Php Php 4.3.9
Php Php 4.4.0
Php Php 5.0
Php Php 4.0.2
Php Php 4.2.3
Php Php 4.2
Php Php 4.3.4
Php Php 4.3.5
Php Php 5.0.2
Php Php 5.0.3
Php Php 4.2.1
Php Php 4.2.2
Php Php 4.3.2
NA
CVE-2005-3353
The exif_read_data function in the Exif module in PHP prior to 4.4.1 allows remote malicious users to cause a denial of service (infinite loop) via a malformed JPEG image.
Php Php 4.0.0
Php Php 4.1.0
Php Php 4.1.1
Php Php 4.1.2
Php Php 4.3.10
Php Php 4.3.11
Php Php 4.3.8
Php Php 4.3.9
Php Php 4.0.1
Php Php 4.0.2
Php Php 4.2.0
Php Php 4.2.1
Php Php 4.3.2
Php Php 4.3.3
Php Php 4.4.0
Php Php 4.0.5
Php Php 4.0.6
Php Php 4.3.0
Php Php 4.3.1
Php Php 4.3.6
Php Php 4.3.7
Php Php 4.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »