|
258401
|
- |
|
robert_ancell
|
lightdm
|
LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink attack on ~/.Xauthority.
|
CWE-59
Link Following
|
CVE-2011-4105
|
2014-03-8 13:51 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258402
|
- |
|
ecryptfs
|
ecryptfs-utils
ecryptfs_utils
|
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and con…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1831
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258403
|
- |
|
ecryptfs
|
ecryptfs-utils
ecryptfs_utils
|
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1832
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258404
|
- |
|
ecryptfs
|
ecryptfs-utils
ecryptfs_utils
|
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) o…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1834
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258405
|
- |
|
ecryptfs
|
ecryptfs-utils
ecryptfs_utils
|
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users t…
|
CWE-255
Credentials Management
|
CVE-2011-1835
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258406
|
- |
|
ecryptfs
|
ecryptfs-utils
ecryptfs_utils
|
utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard f…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1836
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258407
|
- |
|
ecryptfs
|
ecryptfs-utils
ecryptfs_utils
|
The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1837
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258408
|
- |
|
posh_project
|
posh
|
SQL injection vulnerability in portal/addtoapplication.php in POSH (aka Posh portal or Portaneo) 3.0 before 3.3.0 allows remote attackers to execute arbitrary SQL commands via the rssurl parameter.
|
CWE-89
SQL Injection
|
CVE-2014-2211
|
2014-03-8 05:32 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258409
|
- |
|
drinkedin
|
drinkedin_barfinder
|
The DrinkedIn BarFinder application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently obtain sensitive fine-geo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1887
|
2014-03-8 05:04 |
2014-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258410
|
- |
|
edinburghtour
|
edinburgh_by_bus
|
The Edinburgh by Bus application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently access external-storage reso…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1886
|
2014-03-8 05:02 |
2014-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
