Vulnerabilities > Improper Link Resolution Before File Access ('Link Following')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-07 | CVE-2013-1429 | Link Following vulnerability in multiple products Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks. | 6.3 |
| 2019-10-31 | CVE-2019-18645 | Link Following vulnerability in Totaldefense Anti-Virus 11.5.2.28 The quarantine restoration function in Total Defense Anti-virus 11.5.2.28 is vulnerable to symbolic link attacks, allowing files to be written to privileged directories. | 5.5 |
| 2019-10-30 | CVE-2010-0398 | Link Following vulnerability in Autokey Project Autokey The init script in autokey before 0.61.3-2 allows local attackers to write to arbitrary files via a symlink attack. | 6.5 |
| 2019-10-29 | CVE-2010-2064 | Link Following vulnerability in Rpcbind Project Rpcbind 0.2.0 rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr. | 7.1 |
| 2019-10-29 | CVE-2011-1408 | Link Following vulnerability in multiple products ikiwiki before 3.20110608 allows remote attackers to hijack root's tty and run symlink attacks. | 8.2 |
| 2019-10-29 | CVE-2012-2945 | Link Following vulnerability in Apache Hadoop 1.0.3 Hadoop 1.0.3 contains a symlink vulnerability. | 7.5 |
| 2019-10-28 | CVE-2019-18466 | Link Following vulnerability in Libpod Project Libpod An issue was discovered in Podman in libpod before 1.6.0. | 5.5 |
| 2019-10-17 | CVE-2019-15627 | Link Following vulnerability in Trendmicro Deep Security 10.0/11.0/12.0 Versions 10.0, 11.0 and 12.0 of the Trend Micro Deep Security Agent are vulnerable to an arbitrary file delete attack, which may lead to availability impact. | 7.1 |
| 2019-10-10 | CVE-2019-1339 | Link Following vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. | 7.8 |
| 2019-10-10 | CVE-2019-1317 | Link Following vulnerability in Microsoft products A denial of service vulnerability exists when Windows improperly handles hard links, aka 'Microsoft Windows Denial of Service Vulnerability'. | 7.3 |