Vulnerabilities > Improper Link Resolution Before File Access ('Link Following')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-09-04 | CVE-2008-3931 | Link Following vulnerability in R Foundation R 2.7.2 javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files. | 6.9 |
2008-09-04 | CVE-2008-3930 | Link Following vulnerability in Debian Citadel Server 7.37 migrate_aliases.sh in Citadel Server 7.37 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | 6.9 |
2008-09-04 | CVE-2008-3929 | Link Following vulnerability in Ampache 3.4.1 gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filelist temporary file. | 7.2 |
2008-09-04 | CVE-2008-3928 | Link Following vulnerability in Debian Honeyd Common 1.5 test.sh in Honeyd 1.5c might allow local users to overwrite arbitrary files via a symlink attack on a temporary file. | 6.9 |
2008-09-04 | CVE-2008-3927 | Link Following vulnerability in Tiger 3.2.2 genmsgidx in Tiger 3.2.2 allows local users to overwrite or delete arbitrary files via a symlink attack on temporary files. | 7.2 |
2008-09-03 | CVE-2008-3791 | Link Following vulnerability in Lxde Lightweight X11 Desktop Environment 0.1.9 src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop Environment (LXDE) allows local users to overwrite arbitrary files via a symlink attack on the /tmp/rot.jpg temporary file. | 4.6 |
2008-09-02 | CVE-2008-3883 | Link Following vulnerability in Caudium 1.4.12 configvar in Caudium 1.4.12 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/roken#####.pike temporary file. | 7.2 |
2008-08-14 | CVE-2008-3699 | Link Following vulnerability in Amarok 1.4.9.1 The MagnatuneBrowser::listDownloadComplete function in magnatunebrowser/magnatunebrowser.cpp in Amarok before 1.4.10 allows local users to overwrite arbitrary files via a symlink attack on the album_info.xml temporary file. | 3.3 |
2008-08-04 | CVE-2008-3456 | Link Following vulnerability in PHPmyadmin phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack. | 6.4 |
2008-07-22 | CVE-2008-3261 | Link Following vulnerability in Claroline Open redirect vulnerability in claroline/redirector.php in Claroline before 1.8.10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter. | 4.3 |