Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-11-05 | CVE-2008-4944 | Link Following vulnerability in Gleydson Mazioli DA Silva Cdcontrol 1.90 writtercontrol in cdcontrol 1.90 allows local users to overwrite arbitrary files via a symlink attack on /tmp/v-recorder*-out temporary files. | 6.9 |
| 2008-11-05 | CVE-2008-4943 | Link Following vulnerability in Iglues Bulmages-Servers 0.11.1 bulmages-servers 0.11.1 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/error.txt, (b) /tmp/errores.txt, and possibly other temporary files, related to the (1) creabulmafact, (2) creabulmacont, and possibly (3) actualizabulmacont, (4) installbulmages-db, and (5) actualizabulmafact scripts. | 6.9 |
| 2008-11-05 | CVE-2008-4942 | Link Following vulnerability in Audiolink 0.05 audiolink in audiolink 0.05 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/audiolink.db.tmp and (2) /tmp/audiolink.tb.tmp temporary files. | 6.9 |
| 2008-11-05 | CVE-2008-4941 | Link Following vulnerability in ARB Project Arb-Common 0.0 arb-common 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/arb_fdnaml_*, (b) /tmp/arb_pids_*, (c) /tmp/arbdsmz.html, and (d) /tmp/arbdsmz.htm temporary files, related to the (1) arb_fastdnaml and (2) dszmconnect.pl scripts. | 6.9 |
| 2008-11-05 | CVE-2008-4940 | Link Following vulnerability in Aptoncd 0.1 xmlfile.py in aptoncd 0.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/aptoncd temporary file. | 6.9 |
| 2008-11-05 | CVE-2008-4939 | Link Following vulnerability in Apertium 3.0.7 apertium 3.0.7 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/#####.lex.cc, (b) /tmp/#####.deformat.l, (c) /tmp/#####.reformat.l, (d) /tmp/#####docxorig, (e) /tmp/#####docxsalida.zip, (f) /tmp/#####xlsxembed, (g) /tmp/#####xlsxorig, and (h) /tmp/#####xslxsalida.zip temporary files, related to the (1) apertium-gen-deformat, (2) apertium-gen-reformat, and (3) apertium scripts. | 6.9 |
| 2008-11-05 | CVE-2008-4938 | Link Following vulnerability in Aegis and Aegis-Web aegis 4.24 and aegis-web 4.24 allow local users to overwrite arbitrary files via a symlink attack on (a) /tmp/#####, (b) /tmp/#####.intro, (c) /tmp/aegis.#####.ae, (d) /tmp/aegis.#####, (e) /tmp/aegis.#####.1, (f) /tmp/aegis.#####.2, (g) /tmp/aegis.#####.log, and (h) /tmp/aegis.#####.out temporary files, related to the (1) bng_dvlpd.sh, (2) bng_rvwd.sh, (3) awt_dvlp.sh, (4) awt_intgrtn.sh, and (5) aegis.cgi scripts. | 6.9 |
| 2008-11-05 | CVE-2008-4936 | Link Following vulnerability in Gert Doering Mgetty 1.1.36 faxspool in mgetty 1.1.36 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/faxsp.##### temporary file. | 6.9 |
| 2008-11-05 | CVE-2008-4935 | Link Following vulnerability in Amiga Aview 1.3.0 asciiview in aview 1.3.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/aview#####.pgm temporary file. | 6.9 |
| 2008-11-05 | CVE-2008-4931 | Cross-Site Scripting vulnerability in Firmchannel Digital Signage 3.24 Cross-site scripting (XSS) vulnerability in the account module in firmCHANNEL Digital Signage 3.24, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php. | 4.3 |