Versions 1.x prior to 1.44.7, 2.x prior to 2.15.3, and 3.x prior to 3.4.3 encounter an issue when the filesystem loader loads templates for which the name is a user input. This issue was addressed by restricting access to files to intended directories only. This can be leveraged to perform an arbitrary file move as NT AUTHORITY\SYSTEM.Ī security issue was discovered in WeBid = 5.0.1. This occurs because of weak permissions for the %PROGRAMDATA%\CheckPoint\ZoneAlarm\Data\Updates directory, and a self-protection driver bypass that allows creation of a junction directory. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Ĭheck Point ZoneAlarm Extreme Security before 15.8.211.19229 allows local users to escalate privileges. Warpinator through 1.2.14 allows access outside of an intended directory, as demonstrated by symbolic directory links.Ĭhamilo 1.11.16 is affected by an authenticated local file inclusion vulnerability which allows authenticated users with access to 'big file uploads' to copy/move files from anywhere in the file system into the web directory.Ī Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One Vulnerability Protection integrated component could allow a local attacker to escalate privileges and turn a specific working directory into a mount point on affected installations.
If an attacker can convince a user to change their current directory to one controlled by the attacker, such as in a shared filesystem or extracted archive, powerline-gitstatus will run arbitrary commands under the attacker's control. When using powerline-gitstatus, changing to a directory automatically runs git commands in order to display information about the current repository in the prompt.
git repositories can contain per-repository configuration that changes the behavior of git, including running arbitrary commands. Powerline-gitstatus (aka Powerline Gitstatus) before 1.3.2 allows arbitrary code execution.
0 kommentar(er)
