CVSS: 1.2EPSS: 0%CPEs: 2EXPL: 0CVE-2005-3342
https://notcve.org/view.php?id=CVE-2005-3342
noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm. • http://secunia.com/advisories/18809 http://secunia.com/advisories/18812 http://secunia.com/advisories/18967 http://secunia.com/advisories/19027 http://www.debian.org/security/2006/dsa-968 http://www.gentoo.org/security/en/glsa/glsa-200602-14.xml http://www.securityfocus.com/bid/16610 http://www.ubuntu.com/usn/usn-254-1 http://www.vupen.com/english/advisories/2006/0547 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0381
https://notcve.org/view.php?id=CVE-2003-0381
Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files via multiple vectors including the noroff script. Multiples vulnerabilidades en noweb 2.9 y anteriores, que crea ficheros temporales de manera insegura, lo que permite a usuarios locales sobreescribir ficheros arbitrarios mediante diferentes vectores, incluyendo el script noroff. • http://www.debian.org/security/2003/dsa-323 •