2 results (0.011 seconds)

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

xmcdconfig in xmcd for Debian GNU/Linux 2.6-17.1 creates /var/lib/cddb and /var/lib/xmcd/discog with world writable permissions, which allows local users to cause a denial of service (disk consumption). • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=366816 http://secunia.com/advisories/20078 http://www.debian.org/security/2006/dsa-1086 https://exchange.xforce.ibmcloud.com/vulnerabilities/26452 •

CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0

cda in xmcd 3.0.2 and 2.6 in SuSE Linux allows local users to overwrite arbitrary files via a symlink attack. • http://www.kb.cert.org/vuls/id/105347 http://www.novell.com/linux/security/advisories/2001_025_xmcd_txt.html http://www.securityfocus.com/bid/3148 https://exchange.xforce.ibmcloud.com/vulnerabilities/6941 •