Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

CVEs (1,500)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-3345 1Ioquake3 1Ioquake3 Engine Apr 29, 2026 Jun 15, 2012 N/A· v4 N/A· v3 5.6 MEDIUM· v2 ioquake3 before r2253 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ioq3.pid temporary file.
CVE-2011-2722 1Hp 1Linux Imaging And Printing Project Apr 29, 2026 May 25, 2012 N/A· v4 N/A· v3 1.2 LOW· v2 The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temp...Show more The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.Show less
CVE-2012-2093 1Gajim 1Gajim Apr 29, 2026 May 18, 2012 N/A· v4 N/A· v3 3.3 LOW· v2 src/common/latex.py in Gajim 0.15 allows local users to overwrite arbitrary files via a symlink attack on a temporary latex file, related to the get_tmpfile_name function.
CVE-2012-0808 1Bdale Garbee 1As31 Apr 29, 2026 Mar 19, 2012 N/A· v4 N/A· v3 3.6 LOW· v2 as31 2.3.1-4 does not seed the random number generator and generates predictable temporary file names, which makes it easier for local users to create or truncate files via a symlink attack.
CVE-2012-0054 1Golismero 1Golismero Apr 29, 2026 Mar 19, 2012 N/A· v4 N/A· v3 3.3 LOW· v2 libs/updater.py in GoLismero 0.6.3, and other versions before Git revision 2b3bb43d6867, as used in backtrack and possibly other products, allows local users to overwrite arbitrary files via a symlink attack on GoLismero...Show more libs/updater.py in GoLismero 0.6.3, and other versions before Git revision 2b3bb43d6867, as used in backtrack and possibly other products, allows local users to overwrite arbitrary files via a symlink attack on GoLismero-controlled files, as demonstrated using Admin/changes.dat.Show less
CVE-2011-4105 1Robert Ancell 1Lightdm Apr 29, 2026 Feb 17, 2012 N/A· v4 N/A· v3 1.9 LOW· v2 LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink attack on ~/.Xauthority.
CVE-2011-1384 1Ibm 1Invscout.rte Apr 29, 2026 Jan 4, 2012 N/A· v4 N/A· v3 4.0 MEDIUM· v2 The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout ope...Show more The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a symlink attack on an unspecified file.Show less
CVE-2011-4617 1Python 1Virtualenv Apr 29, 2026 Dec 31, 2011 N/A· v4 N/A· v3 1.2 LOW· v2 virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/.
CVE-2011-3616 1Conky 1Conky Apr 29, 2026 Nov 4, 2011 N/A· v4 N/A· v3 6.3 MEDIUM· v2 The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf.
CVE-2011-3870 2Puppet Puppetlabs 2Puppet Puppet Apr 29, 2026 Oct 27, 2011 N/A· v4 N/A· v3 6.3 MEDIUM· v2 Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary files via a symlink attack on the SSH authorized_keys file.
CVE-2011-3869 2Puppet Puppetlabs 2Puppet Puppet Apr 29, 2026 Oct 27, 2011 N/A· v4 N/A· v3 6.3 MEDIUM· v2 Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink attack on the .k5login file.
CVE-2011-4060 1Qnx 1Neutrino Rtos Apr 29, 2026 Oct 18, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users...Show more The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack.Show less
CVE-2011-3204 1Geoff Wong 1Hammerhead Apr 29, 2026 Sep 6, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on (1) /tmp/hammer.log (aka the HH_LOG file) or (2) the REPORT_LOG file.
CVE-2011-0541 1Fuse 1Fuse Apr 29, 2026 Sep 2, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 fuse 2.8.5 and earlier does not properly handle when /etc/mtab cannot be updated, which allows local users to unmount arbitrary directories via a symlink attack.
CVE-2011-2185 1Fabfile 1Fabric Apr 29, 2026 Jul 27, 2011 N/A· v4 N/A· v3 4.4 MEDIUM· v2 Fabric before 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on (1) a /tmp/fab.*.tar file or (2) certain other files in the top level of /tmp/.
CVE-2009-5082 1Gnu 1Groff Apr 29, 2026 Jun 30, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU//Linux (aka Owl) improperly create temporary files upon a failure of the mktemp function, which makes it easier for local us...Show more The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU//Linux (aka Owl) improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file.Show less
CVE-2009-5081 1Gnu 1Groff Apr 29, 2026 Jun 30, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the template argument to th...Show more The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2004-0969.Show less
CVE-2009-5080 1Gnu 1Groff Apr 29, 2026 Jun 30, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib/pic2graph/pic2graph.sh scripts in GNU troff (aka groff) 1.21 and earlier do not properly handle certain failed attempts to cre...Show more The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib/pic2graph/pic2graph.sh scripts in GNU troff (aka groff) 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files via a symlink attack on a file in a temporary directory, a different vulnerability than CVE-2004-1296.Show less
CVE-2009-5079 1Gnu 1Groff Apr 29, 2026 Jun 30, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro#####.tmp or...Show more The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro#####.tmp or /tmp/##### temporary file.Show less
CVE-2009-5044 2Apple Gnu 2Groff Mac Os X Apr 29, 2026 Jun 24, 2011 N/A· v4 N/A· v3 3.3 LOW· v2 contrib/pdfmark/pdfroff.sh in GNU troff (aka groff) before 1.21 allows local users to overwrite arbitrary files via a symlink attack on a pdf#####.tmp temporary file.

Previous 1...585960...75 Next