Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2015-1396

Disclosure Date: November 25, 2019 (last updated October 06, 2023)
A Directory Traversal vulnerability exists in the GNU patch before 2.7.4. A remote attacker can write to arbitrary files via a symlink attack in a patch file. NOTE: this issue exists because of an incomplete fix for CVE-2015-1196.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2015-1196

Disclosure Date: January 21, 2015 (last updated October 05, 2023)
GNU patch 2.7.1 allows remote attackers to write to arbitrary files via a symlink attack in a patch file.
0
0