3 matches found
EulerOS 2.0 SP9 : graphviz (EulerOS-SA-2024-1487)
According to the versions of the graphviz package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because...
CVE-2017-9780
In Flatpak before 0.8.7, a third-party app repository could include malicious apps that contain files with inappropriate permissions, for example setuid or world-writable. The files are deployed with those permissions, which would let a local attacker run the setuid executable or write to the...
MTools 3.9.x MFormat Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9746/info It has been reported that mformat is prone to a privilege escalation vulnerability when installed as a setUID application. This issue is due to a design error allowing a user to create any arbitrary files as the...