1378 matches found
CAN-2005-2717
CVE-2005-2717 relates to a remote code execution flaw in the webcalendar package (input validation). Multiple trusted sources (Debian DSA-799-1, Debian security notices) describe a trivially exploitable issue that allowed code execution with HTTP daemon privileges. The Debian advisories state the...
CAN-2005-2700
CAN-2005-2700 describes a client-certificate authentication bypass in mod_ssl for Apache when SSLVerifyClient is configured as optional globally and required in a specific location. The issue allows remote bypass of access controls under certain configurations. Public advisories (e.g., F5 K5278/K...
CAN-2005-2657
CVE-2005-2657 corresponds to a design-error in common-lisp-controller (versions 4.18 and earlier) that allows a local user to compile malicious code into a cache directory, which can be executed by another user who has not run Common Lisp before. Public advisories (DSA-811-1/2) describe a local p...
CAN-2005-2411
The CVE-2005-2411 entry concerns tDiary, a weblog system. A CSRF-design error in tdiary allowed remote attackers to perform actions as another user and execute commands on the server when a user visiting a malicious URL. Publicly referenced in Debian security advisories (DSA-808-1) and related OS...
CAN-2005-2658
CVE-2005-2658 is a buffer overflow in Turquoise SuperStat (turqstat) prior to 2.2.x. Debian advisories describe remote exploitation via a crafted NNTP server that could execute arbitrary code. Public records cite fixed versions per distribution: 2.2.1woody1 (woody), 2.2.2sarge1 (sarge), and 2.2.4...
CAN-2005-2672
CVE-2005-2672 concerns the lm_sensors project, where a bug in the pwmconfig tool creates a temporary file insecurely, allowing potential tampering. Documented in multiple advisories (Debian DSA-814-1, Red Hat RHSA-2005:825, CentOS CESA-2005:825, Fedora 2005-1054/1053), the issue affects lm_sensor...
CAN-2005-2820
CAN-2005-2820 affects the courier/sqwebmail stack. The vulnerability arises from missing input sanitisation that, via Internet Explorer Conditional Comment handling in SqWebmail, can cause hidden JavaScript execution when a user views a malicious email. This is a remote cross-site scripting issue...
CAN-2005-2491
CVE-2005-2491 describes an integer overflow in the PCRE library that is embedded in Python (and is also referenced in Exim advisories). The vulnerability arises when processing specially crafted regular expressions, potentially allowing an attacker to execute arbitrary code with the privileges of...
CAN-2005-2962
The CVE-2005-2962 issue affects ntlmaps prior to version 0.9.9. The post-installation script incorrectly sets configuration file permissions to world-readable, allowing local users to obtain the Windows NT username and password used by ntlmaps. Public advisories (e.g., Debian DSA-830-1) document ...
CAN-2005-2660
CVE-2005-2660 affects apachetop (versions 0.12.5 and earlier). The issue arises when apachetop runs in debug mode: it creates a temporary file insecurely in /tmp (atop.debug), which can be targeted by a local attacker via a symlink attack to overwrite arbitrary files with the webserver/user runni...
CAN-2005-2558
CAN-2005-2558 corresponds to a MySQL CREATE FUNCTION init_syms Buffer Overflow vulnerability. The core issue is improper boundary handling when processing CREATE FUNCTION statements in the MySQL UDF mechanism, allowing a remote attacker who has certain privileges on the MySQL server to cause a de...
CAN-2005-2878
CVE-2005-2878 : A format-string vulnerability exists in GNU mailutils imap4d’s handling of IMAP SEARCH commands. An authenticated attacker could execute arbitrary code on the target system with the imap4d privileges. Affected products: mailutils imap4d (Debian, Gentoo GLSA, etc.). Root cause: ins...
CAN-2005-2992
Arc on Unix up to version 5.21j and earlier creates a temporary file with insecure permissions, allowing a local user to overwrite arbitrary files via a symlink attack (CVE-2005-2992; also CVE-2005-2945). Debian and SuSE advisories reference these vulnerabilities and patches exist (DSA-843-1; arc...
CAN-2005-2963
CVE-2005-2963 affects the mod_auth_shadow Apache module (versions 1.0–2.0) where AuthShadow-enabled configurations cause shadow authentication to apply to all locations using the require group directive, potentially bypassing other access controls. Public disclosures in Debian (DSA-844-1), SUSE/O...
CAN-2005-2971
CVE-2005-2971 affects the RTF importer in KWord/KOffice (KDE Office). The connected OpenVAS/Nessus entries confirm a buffer overflow that can lead to arbitrary code execution. Advisories across distributions document the issue and release patches or updates (e.g., Debian DSA-872-1; Gentoo GLSA 20...
CAN-2005-3150
CVE-2005-3150 affects the weex FTP client. A format string vulnerability could allow remote code execution. Debian/ Gentoo advisories note fixes: weex 2.6.1-6sarge1 (and 2.6.1-4woody2 for woody). Upgrading to the patched package is recommended; old versions are vulnerable. The issue is a remote v...
CAN-2005-1279
The CAN-2005-1279 entry corresponds to tcpdump vulnerabilities in the BGP dissector (RT_ROUTING_INFO handling) that can cause a denial of service via an infinite loop when processing crafted packets. Public advisories and patches exist across multiple distributions: Debian DSA-850-1/DSA-850 fix t...
CAN-2005-1267
CVE-2005-1267 affects tcpdump (BGP dissector). The vulnerability arises when tcpdump’s bgp_update_print decodes a BGP packet and mishandles a -1 return value from decode_prefix4, allowing remote attackers to trigger an infinite loop and cause a denial of service. This issue has been addressed in ...
CAN-2005-3178
CVE-2005-3178 describes a buffer overflow in XLI/Xloadimage caused by a fixed-length buffer used to store NIFF/XPM image titles during image processing. An attacker could craft a malicious NIFF/XPM image to overflow this buffer, potentially enabling arbitrary code execution with the user’s privil...
CAN-2005-3069
CVE-2005-3069 concerns HylaFax: several scripts (faxcron, recvstats, xferfaxstats) may create insecure temporary files/directories, enabling local users to exploit symlinks. Debian and Gentoo advisories assign this as a local vulnerability in HylaFax 4.x classic releases, with fixed packages prov...