Lucene search
K
AstaroSecurity Linux

8 matches found

CVE
CVE
added 2002/11/21 5:0 a.m.491 views

CVE-2002-0029

CVE-2002-0029 concerns buffer overflows in the DNS stub resolver library used by ISC BIND (versions 4.9.2–4.9.10) and in derived libraries such as BSD libc and GNU glibc. The overflow occurs when processing certain DNS server responses that trigger the getnetbyname or getnetbyaddr code paths, all...

7.5CVSS9.7AI score0.09861EPSS
CVE
CVE
added 2005/07/17 4:0 a.m.59 views

CVE-2004-2251

The CVE describes the PPTP server in Astaro Security Linux before 4.024 disclosing its version, enabling attackers to tailor attacks against the system. The underlying issue is information disclosure via banner/version reporting rather than an explicit code flaw in core PPTP functionality. The av...

5CVSS6.8AI score0.021EPSS
CVE
CVE
added 2005/09/28 4:0 a.m.57 views

CVE-2005-3100

Technical details about CVE-2005-3100 are not provided in the connected documents. Available sources mention a PPTP remote DoS vulnerability in Astaro Security Linux 4.027 but do not disclose affected components, versions, exploit details, or fixes. Monitor for updates.

5CVSS6.9AI score0.01837EPSS
CVE
CVE
added 2005/08/29 4:0 a.m.51 views

CVE-2005-2730

The CVE-2005-2730 entry concerns the HTTP proxy in Astaro Security Linux 6.0. The issue arises from handling an invalid request, which can cause the proxy to disclose a Proxy-Authorization string in an error message. This is a remote-attack scenario with potential exposure of credentials, as indi...

5CVSS6.5AI score0.01678EPSS
CVE
CVE
added 2005/08/29 4:0 a.m.49 views

CVE-2005-2729

The CVE-2005-2729 entry describes a vulnerability in the HTTP proxy of Astaro Security Linux 6.0 where HTTP CONNECT requests to localhost are not properly filtered, allowing remote attackers to bypass firewall rules and access local services. The issue is a network‑level exposure with low attack ...

7.5CVSS7AI score0.06561EPSS
CVE
CVE
added 2005/12/04 10:0 p.m.49 views

CVE-2005-3985

The CVE-2005-3985 entry concerns the Internet Key Exchange v1 (IKEv1) implementation in Astaro Security Linux prior to 6.102, which can be triggered by crafted IKE packets to cause a denial of service and possibly arbitrary code execution; the advisory notes uncertainty about whether CVE-2005-366...

7.8CVSS7.7AI score0.04254EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.42 views

CVE-2002-1737

CVE-2002-1737 affects Astaro Security Linux 2.016, where a flaw allows local users to overwrite arbitrary files due to creation of world-writable files and directories. The root cause is insufficient permission controls on created files/dirs, enabling local escalation. Impact is local confidentia...

2.1CVSS6.8AI score0.00379EPSS
CVE
CVE
added 2005/08/29 4:0 a.m.39 views

CVE-2005-2731

CVE-2005-2731: Directory traversal in Astaro Security Linux 6.0 when Webmin is used. Remote authenticated Webmin users could read arbitrary files via a .. sequence in the wfe_download parameter to index.fpl. NVD lists a LOW base score (2.1). No remediation details are provided in the supplied doc...

2.1CVSS6.6AI score0.00806EPSS