Mandrake Linux Security Vulnerabilities and Issues — Page 2 of Mandrake Linux CVE List

Lucene search

MandrakesoftMandrake Linux

134 matches found

CVE•added 2002/06/25 4:0 a.m.•56 views

CVE-2001-0977

slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.

5CVSS6.5AI score0.02956EPSS

CVE•added 2005/06/28 4:0 a.m.•56 views

CVE-2002-1814

Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments.

4.6CVSS8AI score0.00124EPSS

CVE•added 2008/01/12 2:46 a.m.•56 views

CVE-2007-6284

The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences.

5CVSS5.9AI score0.05559EPSS

CVE•added 2000/10/13 4:0 a.m.•55 views

CVE-2000-0566

makewhatis in Linux man package allows local users to overwrite files via a symlink attack.

7.2CVSS6.2AI score0.00083EPSS

CVE•added 2000/10/13 4:0 a.m.•55 views

CVE-2000-0633

Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system.

2.1CVSS6.6AI score0.00063EPSS

CVE•added 2005/01/27 5:0 a.m.•55 views

CVE-2004-0935

Eset Anti-Virus before 1.020 (16th September 2004) allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

7.5CVSS6.4AI score0.132EPSS

CVE•added 2001/01/09 5:0 a.m.•54 views

CVE-2000-1134

Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing <

7.2CVSS6.2AI score0.00177EPSS

CVE•added 2003/04/02 5:0 a.m.•54 views

CVE-2001-1385

The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.

5CVSS6.7AI score0.00747EPSS

CVE•added 2004/12/23 5:0 a.m.•54 views

CVE-2004-0834

Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3.

7.2CVSS7AI score0.00051EPSS

CVE•added 2005/01/10 5:0 a.m.•54 views

CVE-2004-1096

Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

7.5CVSS6.3AI score0.20253EPSS

CVE•added 2005/05/04 4:0 a.m.•54 views

CVE-2004-1307

Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflo...

7.5CVSS7.7AI score0.05111EPSS

CVE•added 2000/04/18 4:0 a.m.•53 views

CVE-2000-0052

Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.

7.2CVSS6.9AI score0.00311EPSS

CVE•added 2002/06/25 4:0 a.m.•53 views

CVE-2001-1030

Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.

7.5CVSS6.5AI score0.00184EPSS

CVE•added 2005/01/10 5:0 a.m.•53 views

CVE-2004-1158

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the...

7.5CVSS6.4AI score0.03863EPSS

CVE•added 2001/05/07 4:0 a.m.•52 views

CVE-2001-0119

getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack.

1.2CVSS6.4AI score0.00068EPSS

CVE•added 2001/05/07 4:0 a.m.•52 views

CVE-2001-0142

squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations.

1.2CVSS6.3AI score0.00076EPSS

CVE•added 2001/06/27 4:0 a.m.•52 views

CVE-2001-0458

Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands.

7.5CVSS7.3AI score0.01717EPSS

CVE•added 2004/12/06 5:0 a.m.•52 views

CVE-2004-0634

The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference.

5CVSS6.1AI score0.10554EPSS

CVE•added 2004/12/06 5:0 a.m.•52 views

CVE-2004-0635

The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read.

5CVSS6.2AI score0.08502EPSS

CVE•added 2004/10/20 4:0 a.m.•52 views

CVE-2004-0746

Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session.

7.5CVSS6.7AI score0.01495EPSS

CVE•added 2005/01/27 5:0 a.m.•52 views

CVE-2004-0933

Computer Associates (CA) InoculateIT 6.0, eTrust Antivirus r6.0 through r7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, EZ-Armor 2.0 through 2.4, and EZ-Antivirus 6.1 through 6.3 allow remote attackers to bypass antivirus protection v...

7.5CVSS6.4AI score0.30032EPSS

CVE•added 2005/01/27 5:0 a.m.•52 views

CVE-2004-0936

RAV antivirus allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

7.5CVSS6.4AI score0.132EPSS

CVE•added 2005/02/09 5:0 a.m.•52 views

CVE-2004-0974

The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.

2.1CVSS6AI score0.00103EPSS

CVE•added 2001/05/07 4:0 a.m.•51 views

CVE-2001-0117

sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.

1.2CVSS6.2AI score0.00124EPSS

CVE•added 2001/10/18 4:0 a.m.•51 views

CVE-2001-0736

Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack.

2.1CVSS6.4AI score0.00174EPSS

CVE•added 2002/06/25 4:0 a.m.•51 views

CVE-2002-0004

Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.

7.2CVSS7.2AI score0.00274EPSS

CVE•added 2005/02/09 5:0 a.m.•51 views

CVE-2004-0937

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target syst...

7.5CVSS6.4AI score0.132EPSS

CVE•added 2005/01/10 5:0 a.m.•51 views

CVE-2004-1098

MIMEDefang in MIME-tools 5.414 allows remote attackers to bypass virus scanning capabilities via an e-mail attachment with a virus that contains an empty boundary string in the Content-Type header.

7.5CVSS6.5AI score0.00447EPSS

CVE•added 2001/06/27 4:0 a.m.•50 views

CVE-2001-0441

Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.

7.5CVSS7.8AI score0.01437EPSS

CVE•added 2005/01/27 5:0 a.m.•50 views

CVE-2004-0934

Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

7.5CVSS6.4AI score0.14187EPSS

CVE•added 2005/02/21 5:0 a.m.•50 views

CVE-2005-0503

uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges.

4.6CVSS6.2AI score0.00068EPSS

CVE•added 2000/07/12 4:0 a.m.•49 views

CVE-2000-0336

Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.

2.1CVSS6.4AI score0.00042EPSS

CVE•added 2000/07/19 4:0 a.m.•49 views

CVE-2000-0606

Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter.

7.2CVSS7.2AI score0.00063EPSS

CVE•added 2001/09/18 4:0 a.m.•49 views

CVE-2001-0473

Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.

7.5CVSS7.3AI score0.00811EPSS

CVE•added 2005/04/21 4:0 a.m.•49 views

CVE-2001-1449

The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.

7.5CVSS6.8AI score0.05425EPSS

CVE•added 2002/06/25 4:0 a.m.•49 views

CVE-2002-0002

Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code.

7.5CVSS7.4AI score0.14916EPSS

CVE•added 2004/09/01 4:0 a.m.•49 views

CVE-2002-0836

dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts.

7.5CVSS7.4AI score0.12437EPSS

CVE•added 2004/12/06 5:0 a.m.•49 views

CVE-2004-0633

The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow.

5CVSS6.3AI score0.37279EPSS

CVE•added 2004/12/23 5:0 a.m.•49 views

CVE-2004-0805

Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.

7.5CVSS7.6AI score0.05835EPSS

CVE•added 2005/04/14 4:0 a.m.•49 views

CVE-2005-0020

Buffer overflow in playmidi before 2.4 allows local users to execute arbitrary code.

7.2CVSS7AI score0.00082EPSS

CVE•added 2001/05/07 4:0 a.m.•48 views

CVE-2001-0128

Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges.

7.2CVSS6.6AI score0.00055EPSS

CVE•added 2001/05/07 4:0 a.m.•48 views

CVE-2001-0139

inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations.

1.2CVSS6.3AI score0.00076EPSS

CVE•added 2001/09/18 4:0 a.m.•48 views

CVE-2001-0388

time server daemon timed allows remote attackers to cause a denial of service via malformed packets.

10CVSS6.7AI score0.00992EPSS

CVE•added 2001/05/07 4:0 a.m.•47 views

CVE-2001-0138

privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.

1.2CVSS6.3AI score0.00076EPSS

CVE•added 2002/03/09 5:0 a.m.•47 views

CVE-2001-0416

sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools.

2.1CVSS6.3AI score0.00094EPSS

CVE•added 2001/09/18 4:0 a.m.•47 views

CVE-2001-0439

licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.

7.5CVSS7.7AI score0.01079EPSS

CVE•added 2004/08/06 4:0 a.m.•47 views

CVE-2004-0581

ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp.

4.6CVSS6.4AI score0.00079EPSS

CVE•added 2005/01/27 5:0 a.m.•47 views

CVE-2004-0932

McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004 allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being...

7.5CVSS6.3AI score0.43585EPSS

CVE•added 2005/08/17 4:0 a.m.•47 views

CVE-2004-2392

libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs.

5CVSS6.5AI score0.00956EPSS

CVE•added 2000/10/13 4:0 a.m.•46 views

CVE-2000-0594

BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.

5CVSS7AI score0.11965EPSS

Total number of security vulnerabilities134