Mandrake Linux@2007 Security Vulnerabilities and Issues — Mandrake Linux@2007 CVE List

Lucene search

MandrakesoftMandrake Linux2007

4 matches found

CVE•added 2008/02/29 7:44 p.m.•89 views

CVE-2008-0595

dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface.

4.6CVSS5.2AI score0.00048EPSS

CVE•added 2008/01/12 2:46 a.m.•56 views

CVE-2007-6284

The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences.

5CVSS5.9AI score0.05559EPSS

CVE•added 2000/10/13 4:0 a.m.•46 views

CVE-2000-0594

BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.

5CVSS7AI score0.11965EPSS

CVE•added 2001/06/27 4:0 a.m.•35 views

CVE-2001-0496

kdesu in kdelibs package creates world readable temporary files containing authentication info, which can allow local users to gain privileges.

4.6CVSS6.8AI score0.00067EPSS