Mandrake Linux Security Vulnerabilities and Issues — Mandrake Linux CVE List

Lucene search

MandrakesoftMandrake Linux

5 matches found

CVE•added 2005/04/14 4:0 a.m.•98 views

CVE-2004-1235

Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.

6.2CVSS7.5AI score0.00083EPSS

CVE•added 2005/04/14 4:0 a.m.•72 views

CVE-2005-0003

The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbitrary code via a crafted ELF or a.out file.

2.1CVSS7.4AI score0.0008EPSS

CVE•added 2005/04/27 4:0 a.m.•58 views

CVE-2005-0085

Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.

6.8CVSS5.7AI score0.04725EPSS

CVE•added 2005/04/21 4:0 a.m.•49 views

CVE-2001-1449

The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.

7.5CVSS6.8AI score0.05092EPSS

CVE•added 2005/04/14 4:0 a.m.•49 views

CVE-2005-0020

Buffer overflow in playmidi before 2.4 allows local users to execute arbitrary code.

7.2CVSS7AI score0.00082EPSS