Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
SuseSuse Linux7.2

20 matches found

CVE
CVEadded 2002/06/25 4:0 a.m.205 views

CVE-2002-0083

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.

10CVSS9.1AI score0.0158EPSS
CVE
CVEadded 2005/03/04 5:0 a.m.94 views

CVE-2005-0605

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

7.5CVSS9.6AI score0.02838EPSS
CVE
CVEadded 2005/04/27 4:0 a.m.81 views

CVE-2005-0206

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

7.5CVSS6.7AI score0.06529EPSS
CVE
CVEadded 2005/11/16 9:17 p.m.79 views

CVE-2002-2185

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from ...

4.9CVSS4.5AI score0.00377EPSS
CVE
CVEadded 2002/03/09 5:0 a.m.71 views

CVE-2001-0834

htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c option to specify an alternate configuration file, which could be used to (1) cause a denial of service (CPU consumption) by specifying a large file such as /dev/zero, or (2) read arbitrary files by upl...

6.4CVSS6.6AI score0.02512EPSS
CVE
CVEadded 2002/06/25 4:0 a.m.69 views

CVE-2001-0872

OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows local users to gain root privileges.

7.2CVSS9.1AI score0.00213EPSS
CVE
CVEadded 2005/04/14 4:0 a.m.63 views

CVE-2005-1043

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.

5CVSS6.3AI score0.01229EPSS
CVE
CVEadded 2005/03/04 5:0 a.m.57 views

CVE-2005-0639

Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via "buffer management errors" from certain image properties, some of which may be related to integer overflows in PPM files.

7.5CVSS7.4AI score0.01955EPSS
CVE
CVEadded 2005/02/17 5:0 a.m.56 views

CVE-2004-1491

Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.

5CVSS7.5AI score0.2586EPSS
CVE
CVEadded 2005/01/29 5:0 a.m.54 views

CVE-2004-1184

The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.

4.6CVSS7.7AI score0.00943EPSS
CVE
CVEadded 2002/03/09 5:0 a.m.53 views

CVE-2001-0851

Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.

5CVSS6.6AI score0.00623EPSS
CVE
CVEadded 2002/06/25 4:0 a.m.51 views

CVE-2002-0004

Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.

7.2CVSS7.2AI score0.00274EPSS
CVE
CVEadded 2005/03/04 5:0 a.m.50 views

CVE-2005-0638

xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbitrary commands via shell metacharacters in filenames for compressed images, which are not properly quoted when calling the gunzip command.

7.5CVSS7.1AI score0.02388EPSS
CVE
CVEadded 2002/06/25 4:0 a.m.47 views

CVE-2001-1130

Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer (from the HTTP_REFERER variable) to point to the dire...

7.5CVSS7.5AI score0.04404EPSS
CVE
CVEadded 2003/04/02 5:0 a.m.42 views

CVE-2001-0763

Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function.

7.5CVSS7.9AI score0.25353EPSS
CVE
CVEadded 2002/02/02 5:0 a.m.35 views

CVE-2001-1012

Vulnerability in screen before 3.9.10, related to a multi-attach error, allows local users to gain root privileges when there is a subdirectory under /tmp/screens/.

7.2CVSS6.5AI score0.0006EPSS
CVE
CVEadded 2003/04/02 5:0 a.m.35 views

CVE-2002-0768

Buffer overflow in lukemftp FTP client in SuSE 6.4 through 8.0, and possibly other operating systems, allows a malicious FTP server to execute arbitrary code via a long PASV command.

7.5CVSS7.8AI score0.01523EPSS
CVE
CVEadded 2002/06/25 4:0 a.m.33 views

CVE-2001-0869

Format string vulnerability in the default logging callback function _sasl_syslog in common.c in Cyrus SASL library (cyrus-sasl) may allow remote attackers to execute arbitrary commands.

7.5CVSS7.4AI score0.02385EPSS
CVE
CVEadded 2002/11/29 5:0 a.m.33 views

CVE-2002-1285

runlpr in the LPRng package allows the local lp user to gain root privileges via certain command line arguments.

7.2CVSS6.7AI score0.00056EPSS
CVE
CVEadded 2002/06/25 4:0 a.m.32 views

CVE-2001-0918

Vulnerabilities in CGI scripts in susehelp in SuSE 7.2 and 7.3 allow remote attackers to execute arbitrary commands by not opening files securely.

5.1CVSS8.1AI score0.00843EPSS