Filter
AND
Oracle WebLogic ServerBEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1, stores passwords in plaintext when a keyst…
2.1
First published (updated )
Red Hat Linux/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, …
2.1
First published (updated )
Red Hat LinuxThe RPC code in Linux kernel 2.4 sets the reuse flag when sockets are created, which could allow loc…
4.6
First published (updated )
Red Hat LinuxVarious PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to exe…
7.5
First published (updated )
Red Hat LinuxUnknown vulnerability in GNU Ghostscript before 7.07 allows attackers to execute arbitrary commands,…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apple SafariKonqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 …
7.5
First published (updated )
Red Hat LinuxThe TCP/IP fragment reassembly handling in the Linux kernel 2.4 allows remote attackers to cause a d…
First published (updated )
Red Hat LinuxUnknown vulnerability in the TTY layer of the Linux kernel 2.4 allows attackers to cause a denial of…
First published (updated )
Red Hat LinuxThe mxcsr code in Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed ad…
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Red Hat Linuxlv reads a .lv file from the current working directory, which allows local users to execute arbitrar…
7.2
First published (updated )
tcpdumptcpdump does not properly drop privileges to the pcap user when starting up.
4.6
First published (updated )
Red Hat LinuxThe default configuration of the pam_xauth module forwards MIT-Magic-Cookies to new X sessions, whic…
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SGI IRIXThe Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an…
4.9
First published (updated )
Debian GNU/LinuxMemory leak in ypdb_open in yp_db.c for ypserv before 2.5 in the NIS package 3.9 and earlier allows …
First published (updated )
Red Hat Linuxdvips converter for Postscript files in the tetex package calls the system() function insecurely, wh…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SUSE LinuxOff-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malic…
10
First published (updated )
Red Hat Linuxrsync, when running in daemon mode, does not properly call setgroups before dropping privileges, whi…
2.1
First published (updated )
Red Hat LinuxMemory leak in SNMP in Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of se…
2.6
First published (updated )
Red Hat LinuxSquid 2.4 STABLE3 and earlier does not properly disable HTCP, even when "htcp_port 0" is specified i…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Red Hat LinuxSquid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and p…
7.5
First published (updated )
SUSE LinuxHeap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a…
7.2
First published (updated )
Red Hat LinuxGNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript user …
3.6
First published (updated )
Red Hat Linuxslapd in OpenLDAP 2.0 through 2.0.19 allows local users, and anonymous users before 2.0.8, to conduc…
7.5
First published (updated )
SUSE LinuxOpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment varia…
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.