Filter
Trustix Secure Linuxdump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which all…
7.2
First published (updated )
Trustix Secure LinuxFormat string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to exec…
10
First published (updated )
Mandrake LinuxKernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which…
7.2
First published (updated )
IBM AIXSome functions that implement the locale subsystem on Unix do not properly cleanse user-injected fo…
10
First published (updated )
Trustix Secure LinuxTrustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows lo…
4.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Red Hat Linuxrpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untruste…
10
First published (updated )
ImmunixSquid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when th…
7.5
First published (updated )
Mandrake Linuxsquid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some c…
1.2
First published (updated )
Mandrake Linuxsdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.
1.2
First published (updated )
Red Hat LinuxWhen using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify…
2.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux KernelThe Linux kernel 2.4.20 and earlier, and 2.5.x, when running on x86 systems, allows local users to c…
2.1
First published (updated )
SUSE LinuxOff-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malic…
10
First published (updated )
SambaMultiple memory leaks in Samba before 3.0.6 allow attackers to cause a denial of service (memory con…
6.4
First published (updated )
PHP-NukePHP-Nuke 7.3, and other products that use the PHP-Nuke codebase such as the Nuke Cops betaNC PHP-Nuk…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux KernelThe load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4…
7.2
First published (updated )
Cyrus IMAP ServerThe argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote auth…
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GD Graphics Library (gdlib)Buffer Overflow, Integer Overflow
10
First published (updated )
Todd Miller Sudosudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment…
7.2
First published (updated )
Linux KernelThe binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does…
7.2
First published (updated )
Linux KernelThe open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and …
2.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux KernelThe binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local user…
2.1
First published (updated )
Cyrus IMAP ServerThe argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote auth…
10
First published (updated )
Mandrake LinuxThe make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite files…
2.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.