Vulnerabilities (CVE)

Vendor filter

Conectiva Subscribe

Filter

64 total CVE
CVE Vendors Products Updated CVSS
CVE-2001-0473 5 Mutt, Immunix, Conectiva and 2 more 5 Linux, Linux, Mandrake Linux and 2 more 2017-10-10 7.5
Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.
CVE-2001-0440 3 Conectiva, Mandrakesoft, Licq 3 Mandrake Linux, Licq, Linux 2017-10-10 7.5
Buffer overflow in logging functions of licq before 1.0.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands.
CVE-2001-0439 5 Redhat, Conectiva, Mandrakesoft and 2 more 6 Mandrake Linux Corporate Server, Freebsd, Linux and 3 more 2017-10-10 7.5
licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
CVE-2001-0178 4 Suse, Conectiva, Mandrakesoft and 1 more 5 Suse Linux, Mandrake Linux Corporate Server, Mandrake Linux and 2 more 2017-10-10 2.1
kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.
CVE-2001-0170 4 Immunix, Conectiva, Debian and 1 more 4 Debian Linux, Immunix, Linux and 1 more 2017-10-10 2.1
glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.
CVE-2001-0128 6 Conectiva, Freebsd, Redhat and 3 more 7 Linux Powertools, Debian Linux, Linux and 4 more 2017-10-10 7.2
Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges.
CVE-2000-1095 5 Immunix, Suse, Conectiva and 2 more 5 Suse Linux, Linux, Linux and 2 more 2017-10-10 7.2
modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.
CVE-2000-0747 1 Conectiva 1 Linux 2017-10-10 10.0
The logrotate script for OpenLDAP before 1.2.11 in Conectiva Linux sends an improper signal to the kernel log daemon (klogd) and kills it.
CVE-2000-0668 3 Conectiva, Michael K. Johnson, Redhat 3 Pam Console, Linux, Linux 2017-10-10 5.0
pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled.
CVE-2000-0633 3 Conectiva, Mandrakesoft, Redhat 3 Linux, Mandrake Linux, Linux 2017-10-10 2.1
Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system.
CVE-2005-0373 6 Apple, Conectiva, Cyrus and 3 more 8 Fedora Core, Sasl, Openpkg and 5 more 2017-07-11 7.5
Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code.
CVE-2004-1337 3 Conectiva, Gnu, Ubuntu 3 Ubuntu Linux, Realtime Linux Security Module, Linux 2017-07-11 7.2
The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 does not properly handle the credentials of a process that is launched before the module is loaded, which allows local users to gain privileges.
CVE-2004-1012 6 Ubuntu, Conectiva, Redhat and 3 more 6 Fedora Core, Openpkg, Ubuntu Linux and 3 more 2017-07-11 10.0
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a different command ("body.peek") and causes an...
CVE-2004-1011 6 Ubuntu, Conectiva, Redhat and 3 more 6 Fedora Core, Openpkg, Ubuntu Linux and 3 more 2017-07-11 10.0
Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote attackers to execute arbitrary code via a long (1) PROXY or (2) LOGIN command, a different vulnerability than CVE-2004-1015.
CVE-2004-0802 9 Turbolinux, Enlightenment, Imagemagick and 6 more 16 Imlib2, Linux Advanced Workstation, Java Desktop System and 13 more 2017-07-11 5.1
Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817.
CVE-2004-0801 4 Conectiva, Linuxprinting.org, Trustix and 1 more 4 Foomatic-filters, Secure Linux, Java Desktop System and 1 more 2017-07-11 7.5
Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUPS to execute arbitrary commands.
CVE-2004-0626 4 Gentoo, Suse, Conectiva and 1 more 4 Suse Linux, Linux Kernel, Linux and 1 more 2017-07-11 5.0
The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that...
CVE-2004-1013 6 Ubuntu, Conectiva, Redhat and 3 more 6 Fedora Core, Openpkg, Ubuntu Linux and 3 more 2016-12-08 10.0
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index...
CVE-2005-0754 5 Gentoo, Conectiva, Kde and 2 more 6 Linux, Kde, Fedora Core and 3 more 2016-10-18 7.5
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code.
CVE-2002-0083 9 Conectiva, Redhat, Suse and 6 more 11 Secure Linux, Mandrake Single Network Firewall, Mandrake Linux Corporate Server and 8 more 2016-10-18 10.0
Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.