Vulnerabilities (CVE)

Vendor filter

Red Hat Subscribe

Product filter

Enterprise Linux Subscribe

Filter

11 total CVE
CVE Vendors Products Updated CVSS
CVE-2008-0892 2 Red Hat, Redhat 3 Directory Server, Fedora Directory Server, Directory Server 2018-10-30 9.0
The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.
CVE-2008-0595 4 Redhat, Mandrakesoft, D-bus and 1 more 6 Enterprise Linux, Enterprise Linux Desktop, Fedora and 3 more 2018-10-15 4.6
dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via...
CVE-2008-1198 2 Redhat, Red Hat 2 Enterprise Linux, Enterprise Linux 2018-01-06 7.1
The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted...
CVE-2009-1887 3 Red Hat, Net-snmp, Redhat 3 Enterprise Linux, Enterprise Linux, Net-snmp 2017-09-29 5.0
agent/snmp_agent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this...
CVE-2008-2729 1 Red Hat 1 Linux Kernel 2017-09-29 4.9
arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.
CVE-2012-1145 1 Red Hat 1 Network Satellite 2017-08-29 5.0
spacewalk-backend in Red Hat Network Satellite 5.4 on Red Hat Enterprise Linux 6 does not properly authorize or authenticate uploads to the NULL organization when mod_wsgi is used, which allows remote attackers to cause a denial of service (/var...
CVE-2008-2944 1 Red Hat 2 Enterprise Linux Kernel, Fedora Core 2017-08-08 4.9
Double free vulnerability in the utrace support in the Linux kernel, probably 2.6.18, in Red Hat Enterprise Linux (RHEL) 5 and Fedora Core 6 (FC6) allows local users to cause a denial of service (oops), as demonstrated by a crash when running the...
CVE-2008-2369 1 Red Hat 1 Network Satellite Server 2017-08-08 6.4
manzier.pxt in Red Hat Network Satellite Server before 5.1.1 has a hard-coded authentication key, which allows remote attackers to connect to the server and obtain sensitive information about user accounts and entitlements.
CVE-2008-1677 2 Red Hat, Redhat 2 Fedora Directory Server, Directory Server 2017-08-08 7.5
Buffer overflow in the regular expression handler in Red Hat Directory Server 8.0 and 7.1 before SP6 allows remote attackers to cause a denial of service (slapd crash) and possibly execute arbitrary code via a crafted LDAP query that triggers the...
CVE-2008-0884 1 Red Hat 1 Enterprise Linux 2017-08-08 6.9
The Replace function in the capp-lspp-config script in the (1) lspp-eal4-config-ibm and (2) capp-lspp-eal4-config-hp packages before 0.65-2 in Red Hat Enterprise Linux (RHEL) 5 uses lstat instead of stat to determine the /etc/pam.d/system-auth...
CVE-2011-4346 1 Red Hat 1 Network Satellite 2011-12-12 3.5
Cross-site scripting (XSS) vulnerability in the web interface in Red Hat Network (RHN) Satellite 5.4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field of the asset tag in a Custom Info page.