Vulnerabilities (CVE)

Vendor filter

Redhat Subscribe

Product filter

Linux Advanced Workstation Subscribe

Filter

66 total CVE
CVE Vendors Products Updated CVSS
CVE-2002-1323 5 Sgi, Sco, Safe.pm and 2 more 9 Linux Advanced Workstation, Solaris, Unixware and 6 more 2018-10-30 4.6
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.
CVE-2004-0882 4 Ubuntu, Conectiva, Samba and 1 more 7 Linux Advanced Workstation, Enterprise Linux Desktop, Enterprise Linux and 4 more 2018-10-30 10.0
Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x through 3.0.7 may allow remote attackers to execute arbitrary code via a TRANSACT2_QFILEPATHINFO request with a small "maximum data bytes" value.
CVE-2005-3626 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 5.0
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
CVE-2005-3625 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 10.0
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode...
CVE-2005-3624 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 5.0
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to...
CVE-2005-1918 2 Gnu, Redhat 4 Enterprise Linux Desktop, Enterprise Linux, Tar and 1 more 2018-10-19 2.6
The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat Enterprise Linux 3 and 2.1 uses an "incorrect optimization" that allows user-assisted attackers to overwrite arbitrary files via a crafted tar file,...
CVE-2002-2185 6 Redhat, Sgi, Suse and 3 more 11 Windows 98, Linux Advanced Workstation, Windows 98se and 8 more 2018-10-19 4.9
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to...
CVE-2006-6235 6 Ubuntu, Slackware, Gpg4win and 3 more 9 Linux Advanced Workstation, Gpg4win, Enterprise Linux Desktop and 6 more 2018-10-17 10.0
A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from...
CVE-2007-1352 8 Turbolinux, Ubuntu, X.org and 5 more 12 Mandrake Multi Network Firewall, Linux Advanced Workstation, Enterprise Linux Desktop and 9 more 2018-10-16 3.8
Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.
CVE-2007-1351 7 Ubuntu, X.org, Rpath and 4 more 9 Mandrake Multi Network Firewall, Linux Advanced Workstation, Enterprise Linux Desktop and 6 more 2018-10-16 8.5
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.
CVE-2007-5365 5 Redhat, Debian, Openbsd and 2 more 7 Linux Advanced Workstation, Solaris, Debian Linux and 4 more 2018-10-15 7.2
Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service...
CVE-2004-0902 4 Suse, Mozilla, Conectiva and 1 more 9 Mozilla, Linux Advanced Workstation, Enterprise Linux Desktop and 6 more 2018-05-03 10.0
Multiple heap-based buffer overflows in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to cause a denial of service (application crash) or execute arbitrary code via (1) the...
CVE-2005-1760 1 Redhat 4 Sysreport, Enterprise Linux, Enterprise Linux Desktop and 1 more 2017-10-11 7.5
sysreport 1.3.15 and earlier includes contents of the up2date file in a report, which leaks the password for a proxy server in plaintext and allows local users to gain privileges.
CVE-2005-1194 1 Redhat 3 Enterprise Linux Desktop, Enterprise Linux, Linux Advanced Workstation 2017-10-11 4.6
Stack-based buffer overflow in the ieee_putascii function for nasm 0.98 and earlier allows attackers to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2004-1287.
CVE-2005-0988 7 Turbolinux, Ubuntu, Redhat and 4 more 13 Linux Advanced Workstation, Linux, Turbolinux Home and 10 more 2017-10-11 3.7
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by...
CVE-2005-0699 4 Altlinux, Ethereal Group, Conectiva and 1 more 6 Linux Advanced Workstation, Enterprise Linux Desktop, Enterprise Linux and 3 more 2017-10-11 7.5
Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length values.
CVE-2005-0206 15 Xpdf, Easy Software Products, Ubuntu and 12 more 22 Linux, Kde, Fedora Core and 19 more 2017-10-11 7.5
The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.
CVE-2005-0078 3 Kde, Debian, Redhat 5 Kde, Debian Linux, Enterprise Linux Desktop and 2 more 2017-10-11 4.6
The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session.
CVE-2004-1613 3 Sgi, Mozilla, Redhat 7 Mozilla, Propack, Linux Advanced Workstation and 4 more 2017-10-11 5.0
Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG tag followed by a null character and some...
CVE-2004-1145 7 Ethereal Group, Conectiva, Redhat and 4 more 9 Propack, Linux Advanced Workstation, Debian Linux and 6 more 2017-10-11 5.0
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to...