Vulnerabilities (CVE)

Vendor filter

Sgi Subscribe

Product filter

Propack Subscribe

Filter

55 total CVE
CVE Vendors Products Updated CVSS
CVE-2004-1307 10 Apple, Conectiva, Libtiff and 7 more 19 Propack, Unixware, Linux and 16 more 2018-10-30 7.5
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to...
CVE-2004-0079 23 Openssl, Bluecoat, Lite and 20 more 66 Vsu, Okena Stormwatch, Openssl and 63 more 2018-10-30 5.0
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
CVE-2004-0112 23 Openssl, Bluecoat, Lite and 20 more 65 Vsu, Okena Stormwatch, Openssl and 62 more 2018-10-30 5.0
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash)...
CVE-2004-0081 23 Openssl, Bluecoat, Lite and 20 more 66 Vsu, Okena Stormwatch, Openssl and 63 more 2018-10-30 5.0
OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
CVE-2004-0523 4 Mit, Tinysofa, Sun and 1 more 6 Propack, Tinysofa Enterprise Server, Seam and 3 more 2018-10-30 10.0
Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.
CVE-2005-1043 6 Apple, Conectiva, Peachtree and 3 more 7 Propack, Peachtree Linux, Php and 4 more 2018-10-30 5.0
exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.
CVE-2005-3626 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 5.0
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
CVE-2005-3625 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 10.0
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode...
CVE-2005-3624 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 5.0
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to...
CVE-2004-1184 4 Sgi, Suse, Gnu and 1 more 4 Suse Linux, Propack, Fedora Core and 1 more 2018-10-19 4.6
The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.
CVE-2005-0605 8 X.org, Xfree86 Project, Redhat and 5 more 11 Propack, Lesstif, Enterprise Linux Desktop and 8 more 2018-10-03 7.5
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
CVE-2005-0156 7 Larry Wall, Ubuntu, Redhat and 4 more 9 Propack, Aix, Enterprise Linux Desktop and 6 more 2018-08-13 2.1
Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a...
CVE-2004-0424 3 Slackware, Linux, Sgi 3 Propack, Linux Kernel, Slackware Linux 2018-05-03 7.2
Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.
CVE-2004-0418 5 Gentoo, Openpkg, Cvs and 2 more 5 Openpkg, Propack, Cvs and 2 more 2018-05-03 10.0
serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical...
CVE-2004-0417 5 Gentoo, Openpkg, Cvs and 2 more 5 Openpkg, Propack, Cvs and 2 more 2018-05-03 5.0
Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and...
CVE-2004-0416 5 Gentoo, Openpkg, Cvs and 2 more 5 Openpkg, Propack, Cvs and 2 more 2018-05-03 10.0
Double free vulnerability for the error_prog_name string in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to execute arbitrary code.
CVE-2004-0414 5 Gentoo, Openpkg, Cvs and 2 more 5 Openpkg, Propack, Cvs and 2 more 2018-05-03 10.0
CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or...
CVE-2004-0148 2 Washington University, Sgi 2 Propack, Wu-ftpd 2018-05-03 7.2
wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead.
CVE-2005-0761 2 Imagemagick, Sgi 2 Imagemagick, Propack 2017-10-11 5.0
Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PSD file.
CVE-2005-0759 2 Imagemagick, Sgi 2 Imagemagick, Propack 2017-10-11 5.0
ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag.