suse linux · threatengine.sh

CVE-2024-12084

all versions

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled che

9.8CRITICAL

CVE-2024-12088

all versions

A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link dest

6.5MEDIUM

CVE-2024-12087

all versions

A path traversal vulnerability exists in rsync. It stems from behavior enabled by the --inc-recursive option, a default-enabled

6.5MEDIUM

CVE-2024-12086

all versions

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This

6.1MEDIUM

CVE-2024-12085

all versions

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate

7.5HIGH

CVE-2017-3224

all versions

Open Shortest Path First (OSPF) protocol implementations may improperly determine Link State Advertisement (LSA) recency for LSAs

8.2HIGH

CVE-2015-2567

all versions

Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via u

CVE-2015-2566

all versions

Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via v

CVE-2013-4854

all versions

The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, a

CVE-2011-0988

all versions

pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and SP4, and Enterprise Desktop 10 SP3 and SP4, when running OES

CVE-2010-3912

all versions

The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration

CVE-2010-3110

all versions

Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3

CVE-2010-1507

all versions

WebYaST in yast2-webclient in SUSE Linux Enterprise (SLE) 11 on the WebYaST appliance uses a fixed secret key that is embedded in

CVE-2010-0230

all versions

SUSE Linux Enterprise 10 SP3 (SLE10-SP3) and openSUSE 11.2 configures postfix to listen on all network interfaces, which might all

CVE-2009-1297

all versions

iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operatin

CVE-2009-1648

all versions

The YaST2 LDAP module in yast2-ldap-server on SUSE Linux Enterprise Server 11 (aka SLE11) does not enable the firewall in certain

CVE-2008-3949

all versions

emacs/lisp/progmodes/python.el in Emacs 22.1 and 22.2 imports Python script from the current working directory during editing of a

CVE-2008-0063

all versions

The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused portion of a buffer when generating a

7.5HIGH

CVE-2007-6427

all versions

The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests relat

CVE-2007-6167

all versions

Untrusted search path vulnerability in yast2-core in SUSE Linux might allow local users to execute arbitrary code by creating a ma

CVE-2007-5471

all versions

libgssapi before 0.6-13.7, as used by the ISC BIND named daemon in SUSE Linux Enterprise Server 10 SP 1, terminates upon an initia

CVE-2007-5196

all versions

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linu

CVE-2007-5195

all versions

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linu

CVE-2007-4432

all versions

Untrusted search path vulnerability in the wrapper scripts for the (1) rug, (2) zen-updater, (3) zen-installer, and (4) zen-remove

CVE-2007-4394

all versions

Unspecified vulnerability in a "core clean" cron job created by the findutils-locate package on SUSE Linux 10.0 and 10.1 and Enter

CVE-2007-4393

all versions

The installation script for orarun on SUSE Linux before 20070810 places the oracle user into the disk group, which allows the loca

CVE-2007-4074

all versions

The default configuration of Centre for Speech Technology Research (CSTR) Festival 1.95 beta (aka 2.0 beta) on Gentoo Linux, SUSE

CVE-2007-2654

all versions

xfs_fsr in xfsdump creates a .fsr temporary directory with insecure permissions, which allows local users to read or overwrite arb

CVE-2007-1285

all versions

The Zend Engine in PHP 4.x before 4.4.7, and 5.x before 5.2.2, allows remote attackers to cause a denial of service (stack exhaust

7.5HIGH

CVE-2007-0460

<= 10.1

Multiple buffer overflows in ulogd for SUSE Linux 9.3 up to 10.1, and possibly other distributions, have unknown impact and attack

CVE-2006-6662

all versions

Unspecified vulnerability in Linux User Management (novell-lum) on SUSE Linux Enterprise Desktop 10 and Open Enterprise Server 9,

CVE-2006-5616

all versions

Multiple unspecified vulnerabilities in OpenPBS, as used in SUSE Linux 9.2 through 10.1, allow attackers to execute arbitrary code

CVE-2006-2658

all versions

Directory traversal vulnerability in the xsp component in mod_mono in Mono/C# web server, as used in SUSE Open-Enterprise-Server 1

CVE-2006-2752

all versions

The RedCarpet /etc/ximian/rcd.conf configuration file in Novell Linux Desktop 9 and SUSE SLES 9 has world-readable permissions, wh

CVE-2006-2703

all versions

The RedCarpet command-line client (rug) does not verify SSL certificates from a server, which allows remote attackers to read netw

CVE-2006-0745

all versions

X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if

CVE-2006-0803

all versions

The signature verification functionality in the YaST Online Update (YOU) script handling relies on a gpg feature that is not inten

CVE-2006-0646

all versions

ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain circumstances when linking binaries, can leave an empty RPATH or RUNPATH

CVE-2006-0043

all versions

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to e

CVE-2005-4791

all versions

Multiple untrusted search path vulnerabilities in SUSE Linux 10.0 cause the working directory to be added to LD_LIBRARY_PATH, whic

CVE-2005-4790

all versions

Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and 10.0, and possibly other distributions, cause the working dir

CVE-2005-4789

all versions

resmgr in SUSE Linux 9.2 and 9.3, and possibly other distributions, does not properly enforce class-specific exclude rules in some

CVE-2005-4788

all versions

resmgr in SUSE Linux 9.2 and 9.3, and possibly other distributions, allows local users to bypass access control rules for USB devi

CVE-2005-4772

all versions

liby2util in Yet another Setup Tool (YaST) in SUSE Linux before 20051007 preserves permissions and ownerships when copying a remot

CVE-2005-3626

all versions

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause

CVE-2005-3625

all versions

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause

CVE-2005-3624

all versions

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and

CVE-2005-3322

all versions

Unspecified vulnerability in Squid on SUSE Linux 9.0 allows remote attackers to cause a denial of service (crash) via HTTPs (SSL).

CVE-2005-3321

all versions

chkstat in SuSE Linux 9.0 through 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a w

CVE-2005-3298

all versions

Multiple buffer overflows in OpenWBEM on SuSE Linux 9 allow remote attackers to execute arbitrary code via unknown vectors.

CVE-2005-3148

all versions

StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2)

CVE-2005-3147

all versions

StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive info

CVE-2005-3146

all versions

StoreBackup before 1.19 allows local users to perform unauthorized operations on arbitrary files via a symlink attack on temporary

CVE-2005-3013

all versions

Buffer overflow in liby2util in Yet another Setup Tool (YaST) for SuSE Linux 9.3 allows local users to execute arbitrary code via

CVE-2005-1767

all versions

traps.c in the Linux kernel 2.6.x and 2.4.x executes stack segment faults on an exception stack, which allows local users to cause

CVE-2005-1761

all versions

Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service (kernel crash) via ptrace and th

CVE-2005-2023

all versions

The send_pinentry_environment function in asshelp.c in gpg2 on SUSE Linux 9.3 does not properly handle certain options, which can

CVE-2005-1763

all versions

Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures allows local users to write bytes into kernel memory.

CVE-2005-0337

all versions

Postfix 2.1.3, when /proc/net/if_inet6 is not available and permit_mx_backup is enabled in smtpd_recipient_restrictions, allows re

CVE-2005-0207

all versions

Unknown vulnerability in Linux kernel 2.4.x, 2.5.x, and 2.6.x allows NFS clients to cause a denial of service via O_DIRECT.

CVE-2005-0005

all versions

Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute

CVE-2005-0206

all versions

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certa

CVE-2005-0085

all versions

Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web scri

CVE-2005-1043

all versions

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header

CVE-2004-1237

all versions

Unknown vulnerability in the system call filtering code in the audit subsystem for Red Hat Enterprise Linux 3 allows local users t

CVE-2004-1235

all versions

Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and

CVE-2004-1176

all versions

Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service and

CVE-2004-1175

all versions

fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using

CVE-2004-1174

all versions

direntry.c in Midnight Commander (mc) 4.5.55 and earlier allows attackers to cause a denial of service by "manipulating non-existi

CVE-2004-1093

all versions

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory."

CVE-2004-1092

all versions

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated

CVE-2004-1091

all versions

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference.

CVE-2004-1090

all versions

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header."

CVE-2004-1009

all versions

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service (infinite loop) via unknown attack

CVE-2004-1005

all versions

Multiple buffer overflows in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact.

CVE-2004-1004

all versions

Multiple format string vulnerabilities in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown imp

CVE-2005-0750

all versions

The bluez_sock_create function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows lo

CVE-2005-0384

all versions

Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel

CVE-2005-0470

all versions

Buffer overflow in wpa_supplicant before 0.2.7 allows remote attackers to cause a denial of service (segmentation fault) via inval

CVE-2005-0398

all versions

The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP

CVE-2005-0639

all versions

Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via "buffer management errors" fr

CVE-2005-0638

all versions

xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbitrary commands via shell metacharacters in filename

CVE-2005-0605

all versions

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

CVE-2004-0990

all versions

Integer overflow in GD Graphics Library libgd 2.0.28 (libgd2), and possibly other versions, allows remote attackers to cause a den

CVE-2004-0981

all versions

Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a ce

CVE-2004-0957

all versions

Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (und

CVE-2004-0947

all versions

Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long f

CVE-2004-0940

all versions

Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents

7.8HIGH

CVE-2004-0937

all versions

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass

CVE-2005-0156

all versions

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to exec

CVE-2004-0936

all versions

RAV antivirus allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set

CVE-2004-0935

all versions

Eset Anti-Virus before 1.020 (16th September 2004) allows remote attackers to bypass antivirus protection via a compressed file wi

CVE-2004-0934

all versions

Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global heade

CVE-2004-0933

all versions

Computer Associates (CA) InoculateIT 6.0, eTrust Antivirus r6.0 through r7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTru

CVE-2004-0932

all versions

McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004 allows re

CVE-2004-0929

all versions

Heap-based buffer overflow in the OJPEGVSetField function in tif_ojpeg.c for libtiff 3.6.1 and earlier, when compiled with the OJP

CVE-2004-0903

all versions

Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla b

CVE-2004-0902

all versions

Multiple heap-based buffer overflows in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0

CVE-2004-0889

all versions

Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a deni

CVE-2004-0888

all versions

Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow r

CVE-2004-0887

all versions

SUSE Linux Enterprise Server 9 on the S/390 platform does not properly handle a certain privileged instruction, which allows local

CVE-2004-0886

all versions

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corru

CVE-2004-1184

all versions

The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharact

CVE-2004-0991

all versions

Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to execute arbitrary code via frame headers in MP2 or MP3 files.

CVE-2004-1191

all versions

Race condition in SuSE Linux 8.1 through 9.2, when run on SMP systems that have more than 4GB of memory, could allow local users t

CVE-2004-1190

all versions

SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been o

CVE-2004-1170

all versions

a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.

CVE-2004-1154

all versions

Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a deni

CVE-2004-1098

all versions

MIMEDefang in MIME-tools 5.414 allows remote attackers to bypass virus scanning capabilities via an e-mail attachment with a virus

CVE-2004-1096

all versions

Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antiv

CVE-2004-1073

all versions

The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows loca

CVE-2004-1072

all versions

The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name str

CVE-2004-1071

all versions

The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed

CVE-2004-1070

all versions

The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, do

CVE-2004-0956

all versions

MySQL before 4.0.20 allows remote attackers to cause a denial of service (application crash) via a MATCH AGAINST query with an ope

CVE-2004-0949

all versions

The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle the re-asse

CVE-2004-0914

all versions

Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer over

CVE-2004-0883

all versions

Multiple vulnerabilities in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 allow remote samba servers to cause a denial

CVE-2004-2658

all versions

resmgr in SUSE CORE 9 does not properly identify terminal names, which allows local users to spoof terminals and login types.

CVE-2004-2097

all versions

Multiple scripts on SuSE Linux 9.0 allow local users to overwrite arbitrary files via a symlink attack on (1) /tmp/fvwm-bug create

CVE-2004-1895

all versions

YaST Online Update (YOU) in SuSE 8.2 and 9.0 allows local users to overwrite arbitrary files via a symlink attack on you-$USER/coo

CVE-2004-1491

all versions

Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code v

CVE-2004-1476

all versions

Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers t

CVE-2004-0817

all versions

Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted

CVE-2004-0802

all versions

Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted

CVE-2004-0592

all versions

The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when using ipt

CVE-2004-0867

all versions

Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.u

CVE-2004-0803

all versions

Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and

CVE-2004-1145

all versions

Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2)

CVE-2004-1142

all versions

Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed SMB p

CVE-2004-1139

all versions

Unknown vulnerability in the DICOM dissector in Ethereal 0.10.4 through 0.10.7 allows remote attackers to cause a denial of servic

CVE-2004-0626

all versions

The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows rem

CVE-2004-0497

all versions

Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in ker

CVE-2004-0496

all versions

Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set

CVE-2004-0746

all versions

Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.u

CVE-2004-0688

all versions

Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) Pa

CVE-2004-0687

all versions

Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in

CVE-2005-0373

all versions

Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyr

CVE-2004-0866

all versions

Internet Explorer 6.0 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.u

CVE-2004-0827

all versions

Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to

CVE-2004-0905

all versions

Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cr

CVE-2004-0807

all versions

Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain mal

CVE-2004-0587

all versions

Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service.

CVE-2004-0554

all versions

Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop

CVE-2004-0535

all versions

The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users

CVE-2004-0495

all versions

Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as foun

CVE-2004-0461

all versions

The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf func

CVE-2004-0460

all versions

Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers

CVE-2004-2004

all versions

The Live CD in SUSE LINUX 9.1 Personal edition is configured without a password for root, which allows remote attackers to gain pr

CVE-2004-0064

all versions

The SuSEconfig.gnome-filesystem script for YaST in SuSE 9.0 allows local users to overwrite arbitrary files via a symlink attack o

CVE-2003-1538

all versions

susehelp in SuSE Linux 8.1, Enterprise Server 8, Office Server, and Openexchange Server 4 does not properly filter shell metachara

CVE-2003-1295

all versions

Unspecified vulnerability in xscreensaver 4.12, and possibly other versions, allows attackers to cause xscreensaver to crash via u

CVE-2003-0847

all versions

SuSEconfig.susewm in the susewm package on SuSE Linux 8.2Pro allows local users to overwrite arbitrary files via a symlink attack

CVE-2003-0846

all versions

SuSEconfig.javarunt in the javarunt package on SuSE Linux 7.3Pro allows local users to overwrite arbitrary files via a symlink att

CVE-2002-2185

all versions

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a t

CVE-2002-1285

all versions

runlpr in the LPRng package allows the local lp user to gain root privileges via certain command line arguments.

CVE-2002-0854

all versions

Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7.3, 8.0, and possibly other oper

CVE-2002-0768

all versions

Buffer overflow in lukemftp FTP client in SuSE 6.4 through 8.0, and possibly other operating systems, allows a malicious FTP serve

CVE-2002-0762

all versions

shadow package in SuSE 8.0 allows local users to destroy the /etc/passwd and /etc/shadow files or assign extra group privileges to

CVE-2002-0758

all versions

ifup-dhcp script in the sysconfig package for SuSE 8.0 allows remote attackers to execute arbitrary commands via spoofed DHCP resp

CVE-2002-0083

all versions

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privilege

9.8CRITICAL

CVE-2002-0062

all versions

Buffer overflow in ncurses 5.0, and the ncurses4 compatibility package as used in Red Hat Linux, allows local users to gain privil

CVE-2002-0004

all versions

Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, whi

CVE-2001-0872

all versions

OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which

CVE-2001-0869

all versions

Format string vulnerability in the default logging callback function _sasl_syslog in common.c in Cyrus SASL library (cyrus-sasl) m

CVE-2001-0851

all versions

Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the

CVE-2001-0834

all versions

htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c option to specify an alternate co

CVE-2001-0918

all versions

Vulnerabilities in CGI scripts in susehelp in SuSE 7.2 and 7.3 allow remote attackers to execute arbitrary commands by not opening

CVE-2001-0914

all versions

Linux kernel before 2.4.11pre3 in multiple Linux distributions allows local users to cause a denial of service (crash) by starting

CVE-2001-0763

all versions

Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident r

CVE-2001-0641

all versions

Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a lo

CVE-2001-1012

all versions

Vulnerability in screen before 3.9.10, related to a multi-attach error, allows local users to gain root privileges when there is a

CVE-2001-0525

all versions

Buffer overflow in dsh in dqs 3.2.7 in SuSE Linux 7.0 and earlier, and possibly other operating systems, allows local users to gai

CVE-2001-1130

all versions

Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file tha

CVE-2001-0610

all versions

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache direct

CVE-2001-0458

all versions

Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands.

CVE-2001-0388

all versions

time server daemon timed allows remote attackers to cause a denial of service via malformed packets.

CVE-2001-0193

all versions

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.

CVE-2001-0178

all versions

kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, wh

CVE-2001-0172

all versions

Buffer overflow in ReiserFS 3.5.28 in SuSE Linux allows local users to cause a denial of service and possibly execute arbitrary co

CVE-2001-0109

all versions

rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporar

CVE-2000-1134

all versions

Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processin

CVE-2000-1107

all versions

in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of service via a long request, which ca

CVE-2000-1095

all versions

modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters

CVE-2000-1044

all versions

Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain

CVE-2000-1040

all versions

Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an a

CVE-2000-1016

all versions

The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote att

CVE-2000-0869

all versions

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary direc

CVE-2000-0868

all versions

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replac

CVE-2000-0844

all versions

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows loc

CVE-2000-0800

all versions

String parsing error in rpc.kstatd in the linuxnfs or knfsd packages in SuSE and possibly other Linux systems allows remote attack

CVE-2000-0666

all versions

rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows

CVE-2000-0614

all versions

Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which s

CVE-2000-0491

all versions

Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or

CVE-2000-0438

all versions

Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long moun

CVE-2000-0433

all versions

The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privil

CVE-2000-0293

all versions

aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whos

CVE-2000-0340

all versions

Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental varia

CVE-2000-0229

all versions

gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility f

CVE-2000-0231

all versions

Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges

CVE-2000-0218

all versions

Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.

CVE-2000-0361

all versions

The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a lo

CVE-1999-0831

all versions

Denial of service in Linux syslogd via a large number of connections.

CVE-2000-0363

all versions

Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory.

CVE-2000-0362

all versions

Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges.

CVE-1999-0906

all versions

Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable.

CVE-1999-0768

all versions

Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.

CVE-2000-0355

all versions

pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.

CVE-1999-0746

all versions

A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a den

CVE-1999-0804

all versions

Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.

CVE-1999-0434

all versions

XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly al

CVE-1999-0433

all versions

XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly

CVE-1999-0462

all versions

suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing

CVE-1999-0409

all versions

Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access.

CVE-1999-0426

all versions

The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing.

9.8CRITICAL

CVE-1999-1495

all versions

xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on the pic000.pnm file.

CVE-1999-0405

all versions

A buffer overflow in lsof allows local users to obtain root privilege.

CVE-1999-0363

all versions

SuSE 5.2 PLP lpc program has a buffer overflow that leads to root compromise.

CVE-1999-0390

all versions

Buffer overflow in Dosemu Slang library in Linux.

CVE-1999-1182

all versions

Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by callin

CVE-1999-0234

all versions

Bash treats any character with a value of 255 as a command separator.