Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

canonical ubuntu linux 6.06 vulnerabilities and exploits

(subscribe to this query)

6.8
CVSSv2
CVE-2007-1562
The FTP protocol implementation in Mozilla Firefox before 1.5.0.11 and 2.x before 2.0.0.3 allows remote attackers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP...
Mozilla FirefoxCanonical Ubuntu Linux 5.10Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 6.10
2.1
CVSSv2
CVE-2010-2946
fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy format for storage of extended attributes, which might allow local users by bypass intended xattr namespace restrictions via an "os2." substring at the beginning of a name....
Linux Linux KernelCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10
2.1
CVSSv2
CVE-2006-5173
Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which allows local users to cause a denial of service (process crash), as demonstrated using a process that sets the Alignment Check flag (EFLAGS...
Linux Linux KernelCanonical Ubuntu Linux 5.10Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 6.10
9.3
CVSSv2
CVE-2008-2712
Vim 7.1.314, 6.4, and other versions allows user-assisted remote attackers to execute arbitrary commands via Vim scripts that do not properly sanitize inputs before invoking the execute or system functions, as demonstrated using (1) filetype.vim, (3) xpm.vim, (4) gzip_vim, and...
Vim VimCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10
4.3
CVSSv2
CVE-2007-5268
pngrtran.c in libpng before 1.0.29 and 1.2.x before 1.2.21 use (1) logical instead of bitwise operations and (2) incorrect comparisons, which might allow remote attackers to cause a denial of service (crash) via a crafted PNG image....
Libpng LibpngCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 6.10Canonical Ubuntu Linux 7.04Canonical Ubuntu Linux 7.10
6.8
CVSSv2
CVE-2007-4829
Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and earlier allows user-assisted remote attackers to overwrite arbitrary files via a TAR archive that contains a file whose name is an absolute path or has ".." sequences....
Archive\\ \\ Tar ProjectCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10
6.8
CVSSv2
CVE-2010-2067
Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance field in a TIFF file....
Libtiff LibtiffCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 10.04
10
CVSSv2
CVE-2008-2662
Multiple integer overflows in the rb_str_buf_append function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allow context-dependent attackers to execute arbitrary code or cause a denial of service via...
Ruby-lang RubyDebian Debian Linux 4.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.04Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04
3.5
CVSSv2
CVE-2006-7232
sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows remote authenticated users to cause a denial of service (crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table, as originally demonstrated using ORDER BY....
Mysql MysqlCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 6.10Canonical Ubuntu Linux 7.04Canonical Ubuntu Linux 7.10
3.5
CVSSv2
CVE-2010-2008
MySQL before 5.1.48 allows remote authenticated users with alter database privileges to cause a denial of service (server crash and database loss) via an ALTER DATABASE command with a #mysql50# string followed by a . (dot), .. (dot dot), ../ (dot dot slash) or similar sequence,...
Oracle MysqlCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Fedoraproject Fedora 13
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2021-20661CVE-2020-4953CVE-2018-19518CVE-2021-27645CVE-2021-3156CVE-2021-26684deserializationwireless