Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cdrtools cdrecord 2.0 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2004-0806
cdrecord in the cdrtools package prior to 2.01, when installed setuid root, does not properly drop privileges before executing a program specified in the RSH environment variable, which allows local users to gain privileges.
Cdrtools Cdrecord 1.11
Cdrtools Cdrecord 2.0
2 EDB exploits
1 Github repository
7.2
CVSSv2
CVE-2003-0289
Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter.
Cdrtools Cdrecord 2.0
Cdrtools Cdrecord 1.11
2 EDB exploits
1 Github repository
2.1
CVSSv2
CVE-2005-0866
cdrecord prior to 4:2.0, when DEBUG is enabled, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Cdrtools Cdrecord
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started