Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mandrakesoft mandrake linux 8.2 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2002-1713
The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home directories with world-readable permissions, which could allow local users to read other user's files.
Mandrakesoft Mandrake Linux 8.2
NA
CVE-2005-0085
Cross-site scripting (XSS) vulnerability in ht://dig (htdig) prior to 3.1.6-r7 allows remote malicious users to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.
Htdig Htdig 3.1.5
Htdig Htdig 3.1.5 7
Htdig Htdig 3.2.0b4
Htdig Htdig 3.2.0b3
Htdig Htdig 3.1.6
Htdig Htdig 3.1.5 8
Htdig Htdig 3.2.0b2
Htdig Htdig 3.2.0
Htdig Htdig 3.2.0b6
Htdig Htdig 3.2.0b5
Mandrakesoft Mandrake Linux Corporate Server 2.1
Suse Suse Linux 9.2
Suse Suse Linux 9.0
Suse Suse Linux 8.2
Mandrakesoft Mandrake Linux 10.1
Suse Suse Linux 8.0
Mandrakesoft Mandrake Linux Corporate Server 3.0
Suse Suse Linux 9.1
Mandrakesoft Mandrake Linux 10.0
Redhat Fedora Core Core 3.0
Suse Suse Linux 8.1
NA
CVE-2005-0206
The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.
Pdftohtml Pdftohtml 0.32a
Easy Software Products Cups 1.1.19 Rc5
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Xpdf Xpdf 1.0
Kde Koffice 1.3 Beta2
Sgi Propack 3.0
Easy Software Products Cups 1.1.7
Pdftohtml Pdftohtml 0.35
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Gnome Gpdf 0.112
Kde Koffice 1.3.3
Pdftohtml Pdftohtml 0.32b
Easy Software Products Cups 1.1.15
Kde Koffice 1.3 Beta3
Gnome Gpdf 0.110
Easy Software Products Cups 1.1.13
Pdftohtml Pdftohtml 0.33a
Xpdf Xpdf 2.3
Kde Koffice 1.3
NA
CVE-2004-1235
Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 up to and including 2.429-rc2 and 2.6 up to and including 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.
Suse Suse Linux 9.0
Linux Linux Kernel 2.4.18
Linux Linux Kernel 2.4.15
Redhat Fedora Core Core 2.0
Linux Linux Kernel 2.4.0
Redhat Enterprise Linux 4.0
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.4.11
Linux Linux Kernel 2.6.1
Mandrakesoft Mandrake Linux Corporate Server 2.1
Suse Suse Linux 9.2
Redhat Enterprise Linux Desktop 3.0
Linux Linux Kernel 2.4.27
Ubuntu Ubuntu Linux 4.1
Linux Linux Kernel 2.4.26
Suse Suse Linux 8.2
Redhat Enterprise Linux 3.0
Linux Linux Kernel 2.4.19
Linux Linux Kernel 2.4.21
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.4.12
Linux Linux Kernel 2.4.13
3 EDB exploits
NA
CVE-2005-0003
The 64 bit ELF support in Linux kernel 2.6 prior to 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbitrary code via a crafted ELF ...
Linux Linux Kernel 2.4.18
Linux Linux Kernel 2.4.15
Linux Linux Kernel 2.4.0
Linux Linux Kernel 2.4.11
Mandrakesoft Mandrake Linux Corporate Server 2.1
Redhat Enterprise Linux Desktop 3.0
Linux Linux Kernel 2.4.27
Linux Linux Kernel 2.4.26
Redhat Enterprise Linux 3.0
Linux Linux Kernel 2.4.19
Linux Linux Kernel 2.4.21
Linux Linux Kernel 2.4.12
Linux Linux Kernel 2.4.13
Mandrakesoft Mandrake Linux 9.2
Linux Linux Kernel 2.4.17
Avaya Modular Messaging Message Storage Server 2.0
Linux Linux Kernel 2.4.23 Ow2
Linux Linux Kernel 2.4.23
Linux Linux Kernel 2.4.29
Mandrakesoft Mandrake Linux 10.1
Linux Linux Kernel 2.4.7
Avaya S8710 R2.0.1
NA
CVE-2005-0605
scan.c for LibXPM may allow malicious users to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
Xfree86 Project X11r6 3.3.4
Xfree86 Project X11r6 4.1.0
Xfree86 Project X11r6 3.3.6
X.org X11r6 6.8.1
Xfree86 Project X11r6 4.0.2.11
Sgi Propack 3.0
Xfree86 Project X11r6 4.3.0.2
Xfree86 Project X11r6 4.0.3
Lesstif Lesstif 0.93.94
X.org X11r6 6.7.0
Xfree86 Project X11r6 4.3.0
Xfree86 Project X11r6 3.3
Xfree86 Project X11r6 4.2.1
X.org X11r6 6.8
Xfree86 Project X11r6 4.0
Xfree86 Project X11r6 3.3.2
Xfree86 Project X11r6 3.3.5
Xfree86 Project X11r6 4.0.1
Xfree86 Project X11r6 4.2.0
Xfree86 Project X11r6 4.1.12
Xfree86 Project X11r6 4.3.0.1
Xfree86 Project X11r6 3.3.3
NA
CVE-2004-1051
sudo prior to 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname.
Todd Miller Sudo 1.5.8
Todd Miller Sudo 1.6.3 P6
Todd Miller Sudo 1.5.9
Todd Miller Sudo 1.6.6
Todd Miller Sudo 1.6.3
Todd Miller Sudo 1.6.4 P2
Todd Miller Sudo 1.6.1
Todd Miller Sudo 1.6.3 P5
Todd Miller Sudo 1.5.7
Todd Miller Sudo 1.6.2
Todd Miller Sudo 1.6.8
Todd Miller Sudo 1.6.4 P1
Todd Miller Sudo 1.6.3 P2
Todd Miller Sudo 1.6.3 P4
Todd Miller Sudo 1.6.5 P2
Todd Miller Sudo 1.6.5
Todd Miller Sudo 1.6.3 P3
Todd Miller Sudo 1.6.8 P1
Todd Miller Sudo 1.6.5 P1
Todd Miller Sudo 1.6.3 P7
Todd Miller Sudo 1.6
Todd Miller Sudo 1.6.4
NA
CVE-2004-0975
The der_chop script in the openssl package in Trustix Secure Linux 1.5 up to and including 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.
Openssl Openssl 0.9.6i
Openssl Openssl 0.9.7c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.6
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.6f
Openssl Openssl 0.9.6l
Openssl Openssl 0.9.6e
Openssl Openssl 0.9.7d
Openssl Openssl 0.9.6b
Openssl Openssl 0.9.6k
Openssl Openssl 0.9.6g
Openssl Openssl 0.9.6h
Openssl Openssl 0.9.6j
Mandrakesoft Mandrake Multi Network Firewall 8.2
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6m
Mandrakesoft Mandrake Linux Corporate Server 2.1
Mandrakesoft Mandrake Linux 9.2
Mandrakesoft Mandrake Linux 10.1
Mandrakesoft Mandrake Linux 10.0
Gentoo Linux
NA
CVE-2004-0886
Multiple integer overflows in libtiff 3.6.1 and previous versions allow remote malicious users to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.
Libtiff Libtiff 3.6.1
Wxgtk2 Wxgtk2
Pdflib Pdf Library 5.0.2
Wxgtk2 Wxgtk2 2.5 .0
Libtiff Libtiff 3.4
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.5.1
Suse Suse Linux 9.0
Redhat Enterprise Linux 2.1
Redhat Fedora Core Core 2.0
Apple Mac Os X Server 10.3.2
Apple Mac Os X 10.2.5
Trustix Secure Linux 2.0
Apple Mac Os X Server 10.2.2
Redhat Enterprise Linux Desktop 3.0
Apple Mac Os X 10.2.7
Apple Mac Os X 10.2.8
NA
CVE-2004-1098
MIMEDefang in MIME-tools 5.414 allows remote malicious users to bypass virus scanning capabilities via an e-mail attachment with a virus that contains an empty boundary string in the Content-Type header.
Roaring Penguin Mimedefang 2.42
Roaring Penguin Mimedefang 2.4
Roaring Penguin Mimedefang 2.14
Roaring Penguin Mimedefang 4.47
Roaring Penguin Mimedefang 2.43
Roaring Penguin Mimedefang 2.38
Roaring Penguin Mimedefang 2.39
Roaring Penguin Mimedefang 4.46
Roaring Penguin Mimedefang 2.21
Roaring Penguin Mimedefang 2.45
Roaring Penguin Mimedefang 2.20
Roaring Penguin Mimedefang 2.41
Roaring Penguin Mimedefang 2.44
Mandrakesoft Mandrake Linux Corporate Server 2.1
Suse Suse Linux 9.2
Suse Suse Linux 9.0
Suse Suse Linux 8.2
Mandrakesoft Mandrake Linux 9.2
Mandrakesoft Mandrake Linux 10.1
Suse Suse Linux 8.0
Suse Suse Linux 9.1
Mandrakesoft Mandrake Linux 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »