Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gentoo vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2004-1452
Tomcat prior to 5.0.27-r3 in Gentoo Linux sets the default permissions on the init scripts as tomcat:tomcat, but executes the scripts with root privileges, which could allow local users in the tomcat group to execute arbitrary commands as root by modifying the scripts.
Gentoo Linux 1.1a
Gentoo Linux 1.2
Gentoo Linux 1.4
Gentoo Linux 0.5
Gentoo Linux 0.7
445
VMScore
CVE-2005-0427
The ebuild of Webmin prior to 1.170-r3 on Gentoo Linux includes the encrypted root password in the miniserv.users file when building a tbz2 of the webmin package, which allows remote malicious users to obtain and possibly crack the encrypted password.
Gentoo Webmin 1.150
Gentoo Webmin 1.160
Gentoo Webmin 1.140
Gentoo Webmin 1.170
409
VMScore
CVE-2004-1901
Portage prior to 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles.
Gentoo Linux 1.4
Gentoo Portage
Gentoo Portage 2.0.50
409
VMScore
CVE-2007-0476
The gencert.sh script, when installing OpenLDAP prior to 2.1.30-r10, 2.2.x prior to 2.2.28-r7, and 2.3.x prior to 2.3.30-r2 as an ebuild in Gentoo Linux, does not create temporary directories in /tmp securely during emerge, which allows local users to overwrite arbitrary files vi...
Gentoo Linux 2.2.28
Gentoo Linux 2.3.30
Gentoo Linux 2.1.30
187
VMScore
CVE-2005-1270
The (1) check_update.sh and (2) rkhunter script in Rootkit Hunter prior to 1.2.3-r1 create temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack.
Gentoo Rootkit Hunter 1.2.1
Gentoo Rootkit Hunter 1.2.2
Gentoo Rootkit Hunter 1.2
Gentoo Rootkit Hunter 1.2.3
668
VMScore
CVE-2004-0432
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
Proftpd Project Proftpd 1.2.9
Gentoo Linux 1.1a
Gentoo Linux 1.2
Gentoo Linux 1.4
Trustix Secure Linux 2.0
Gentoo Linux 0.5
Gentoo Linux 0.7
Trustix Secure Linux 2.1
320
VMScore
CVE-2008-1734
Interpretation conflict in PHP Toolkit prior to 1.0.1 on Gentoo Linux might allow local users to cause a denial of service (PHP outage) and read contents of PHP scripts by creating a file with a one-letter lowercase alphabetic name, which triggers interpretation of a certain unqu...
Gentoo Php Toolkit
Gentoo Php Toolkit 1.0
169
VMScore
CVE-2008-4579
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly (b) cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file.
Gentoo Cman 2.02.00
Gentoo Fence 2.02.00
641
VMScore
CVE-2008-4580
fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file.
Gentoo Cman 2.02.00
Gentoo Fence 2.02.00
641
VMScore
CVE-2005-4595
Untrusted search path vulnerability (RPATH) in XnView 1.70 and NView 4.51 on Gentoo Linux allows local users to execute arbitrary code via a malicious library in the current working directory.
Gentoo Nview 4.51
Gentoo Xnview 1.70
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »