Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ubuntu ubuntu linux 5.04 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2004-2154
CUPS prior to 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows malicious users to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.
Apple Cups
Apple Cups 1.1.21
Canonical Ubuntu Linux 4.10
7.2
CVSSv2
CVE-2006-3378
passwd command in shadow in Ubuntu 5.04 up to and including 6.06 LTS, when called with the -f, -g, or -s flag, does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits.
Ubuntu Ubuntu Linux 5.10
Ubuntu Ubuntu Linux 6.06 Lts
Ubuntu Ubuntu Linux 5.04
7.2
CVSSv2
CVE-2006-0151
sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.
Todd Miller Sudo 1.5.8
Todd Miller Sudo 1.6
Todd Miller Sudo 1.6.1
Todd Miller Sudo 1.6.3 P5
Todd Miller Sudo 1.6.3 P6
Todd Miller Sudo 1.6.6
Todd Miller Sudo 1.6.7
Todd Miller Sudo 1.6.8 P7
Todd Miller Sudo 1.6.8 P8
Todd Miller Sudo 1.5.9
Todd Miller Sudo 1.6.3 P3
Todd Miller Sudo 1.6.3 P4
Todd Miller Sudo 1.6.5 P1
Todd Miller Sudo 1.6.5 P2
Todd Miller Sudo 1.6.8 P2
Todd Miller Sudo 1.6.8 P5
Todd Miller Sudo 1.5.6
Todd Miller Sudo 1.5.7
Todd Miller Sudo 1.6.3 P1
Todd Miller Sudo 1.6.3 P2
Todd Miller Sudo 1.6.4 P1
Todd Miller Sudo 1.6.4 P2
1 Github repository
6.2
CVSSv2
CVE-2006-3626
Race condition in Linux kernel 2.6.17.4 and previous versions allows local users to gain root privileges by using prctl with PR_SET_DUMPABLE in a way that causes /proc/self/environ to become setuid root.
Linux Linux Kernel 2.6.17
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel 2.6.16.6
Linux Linux Kernel 2.6.16.8
Linux Linux Kernel 2.6.16
Linux Linux Kernel 2.6.17.2
Linux Linux Kernel 2.6.17.4
Linux Linux Kernel 2.6.16.18
Linux Linux Kernel 2.6.16.13
Linux Linux Kernel 2.6.16.4
Linux Linux Kernel 2.6.17.3
Linux Linux Kernel 2.6.16.15
Linux Linux Kernel 2.6.16.1
Linux Linux Kernel 2.6.16.11
Linux Linux Kernel 2.6.16.14
Linux Linux Kernel 2.6.16.21
Linux Linux Kernel 2.6.16.23
Linux Linux Kernel 2.6.16.3
Linux Linux Kernel 2.6.17.1
Linux Linux Kernel 2.6.16.22
Linux Linux Kernel 2.6.16.10
5
CVSSv2
CVE-2006-4095
BIND prior to 9.2.6-P1 and 9.3.x prior to 9.3.2-P1 allows remote malicious users to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.
Isc Bind
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.06
Apple Mac Os X Server
Apple Mac Os X
5
CVSSv2
CVE-2006-2661
ftutil.c in Freetype prior to 2.2 allows remote malicious users to cause a denial of service (crash) via a crafted font file that triggers a null dereference.
Freetype Freetype
Debian Debian Linux 3.0
Debian Debian Linux 3.1
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.06
1 EDB exploit
5
CVSSv2
CVE-2006-2275
Linux SCTP (lksctp) prior to 2.6.17 allows remote malicious users to cause a denial of service (deadlock) via a large number of small messages to a receiver application that cannot process the messages quickly enough, which leads to "spillover of the receive buffer."
Lksctp Stream Control Transmission Protocol
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.06
5
CVSSv2
CVE-2005-3624
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows malicious users to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integ...
Kde Kdegraphics 3.2
Kde Kdegraphics 3.4.3
Sgi Propack 3.0
Tetex Tetex 1.0.7
Libextractor Libextractor
Easy Software Products Cups 1.1.23
Easy Software Products Cups 1.1.23 Rc1
Kde Kword 1.4.2
Poppler Poppler 0.4.2
Xpdf Xpdf 3.0
Conectiva Linux 10.0
Easy Software Products Cups 1.1.22
Easy Software Products Cups 1.1.22 Rc1
Kde Koffice 1.4.2
Kde Kpdf 3.2
Kde Kpdf 3.4.3
Tetex Tetex 2.0.2
Tetex Tetex 3.0
Kde Koffice 1.4
Kde Koffice 1.4.1
Tetex Tetex 2.0
Tetex Tetex 2.0.1
5
CVSSv2
CVE-2005-3626
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows malicious users to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.23
Kde Kpdf 3.2
Kde Kpdf 3.4.3
Tetex Tetex 3.0
Xpdf Xpdf 3.0
Easy Software Products Cups 1.1.23 Rc1
Kde Kdegraphics 3.2
Kde Kword 1.4.2
Poppler Poppler 0.4.2
Conectiva Linux 10.0
Libextractor Libextractor
Kde Kdegraphics 3.4.3
Kde Koffice 1.4
Sgi Propack 3.0
Tetex Tetex 1.0.7
Easy Software Products Cups 1.1.22
Kde Koffice 1.4.1
Kde Koffice 1.4.2
Tetex Tetex 2.0
Tetex Tetex 2.0.1
Tetex Tetex 2.0.2
5
CVSSv2
CVE-2005-2970
Memory leak in the worker MPM (worker.c) for Apache 2, in certain circumstances, allows remote malicious users to cause a denial of service (memory consumption) via aborted connections, which prevents the memory for the transaction pool from being reused for other connections.
Apache Http Server
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
Redhat Enterprise Linux Desktop 3.0
Redhat Enterprise Linux Desktop 4.0
Redhat Enterprise Linux Server 4.0
Redhat Enterprise Linux Workstation 4.0
Redhat Enterprise Linux Workstation 3.0
Redhat Enterprise Linux Server 3.0
Fedoraproject Fedora Core 4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »