Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2005-2541
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote malicious users to gain privileges.
Gnu Tar 1.15.1
6 Github repositories
10
CVSSv2
CVE-2004-1154
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x up to and including 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that...
Samba Samba 2.0.0
Samba Samba 2.0.6
Samba Samba 2.0.7
Samba Samba 2.2.1a
Samba Samba 2.2.2
Samba Samba 2.2.3
Samba Samba 2.2.8
Samba Samba 2.2.8a
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 2.0.1
Samba Samba 2.0.10
Samba Samba 2.0.8
Samba Samba 2.0.9
Samba Samba 2.2.3a
Samba Samba 2.2.4
Samba Samba 2.2.9
Samba Samba 2.2a
Samba Samba 3.0.4
Samba Samba 2.0.4
Samba Samba 2.0.5
Samba Samba 2.2.11
10
CVSSv2
CVE-2004-1170
a2ps 4.13 allows remote malicious users to execute arbitrary commands via shell metacharacters in the filename.
Gnu A2ps 4.13
Gnu A2ps 4.13b
Sun Java Desktop System 2.0
Sun Java Desktop System 2003
Suse Suse Linux 9.0
Suse Suse Linux 9.1
Suse Suse Linux 8.1
Suse Suse Linux 8.2
Suse Suse Linux 8
1 EDB exploit
10
CVSSv2
CVE-2004-0623
Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote malicious users to execute arbitrary code via format string specifiers in a string that gets logged by syslog.
Gnu Gnats 4.0
Gnu Gnats 3.113.1
Gnu Gnats 3.113.1.6
Gnu Gnats 3.0 02
Gnu Gnats 3.113
Gnu Gnats 3.14b
Gnu Gnats 3.2
10
CVSSv2
CVE-2004-0603
gzexe in gzip 1.3.3 and previous versions will execute an argument when the creation of a temp file fails instead of exiting the program, which could allow remote attackers or local users to execute arbitrary commands, a different vulnerability than CVE-1999-1332.
Gnu Gzip
10
CVSSv2
CVE-2004-0354
Multiple format string vulnerabilities in GNU Anubis 3.6.0 up to and including 3.6.2, 3.9.92 and 3.9.93 allow remote malicious users to execute arbitrary code via format string specifiers in strings passed to (1) the info function in log.c, (2) the anubis_error function in errs.c...
Gnu Anubis 3.6.0
Gnu Anubis 3.6.1
Gnu Anubis 3.6.2
Gnu Anubis 3.9.92
Gnu Anubis 3.9.93
1 EDB exploit
10
CVSSv2
CVE-2004-0353
Multiple buffer overflows in auth_ident() function in auth.c for GNU Anubis 3.6.0 up to and including 3.6.2, 3.9.92 and 3.9.93 allow remote malicious users to gain privileges via a long string.
Gnu Anubis 3.6.0
Gnu Anubis 3.6.1
Gnu Anubis 3.6.2
Gnu Anubis 3.9.92
Gnu Anubis 3.9.93
1 EDB exploit
10
CVSSv2
CVE-2004-0226
Multiple buffer overflows in Midnight Commander (mc) prior to 4.6.0 may allow malicious users to cause a denial of service or execute arbitrary code.
Midnight Commander Midnight Commander 4.5.41
Midnight Commander Midnight Commander 4.5.42
Midnight Commander Midnight Commander 4.5.49
Midnight Commander Midnight Commander 4.5.50
Midnight Commander Midnight Commander 4.5.45
Midnight Commander Midnight Commander 4.5.46
Midnight Commander Midnight Commander 4.5.55
Midnight Commander Midnight Commander 4.6
Sgi Propack 2.3
Midnight Commander Midnight Commander 4.5.43
Midnight Commander Midnight Commander 4.5.44
Midnight Commander Midnight Commander 4.5.51
Midnight Commander Midnight Commander 4.5.52
Midnight Commander Midnight Commander 4.5.40
Midnight Commander Midnight Commander 4.5.47
Midnight Commander Midnight Commander 4.5.48
Sgi Propack 2.4
Gentoo Linux 0.5
Gentoo Linux 0.7
Slackware Slackware Linux
Slackware Slackware Linux 9.0
Gentoo Linux 1.4
10
CVSSv2
CVE-2004-1701
Heap-based buffer overflow in the AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 allows remote malicious users to execute arbitrary code via a long SAUTH command during RSA authentication.
Gnu Cfengine 2.0.0
Gnu Cfengine 2.0.5
Gnu Cfengine 2.1.0
Gnu Cfengine 2.0.3
Gnu Cfengine 2.0.4
Gnu Cfengine 2.0.7
Gnu Cfengine 2.0.8
Gnu Cfengine 2.0.1
Gnu Cfengine 2.0.2
Gnu Cfengine 2.0.6
Gnu Cfengine 2.1.7
2 EDB exploits
10
CVSSv2
CVE-2003-0972
Integer signedness error in ansi.c for GNU screen 4.0.1 and previous versions, and 3.9.15 and previous versions, allows local users to execute arbitrary code via a large number of ";" (semicolon) characters in escape sequences, which leads to a buffer overflow.
Gnu Screen 3.9.15
Gnu Screen 3.9.4
Gnu Screen 3.9.11
Gnu Screen 3.9.13
Gnu Screen 3.9.8
Gnu Screen 3.9.9
Gnu Screen 3.9.10
Gnu Screen 4.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »