Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ubuntu ubuntu linux 5.04 vulnerabilities and exploits

(subscribe to this query)
2.1
CVSSv2
CVE-2005-3181
The audit system in Linux kernel 2.6.6, and other versions prior to 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a memory leak that allows malic...
Linux Linux KernelCanonical Ubuntu Linux 4.10Canonical Ubuntu Linux 5.04Debian Debian Linux 3.1Mandriva Linux 10.1Mandriva Linux 10.2Mandriva Linux 2006.0
5
CVSSv2
CVE-2005-1527
Eval injection vulnerability in awstats.pl in AWStats 6.4 and previous versions, when a URLPlugin is enabled, allows remote malicious users to execute arbitrary Perl code via the HTTP Referrer, which is used in a $url parameter that is inserted into an eval function call.
Awstats AwstatsCanonical Ubuntu Linux 5.04Debian Debian Linux 3.1Debian Debian Linux 3.0
7.5
CVSSv2
CVE-2005-0754
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote malicious users to execute arbitrary code.
Kde Quanta 3.1Conectiva Linux 10.0Conectiva Linux 9.0Kde Kde 3.2.1Kde Kde 3.2.2Ubuntu Ubuntu Linux 4.1Ubuntu Ubuntu Linux 5.04Kde Kde 3.2.3Kde Kde 3.3Gentoo LinuxKde Kde 3.2Redhat Fedora Core Core 3.0Kde Kde 3.3.1Kde Kde 3.3.2Kde Kde 3.4
5
CVSSv2
CVE-2005-2970
Memory leak in the worker MPM (worker.c) for Apache 2, in certain circumstances, allows remote malicious users to cause a denial of service (memory consumption) via aborted connections, which prevents the memory for the transaction pool from being reused for other connections.
Apache Http ServerCanonical Ubuntu Linux 4.10Canonical Ubuntu Linux 5.04Canonical Ubuntu Linux 5.10Redhat Enterprise Linux Desktop 3.0Redhat Enterprise Linux Desktop 4.0Redhat Enterprise Linux Server 4.0Redhat Enterprise Linux Workstation 4.0Redhat Enterprise Linux Workstation 3.0Redhat Enterprise Linux Server 3.0Fedoraproject Fedora Core 4
4.3
CVSSv2
CVE-2006-4343
The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 prior to 0.9.7l, 0.9.8 prior to 0.9.8d, and previous versions versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer dereference.
Openssl Openssl 0.9.7fOpenssl Openssl 0.9.7gOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.7aOpenssl Openssl 0.9.7bOpenssl Openssl 0.9.7cOpenssl Openssl 0.9.7jOpenssl Openssl 0.9.7kOpenssl Openssl 0.9.7dOpenssl Openssl 0.9.7eOpenssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.7Openssl Openssl 0.9.7hOpenssl Openssl 0.9.7iDebian Debian Linux 3.1Canonical Ubuntu Linux 5.04Canonical Ubuntu Linux 5.10Canonical Ubuntu Linux 6.06
7.5
CVSSv2
CVE-2004-2154
CUPS prior to 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows malicious users to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.
Apple CupsApple Cups 1.1.21Canonical Ubuntu Linux 4.10
3.6
CVSSv2
CVE-2005-2492
The raw_sendmsg function in the Linux kernel 2.6 prior to 2.6.13.1 allows local users to cause a denial of service (change hardware state) or read from arbitrary memory via crafted input.
Canonical Ubuntu Linux 5.04Canonical Ubuntu Linux 4.10Redhat Enterprise Linux 4.0Linux Linux Kernel 2.6.0Linux Linux Kernel 2.6.1Linux Linux Kernel 2.6.11.6Linux Linux Kernel 2.6.11.7Linux Linux Kernel 2.6.2Linux Linux Kernel 2.6.3Linux Linux Kernel 2.6.8Linux Linux Kernel 2.6.11.11Linux Linux Kernel 2.6.11.5Linux Linux Kernel 2.6.12Linux Linux Kernel 2.6.7Linux Linux Kernel 2.6.11.8Linux Linux Kernel 2.6.11Linux Linux Kernel 2.6.4Linux Linux Kernel 2.6.5Linux Linux Kernel 2.6.10Linux Linux Kernel 2.6.6Linux Linux Kernel 2.6.9Linux Linux Kernel 2.6 Test9 Cvs
7.2
CVSSv2
CVE-2006-0151
sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.
Todd Miller Sudo 1.5.8Todd Miller Sudo 1.6Todd Miller Sudo 1.6.1Todd Miller Sudo 1.6.3 P5Todd Miller Sudo 1.6.3 P6Todd Miller Sudo 1.6.6Todd Miller Sudo 1.6.7Todd Miller Sudo 1.6.8 P7Todd Miller Sudo 1.6.8 P8Todd Miller Sudo 1.5.9Todd Miller Sudo 1.6.3 P3Todd Miller Sudo 1.6.3 P4Todd Miller Sudo 1.6.5 P1Todd Miller Sudo 1.6.5 P2Todd Miller Sudo 1.6.8 P2Todd Miller Sudo 1.6.8 P5Todd Miller Sudo 1.5.6Todd Miller Sudo 1.5.7Todd Miller Sudo 1.6.3 P1Todd Miller Sudo 1.6.3 P2Todd Miller Sudo 1.6.4 P1Todd Miller Sudo 1.6.4 P2
3.7
CVSSv2
CVE-2005-0988
Race condition in gzip 1.2.4, 1.3.3, and previous versions, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompressio...
Gnu Gzip 1.2.4Gnu Gzip 1.2.4aGnu Gzip 1.3.3Freebsd Freebsd 4.1.1Freebsd Freebsd 4.11Freebsd Freebsd 4.4Freebsd Freebsd 4.5Freebsd Freebsd 4.6Freebsd Freebsd 4.7Freebsd Freebsd 4.9Freebsd Freebsd 5.1Freebsd Freebsd 5.3Redhat Enterprise Linux 2.1Redhat Enterprise Linux 4.0Redhat Enterprise Linux Desktop 3.0Turbolinux Turbolinux Appliance Server 1.0 HostingTurbolinux Turbolinux Appliance Server 1.0 WorkgroupUbuntu Ubuntu Linux 4.1Freebsd Freebsd 4.0Freebsd Freebsd 4.10Freebsd Freebsd 4.3Freebsd Freebsd 4.8
5
CVSSv2
CVE-2005-3624
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows malicious users to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integ...
Kde Kdegraphics 3.2Kde Kdegraphics 3.4.3Sgi Propack 3.0Tetex Tetex 1.0.7Libextractor LibextractorEasy Software Products Cups 1.1.23Easy Software Products Cups 1.1.23 Rc1Kde Kword 1.4.2Poppler Poppler 0.4.2Xpdf Xpdf 3.0Conectiva Linux 10.0Easy Software Products Cups 1.1.22Easy Software Products Cups 1.1.22 Rc1Kde Koffice 1.4.2Kde Kpdf 3.2Kde Kpdf 3.4.3Tetex Tetex 2.0.2Tetex Tetex 3.0Kde Koffice 1.4Kde Koffice 1.4.1Tetex Tetex 2.0Tetex Tetex 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook