Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emacs vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2007-5377
The (1) tramp-make-temp-file and (2) tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Gnu Tramp 2.1.10
7.8
CVSSv2
CVE-2007-2833
Emacs 21 allows user-assisted malicious users to cause a denial of service (crash) via certain crafted images, as demonstrated via a GIF image in vm mode, related to image size calculation.
Debian Debian Linux 4.0
Gnu Emacs 21
7.5
CVSSv2
CVE-2005-0100
Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and previous versions, allows remote malicious POP3 servers to execute arbitrary code via crafted packets.
Gnu Emacs 21.3
Gnu Emacs
Gnu Xemacs
2.1
CVSSv2
CVE-2004-0422
flim prior to 1.14.3 creates temporary files insecurely, which allows local users to overwrite arbitrary files of the Emacs user via a symlink attack.
Gnu Flim
5.1
CVSSv2
CVE-2003-1232
Emacs 21.2.1 does not prompt or warn the user before executing Lisp code in the local variables section of a text file, which allows user-assisted malicious users to execute arbitrary commands, as demonstrated using the mode-name variable.
Gnu Emacs 21.2.1
1 EDB exploit
4.6
CVSSv2
CVE-2003-0440
The (1) semi MIME library 1.14.5 and previous versions, and (2) wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Semi Semi 1.14.3
Debian Debian Linux 3.0
4.6
CVSSv2
CVE-2003-0537
The liece Emacs IRC client 2.0+0.20030527 and previous versions creates temporary files insecurely, which could allow local users to overwrite arbitrary files as other users.
Daiki Ueno Liece Emacs Irc Client
4.6
CVSSv2
CVE-2003-0539
skk (Simple Kana to Kanji conversion program) 12.1 and previous versions, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files.
Redhat Daredevil Skk 11.3.2
Redhat Daredevil Skk 11.3.5
Skk Skk 10.62a
Redhat Daredevil Skk 11.6.0-10
Redhat Daredevil Skk 11.6.0-6
Ddskk Ddskk 11.6 .rel.0
Redhat Ddskk-xemacs 11.6.0-6
Redhat Ddskk-xemacs 11.6.0-8
Redhat Daredevil Skk 11.6.0-8
Redhat Ddskk-xemacs 11.6.0-10
1.2
CVSSv2
CVE-2003-0438
eldav WebDAV client for Emacs, version 0.7.2 and previous versions, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.
Yuuichi Teranishi Eldav
2.1
CVSSv2
CVE-2003-0012
The data collection script for Bugzilla 2.14.x prior to 2.14.5, 2.16.x prior to 2.16.2, and 2.17.x prior to 2.17.3 sets world-writable permissions for the data/mining directory when it runs, which allows local users to modify or delete the data.
Mozilla Bugzilla 2.14.4
Mozilla Bugzilla 2.16
Mozilla Bugzilla 2.14.1
Mozilla Bugzilla 2.14.2
Mozilla Bugzilla 2.14.3
Mozilla Bugzilla 2.14
Mozilla Bugzilla 2.17.1
Mozilla Bugzilla 2.16.1
Mozilla Bugzilla 2.17
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »