Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gentoo linux vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2004-1027
Directory traversal vulnerability in the -x (extract) command line option in unarj allows remote malicious users to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences.
Arjsoftware Unarj 2.62
Arjsoftware Unarj 2.63
Arjsoftware Unarj 2.64
Arjsoftware Unarj 2.65
Gentoo Linux
Debian Debian Linux 3.0
9.3
CVSSv2
CVE-2004-1029
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote malicious users to load unsafe classes and execute...
Hp Java Sdk-rte 1.3
Sun Jdk 1.3.1 02
Sun Jdk 1.3.1 03
Sun Jdk 1.3.1 06
Sun Jdk 1.4.0 02
Sun Jdk 1.4.0 03
Sun Jdk 1.4.1
Sun Jdk 1.4.1 03
Sun Jdk 1.4.2 03
Sun Jdk 1.4
Sun Jre 1.3.0
Sun Jre 1.3.1
Sun Jre 1.3.1 02
Sun Jre 1.3.1 05
Sun Jre 1.3.1 06
Sun Jre 1.3.1 09
Sun Jre 1.4.0 03
Sun Jre 1.4.1
Sun Jre 1.4.1 07
Sun Jre 1.4.2
Conectiva Linux 10.0
Sun Jdk 1.3.1 05
1 EDB exploit
2.1
CVSSv2
CVE-2004-1030
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to gain sensitive information by calling fcronsighup with an arbitrary file, which reveals the contents of the file that can not be parsed in an error message.
Thibault Godouet Fcron 2.0.1
Thibault Godouet Fcron 2.9.4
Gentoo Linux
7.2
CVSSv2
CVE-2004-1031
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by starting an suid process and pointing the fcronsighup configuration file to a /proc entry that is owned by root but modifi...
Thibault Godouet Fcron 2.9.4
Thibault Godouet Fcron 2.0.1
Gentoo Linux
2.1
CVSSv2
CVE-2004-1032
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to delete arbitrary files or create arbitrary empty files via a target filename with a large number of leading slash (/) characters such that fcronsighup does not properly append the intended fcro...
Thibault Godouet Fcron 2.0.1
Thibault Godouet Fcron 2.9.4
Gentoo Linux
2.1
CVSSv2
CVE-2004-1033
Fcron 2.0.1, 2.9.4, and possibly earlier versions leak file descriptors of open files, which allows local users to bypass access restrictions and read fcron.allow and fcron.deny via the EDITOR environment variable.
Thibault Godouet Fcron 2.9.4
Thibault Godouet Fcron 2.0.1
Gentoo Linux
10
CVSSv2
CVE-2004-1034
Buffer overflow in the http_open function in Kaffeine prior to 0.5, whose code is also used in gxine prior to 0.3.3, allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a long Content-Type header for a Real Audio ...
Kaffeine Kaffeine Player 0.4.3b
Kaffeine Kaffeine Player 0.5 Rc1
Xine Gxine 0.3
Kaffeine Kaffeine Player 0.4.2
Kaffeine Kaffeine Player 0.4.3
Gentoo Linux
6.8
CVSSv2
CVE-2004-1036
Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and previous versions, and 1.5.1-cvs prior to 23rd October 2004, allows remote malicious users to execute arbitrary web script or HTML.
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.5 Dev
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.3
Gentoo Linux
10
CVSSv2
CVE-2004-1037
The search function in TWiki 20030201 allows remote malicious users to execute arbitrary commands via shell metacharacters in a search string.
Twiki Twiki 2003-02-01
Gentoo Linux
2 EDB exploits
10
CVSSv2
CVE-2004-1052
Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.
Bnc Bnc 2.8.9
Bnc Bnc 2.6.2
Bnc Bnc 2.6.4
Bnc Bnc 2.8.8
Bnc Bnc 2.2.4
Bnc Bnc 2.4.6
Bnc Bnc 2.4.8
Bnc Bnc 2.6
Debian Debian Linux 3.0
Gentoo Linux
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »