Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gentoo linux vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2012-0056
The mem_write function in the Linux kernel prior to 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempodipper.
Linux Linux Kernel
2 EDB exploits
25 Github repositories
1 Article
6.9
CVSSv2
CVE-2009-1527
Race condition in the ptrace_attach function in kernel/ptrace.c in the Linux kernel prior to 2.6.30-rc4 allows local users to gain privileges via a PTRACE_ATTACH ptrace call during an exec system call that is launching a setuid application, related to locking an incorrect cred_ex...
Linux Linux Kernel 2.6.30
Linux Linux Kernel
1 EDB exploit
6.8
CVSSv2
CVE-2014-4909
Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission prior to 2.84 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted peer message, which triggers an out-of-bounds write.
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Gentoo Linux
Fedoraproject Fedora 20
Canonical Ubuntu Linux 12.04
Transmissionbt Transmission 2.75
Transmissionbt Transmission 2.74
Transmissionbt Transmission 2.52
Transmissionbt Transmission 2.51
Transmissionbt Transmission 2.31
Transmissionbt Transmission 2.30
Transmissionbt Transmission 2.04
Transmissionbt Transmission 2.03
Transmissionbt Transmission 1.90
Transmissionbt Transmission 1.83
Transmissionbt Transmission 1.74
Transmissionbt Transmission 1.73
Transmissionbt Transmission 1.52
Transmissionbt Transmission 1.51
Transmissionbt Transmission 1.32
Transmissionbt Transmission 1.31
Transmissionbt Transmission 1.10
6.8
CVSSv2
CVE-2010-1159
Multiple heap-based buffer overflows in Aircrack-ng prior to 1.1 allow remote malicious users to cause a denial of service (crash) and execute arbitrary code via a (1) large length value in an EAPOL packet or (2) long EAPOL packet.
Aircrack-ng Aircrack-ng
Aircrack-ng Aircrack-ng 1.0
Aircrack-ng Aircrack-ng 0.5
Aircrack-ng Aircrack-ng 0.4.4
Aircrack-ng Aircrack-ng 0.4.3
Aircrack-ng Aircrack-ng 0.4.2
Aircrack-ng Aircrack-ng 0.9.2
Aircrack-ng Aircrack-ng 0.9.1
Aircrack-ng Aircrack-ng 0.9
Aircrack-ng Aircrack-ng 0.8
Aircrack-ng Aircrack-ng 0.2
Aircrack-ng Aircrack-ng 0.1
Gentoo Linux
Aircrack-ng Aircrack-ng 0.6.2
Aircrack-ng Aircrack-ng 0.6
Aircrack-ng Aircrack-ng 0.4.1
Aircrack-ng Aircrack-ng 0.3
Aircrack-ng Aircrack-ng 0.9.3
Aircrack-ng Aircrack-ng 0.7
Aircrack-ng Aircrack-ng 0.6.1
Aircrack-ng Aircrack-ng 0.4
Aircrack-ng Aircrack-ng 0.2.1
1 EDB exploit
6.8
CVSSv2
CVE-2004-1036
Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and previous versions, and 1.5.1-cvs prior to 23rd October 2004, allows remote malicious users to execute arbitrary web script or HTML.
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.5 Dev
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.3
Gentoo Linux
6.8
CVSSv2
CVE-2004-1055
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6.0-pl2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the PmaAbsoluteUri parameter, (2) the zero_rows parameter in read_dump.php, (3) the confirm form, or (4) a...
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.6.0 Pl1
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.5 Pl1
Phpmyadmin Phpmyadmin 2.6.0 Pl2
Gentoo Linux 1.4
6.8
CVSSv2
CVE-2004-1106
Cross-site scripting (XSS) vulnerability in Gallery 1.4.4-pl3 and previous versions allows remote malicious users to execute arbitrary web script or HTML via "specially formed URLs," possibly via the include parameter in index.php.
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.4
Gentoo Linux
6.6
CVSSv2
CVE-2006-0071
The ebuild for pinentry prior to 0.7.2-r2 on Gentoo Linux sets setgid bits for pinentry programs, which allows local users to read or overwrite arbitrary files as gid 0.
Gentoo App-crypt Pinentry 0.7.2
Gentoo Linux
6.5
CVSSv2
CVE-2020-5208
It's been found that multiple functions in ipmitool prior to 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitoo...
Ipmitool Project Ipmitool 1.8.18
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Opensuse Leap 15.1
6.4
CVSSv2
CVE-2004-0493
The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote malicious users to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header lines with large number...
Trustix Secure Linux 2.0
Avaya Converged Communications Server 2.0
Trustix Secure Linux 1.5
Gentoo Linux 1.4
Trustix Secure Linux 2.1
Apache Http Server 2.0.47
Ibm Http Server 2.0.42.1
Avaya S8300 R2.0.0
Apache Http Server 2.0.49
Ibm Http Server 2.0.42
Ibm Http Server 2.0.47.1
Apache Http Server 2.0.48
Ibm Http Server 2.0.42.2
Avaya S8700 R2.0.0
Avaya S8500 R2.0.0
Ibm Http Server 2.0.47
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »