Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

eric sesterhenn vulnerabilities and exploits

(subscribe to this query)
9.8
CVSSv3
CVE-2018-17141
HylaFAX 6.0.6 and HylaFAX+ 5.6.0 allow remote malicious users to execute arbitrary code via a dial-in session that provides a FAX page with the JPEG bit enabled, which is mishandled in FaxModem::writeECMData() in the faxd/CopyQuality.c++ file.
Debian Debian Linux 8.0Debian Debian Linux 9.0Hylafax Hylafax\\+ 5.6.0Hylafax Hylafax 6.0.6
7.8
CVSSv3
CVE-2017-6308
An issue exists in tnef prior to 1.4.13. Several Integer Overflows, which can lead to Heap Overflows, have been identified in the functions that wrap memory allocation.
Tnef Project TnefDebian Debian Linux 8.0
7.8
CVSSv3
CVE-2017-6310
An issue exists in tnef prior to 1.4.13. Four type confusions have been identified in the file_add_mapi_attrs() function. These might lead to invalid read and write operations, controlled by an attacker.
Tnef Project TnefDebian Debian Linux 8.0
7.8
CVSSv3
CVE-2017-6307
An issue exists in tnef prior to 1.4.13. Two OOB Writes have been identified in src/mapi_attr.c:mapi_attr_read(). These might lead to invalid read and write operations, controlled by an attacker.
Tnef Project TnefDebian Debian Linux 8.0
7.8
CVSSv3
CVE-2017-6309
An issue exists in tnef prior to 1.4.13. Two type confusions have been identified in the parse_file() function. These might lead to invalid read and write operations, controlled by an attacker.
Tnef Project TnefDebian Debian Linux 8.0
NA
CVE-2008-3527
arch/i386/kernel/sysenter.c in the Virtual Dynamic Shared Objects (vDSO) implementation in the Linux kernel prior to 2.6.21 does not properly check boundaries, which allows local users to gain privileges or cause a denial of service via unspecified vectors, related to the install...
Linux Linux Kernel 2.6.18Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.4.36.2Linux Linux Kernel 2.6.20.16Linux Linux Kernel 2.6.19.4Linux Linux Kernel 2.4.36.1Linux Linux Kernel 2.6.20.17Linux Linux Kernel 2.4.36.4Linux Linux Kernel 2.6.20.20Linux Linux Kernel 2.4.36.3Linux Linux Kernel 2.6.20.18Linux Linux Kernel 2.6.19.7Linux Linux Kernel 2.6.20.19Linux Linux KernelLinux Linux Kernel 2.4.36Linux Linux Kernel 2.6.19.6Linux Linux Kernel 2.6.19.5Linux Linux Kernel 2.4.36.5Linux Linux Kernel 2.2.27Linux Linux Kernel 2.6
NA
CVE-2008-5182
The inotify functionality in Linux kernel 2.6 prior to 2.6.28-rc5 might allow local users to gain privileges via unknown vectors related to race conditions in inotify watch removal and umount.
Linux Linux Kernel 2.6.11.11Linux Linux Kernel 2.6.11.12Linux Linux Kernel 2.6.11.9Linux Linux Kernel 2.6.12Linux Linux Kernel 2.6.13Linux Linux Kernel 2.6.13.1Linux Linux Kernel 2.6.14.2Linux Linux Kernel 2.6.14.3Linux Linux Kernel 2.6.15.3Linux Linux Kernel 2.6.15.4Linux Linux Kernel 2.6.16.11Linux Linux Kernel 2.6.16.12Linux Linux Kernel 2.6.16.19Linux Linux Kernel 2.6.16.2Linux Linux Kernel 2.6.16.27Linux Linux Kernel 2.6.16.28Linux Linux Kernel 2.6Linux Linux Kernel 2.6.1Linux Linux Kernel 2.6.11.2Linux Linux Kernel 2.6.11.3Linux Linux Kernel 2.6.12.1Linux Linux Kernel 2.6.12.2
NA
CVE-2008-4554
The do_splice_from function in fs/splice.c in the Linux kernel prior to 2.6.27 does not reject file descriptors that have the O_APPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file.
Linux Linux Kernel 2.6.25.4Linux Linux Kernel 2.6.25.11Linux Linux Kernel 2.6.26Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.25.9Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.24.7Linux Linux Kernel 2.6.23.13Linux Linux Kernel 2.6.24.2Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.6.22.21Linux Linux Kernel 2.6.25.12Linux Linux Kernel 2.6.25.5Linux Linux Kernel 2.6.23.8Linux Linux Kernel 2.6.25Linux Linux Kernel 2.6.22.12Linux Linux Kernel 2.6.25.8Linux Linux Kernel 2.6.21.6Linux Linux Kernel 2.4.36.2Linux Linux Kernel 2.6.22.1Linux Linux Kernel 2.6.23.16Linux Linux Kernel 2.6.24.1
NA
CVE-2008-4933
Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c in the Linux kernel prior to 2.6.28-rc1 allows malicious users to cause a denial of service (memory corruption or system crash) via an hfsplus filesystem image with an invalid catalog namelength field, relat...
Linux Linux Kernel 2.6.25.4Linux Linux Kernel 2.6.25.11Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.25.9Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.24.7Linux Linux Kernel 2.6.23.13Linux Linux Kernel 2.6.24.2Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.6.26.5Linux Linux KernelLinux Linux Kernel 2.6.22.21Linux Linux Kernel 2.6.25.12Linux Linux Kernel 2.6.25.5Linux Linux Kernel 2.6.23.8Linux Linux Kernel 2.6.25Linux Linux Kernel 2.6.22.12Linux Linux Kernel 2.6.25.8Linux Linux Kernel 2.6.21.6Linux Linux Kernel 2.4.36.2Linux Linux Kernel 2.6.22.1Linux Linux Kernel 2.6.23.16
NA
CVE-2008-4934
The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel prior to 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which allows malicious users to cause a denial of service (system crash) via a crafted...
Linux Linux KernelDebian Debian Linux 4.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661open redirectCVE-2024-25512CVE-2024-33788command injectionSSTICVE-2024-0043CVE-2024-29210CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook