Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emacs vulnerabilities and exploits
(subscribe to this query)
614
VMScore
CVE-2007-5377
The (1) tramp-make-temp-file and (2) tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Gnu Tramp 2.1.10
694
VMScore
CVE-2007-2833
Emacs 21 allows user-assisted malicious users to cause a denial of service (crash) via certain crafted images, as demonstrated via a GIF image in vm mode, related to image size calculation.
Debian Debian Linux 4.0
Gnu Emacs 21
668
VMScore
CVE-2005-0100
Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and previous versions, allows remote malicious POP3 servers to execute arbitrary code via crafted packets.
Gnu Emacs 21.3
Gnu Emacs
Gnu Xemacs
187
VMScore
CVE-2004-0422
flim prior to 1.14.3 creates temporary files insecurely, which allows local users to overwrite arbitrary files of the Emacs user via a symlink attack.
Gnu Flim
515
VMScore
CVE-2003-1232
Emacs 21.2.1 does not prompt or warn the user before executing Lisp code in the local variables section of a text file, which allows user-assisted malicious users to execute arbitrary commands, as demonstrated using the mode-name variable.
Gnu Emacs 21.2.1
1 EDB exploit
409
VMScore
CVE-2003-0440
The (1) semi MIME library 1.14.5 and previous versions, and (2) wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Semi Semi 1.14.3
Debian Debian Linux 3.0
409
VMScore
CVE-2003-0539
skk (Simple Kana to Kanji conversion program) 12.1 and previous versions, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files.
Redhat Daredevil Skk 11.3.2
Redhat Daredevil Skk 11.3.5
Skk Skk 10.62a
Redhat Daredevil Skk 11.6.0-10
Redhat Daredevil Skk 11.6.0-6
Ddskk Ddskk 11.6 .rel.0
Redhat Ddskk-xemacs 11.6.0-6
Redhat Ddskk-xemacs 11.6.0-8
Redhat Daredevil Skk 11.6.0-8
Redhat Ddskk-xemacs 11.6.0-10
409
VMScore
CVE-2003-0537
The liece Emacs IRC client 2.0+0.20030527 and previous versions creates temporary files insecurely, which could allow local users to overwrite arbitrary files as other users.
Daiki Ueno Liece Emacs Irc Client
107
VMScore
CVE-2003-0438
eldav WebDAV client for Emacs, version 0.7.2 and previous versions, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.
Yuuichi Teranishi Eldav
187
VMScore
CVE-2003-0012
The data collection script for Bugzilla 2.14.x prior to 2.14.5, 2.16.x prior to 2.16.2, and 2.17.x prior to 2.17.3 sets world-writable permissions for the data/mining directory when it runs, which allows local users to modify or delete the data.
Mozilla Bugzilla 2.14.4
Mozilla Bugzilla 2.16
Mozilla Bugzilla 2.14.1
Mozilla Bugzilla 2.14.2
Mozilla Bugzilla 2.14.3
Mozilla Bugzilla 2.14
Mozilla Bugzilla 2.17.1
Mozilla Bugzilla 2.16.1
Mozilla Bugzilla 2.17
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »