Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

karol _ vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2003-0136
psbanner in the LPRng package allows local users to overwrite arbitrary files via a symbolic link attack on the /tmp/before file.
Astart Technologies Lprng 3.8.10.1Astart Technologies Lprng 3.8.19Astart Technologies Lprng 3.8.9Astart Technologies Lprng 3.7.4
NA
CVE-2004-0930
The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause a denial of service (CPU consumption) via a SAMBA request that contains multiple * (wildcard) characters.
Samba Samba 3.0.7Sgi Samba 3.0.1Sgi Samba 3.0Conectiva Linux 10.0Samba Samba 3.0.5Samba Samba 3.0.6Sgi Samba 3.0.6Sgi Samba 3.0.7Samba Samba 3.0.0Sgi Samba 3.0.2Sgi Samba 3.0.3Samba Samba 3.0.3Samba Samba 3.0.4Sgi Samba 3.0.4Sgi Samba 3.0.5Redhat Enterprise Linux 2.1Redhat Enterprise Linux 3.0Redhat Linux Advanced Workstation 2.1Redhat Fedora Core Core 3.0Gentoo LinuxRedhat Enterprise Linux Desktop 3.0Redhat Fedora Core Core 2.0
NA
CVE-2001-1045
Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter.
Basilix Basilix Webmail 1.02 BetaBasilix Basilix Webmail 1.03 Beta
NA
CVE-2003-0388
pam_wheel in Linux-PAM 0.78, with the trust option enabled and the use_uid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin() to return a spoofed user name.
Andrew Morgan Linux Pam
NA
CVE-2003-1412
PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0 allows remote malicious users to execute arbitrary PHP code via the plugin parameter to (1) 3fax/1blocklists/index.php; (2) 6departamentadmin/index.php, (3) 5terminals/index.php, (4) ...
Gonicus Gonicus System Administration 1.0
NA
CVE-2003-0034
Buffer overflow in the mtink status monitor, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long HOME environment variable.
Jean-jacques Sarton Mtink 0.9.32Jean-jacques Sarton Mtink 0.9.33Jean-jacques Sarton Mtink 0.9.52
NA
CVE-2002-1211
Prometheus 6.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a modified PROMETHEUS_LIBRARY_BASE that points to code stored on a remote server, which is then used in (1) index.php, (2) install.php, or (3) various test_*.php scripts.
Jason Orcutt Prometheus 3.0 BetaJason Orcutt Prometheus 4.0 BetaJason Orcutt Prometheus 6.0
NA
CVE-2008-3155
Stack-based buffer overflow in the ActiveX control (as2guiie.dll) in Panda ActiveScan prior to 1.02.00 allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a long argument to the Update method.
Panda Panda Activescan 2.0
NA
CVE-2008-3156
The ActiveScan ActiveX Control (as2guiie.dll) in Panda ActiveScan prior to 1.02.00 allows remote malicious users to download and execute arbitrary cabinet (CAB) files via unspecified URLs passed to the Update method.
Panda Panda Activescan 2.0
NA
CVE-2002-0137
CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file.
Andreas Mueller Cdrdao 1.1.4Andreas Mueller Cdrdao 1.1.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook