Product:

Linux

(Gentoo)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 131
Date Id Summary Products Score Patch Annotated
2005-01-10 CVE-2004-1108 qpkg in Gentoolkit 0.2.0_pre10 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary directory. Linux N/A
2005-01-10 CVE-2004-1107 dispatch-conf in Portage 2.0.51-r2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files. Linux N/A
2005-04-14 CVE-2004-1093 Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory." Debian_linux, Linux, Midnight_commander, Enterprise_linux, Linux_advanced_workstation, Suse_linux, Turbolinux_server, Turbolinux_workstation N/A
2005-04-14 CVE-2004-1092 Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory. Debian_linux, Linux, Midnight_commander, Enterprise_linux, Linux_advanced_workstation, Suse_linux, Turbolinux_server, Turbolinux_workstation N/A
2005-04-14 CVE-2004-1091 Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference. Debian_linux, Linux, Midnight_commander, Enterprise_linux, Linux_advanced_workstation, Suse_linux, Turbolinux_server, Turbolinux_workstation N/A
2005-04-14 CVE-2004-1090 Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header." Debian_linux, Linux, Midnight_commander, Enterprise_linux, Linux_advanced_workstation, Suse_linux, Turbolinux_server, Turbolinux_workstation N/A
2005-03-01 CVE-2004-1055 Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PmaAbsoluteUri parameter, (2) the zero_rows parameter in read_dump.php, (3) the confirm form, or (4) an error message generated by the internal phpMyAdmin parser. Linux, Phpmyadmin N/A
2005-03-01 CVE-2004-1052 Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters. Bnc, Debian_linux, Linux N/A
2005-03-01 CVE-2004-1037 The search function in TWiki 20030201 allows remote attackers to execute arbitrary commands via shell metacharacters in a search string. Linux, Twiki N/A
2005-03-01 CVE-2004-1036 Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and earlier, and 1.5.1-cvs before 23rd October 2004, allows remote attackers to execute arbitrary web script or HTML. Linux, Squirrelmail N/A