Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mandrake_linux
(Mandrakesoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 135 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2004-12-06 | CVE-2004-0635 | The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read. | Ethereal, Linux, Mandrake_linux, Enterprise_linux, Linux_advanced_workstation | N/A | ||
| 2004-12-06 | CVE-2004-0634 | The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference. | Ethereal, Linux, Mandrake_linux, Enterprise_linux, Linux_advanced_workstation | N/A | ||
| 2004-12-06 | CVE-2004-0633 | The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow. | Ethereal, Linux, Mandrake_linux, Enterprise_linux, Linux_advanced_workstation | N/A | ||
| 2002-12-31 | CVE-2002-1713 | The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home directories with world-readable permissions, which could allow local users to read other user's files. | Mandrake_linux | 5.5 | ||
| 2003-02-19 | CVE-2003-0041 | Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by the client. | Mandrake_linux, Mandrake_multi_network_firewall, Kerberos_ftp_client, Linux | N/A | ||
| 2005-02-09 | CVE-2004-0977 | The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite files via a symlink attack on temporary files. | Mandrake_linux, Mandrake_linux_corporate_server, Postgresql, Enterprise_linux, Enterprise_linux_desktop, Secure_linux | N/A | ||
| 2002-03-15 | CVE-2002-0083 | Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges. | Linux, Secure_linux, Immunix, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_single_network_firewall, Openssh, Openpkg, Linux, Suse_linux, Secure_linux | 9.8 | ||
| 2008-02-29 | CVE-2008-0595 | dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface. | Fedora, Dbus, Mandrake_linux, Enterprise_linux | N/A | ||
| 2001-03-12 | CVE-2001-0136 | Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed. | Linux, Debian_linux, Mandrake_linux, Proftpd | N/A | ||
| 2000-06-21 | CVE-2000-0607 | Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings. | Debian_linux, Mandrake_linux, Linux | N/A |