Slackware Linux current

CPE Details

Slackware Linux current
slackware
slackware_linux
current
2020-03-10
18h53 +00:00
2020-03-10
18h53 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:slackware:slackware_linux:current:*:*:*:*:*:*:*

Informations

Vendor

slackware

Product

slackware_linux

Version

current

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2007-1352 2007-04-05 23h00 +00:00 Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.
3.8
CVE-2004-0940 2004-10-26 02h00 +00:00 Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.
7.8
High
CVE-2004-0891 2004-10-21 02h00 +00:00 Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequence of MSNSLP messages" that results in an unbounded copy operation that writes to the wrong buffer.
10
CVE-2004-0880 2004-09-24 02h00 +00:00 getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file.
1.2
CVE-2004-0881 2004-09-24 02h00 +00:00 getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir.
2.1
CVE-2004-0226 2004-05-05 02h00 +00:00 Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.
10
CVE-2004-0231 2004-05-05 02h00 +00:00 Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations."
2.1
CVE-2004-0232 2004-05-05 02h00 +00:00 Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.
5
CVE-2004-0233 2004-05-05 02h00 +00:00 Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files.
2.1
CVE-2004-0424 2004-04-30 02h00 +00:00 Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.
7.2
CVE-2003-0962 2003-12-10 04h00 +00:00 Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail.
7.5
CVE-2000-0867 2001-01-22 04h00 +00:00 Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
7.2
CVE-1999-0242 2000-02-04 04h00 +00:00 Remote attackers can access mail files via POP3 in some Linux systems that are using shadow passwords.
7.5
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.