MidnightBSD

Advisories for turbolinux

CVE-1999-0948 HIGH

Buffer overflow in uum program for Canna input system allows local users to gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun sunos 5.7
sgi irix 6.5
turbolinux turbolinux 4.2
sgi irix 6.2
sun solaris 7.0
sgi irix 6.3
sun sunos -
sgi irix 5.3
sgi irix 6.4
sun solaris 2.6
CVE-1999-0949 HIGH

Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun sunos 5.7
sgi irix 6.5
turbolinux turbolinux 4.2
sgi irix 6.2
sun solaris 7.0
sgi irix 6.3
sun sunos -
sgi irix 5.3
sgi irix 6.4
sun solaris 2.6
CVE-1999-1288 MEDIUM

Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
samba samba 1.9.18
caldera openlinux 1.3
turbolinux turbolinux *
caldera openlinux 1.1
caldera openlinux 1.0
caldera openlinux 1.2
redhat linux *
CVE-2000-0052 HIGH

Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux 4.2
turbolinux turbolinux 6.0.2
turbolinux turbolinux 3.5b2
turbolinux turbolinux 4.4
mandrakesoft mandrake_linux 6.0
redhat linux 6.1
redhat linux 6.0
mandrakesoft mandrake_linux 6.1
CVE-2000-0170 HIGH

Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat linux 5.0
turbolinux turbolinux 4.2
redhat linux 4.2
turbolinux turbolinux 3.5b2
turbolinux turbolinux 4.4
redhat linux 5.1
redhat linux 6.0
redhat linux 4.1
redhat linux 6.2
redhat linux 5.2
redhat linux 4.0
CVE-2000-0172 HIGH

The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
matt_kimball_and_roger_wolff mtr 0.41
turbolinux turbolinux 4.2
turbolinux turbolinux 6.0.2
turbolinux turbolinux 3.5b2
turbolinux turbolinux 4.4
matt_kimball_and_roger_wolff mtr 0.28
CVE-2000-0186 HIGH

Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux 4.2
turbolinux turbolinux 6.0.2
turbolinux turbolinux 4.4
redhat linux 6.1
redhat linux 5.1
mandrakesoft mandrake_linux 7.0
redhat linux 6.0
freebsd freebsd 3.4
redhat linux 6.2
redhat linux 5.2
mandrakesoft mandrake_linux 6.1
CVE-2000-0196 HIGH

Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux 4.2
turbolinux turbolinux 6.0.2
turbolinux turbolinux 3.5b2
turbolinux turbolinux 4.4
nmh nmh 1.0.2
redhat linux 6.1
redhat linux 6.0
redhat linux 5.2
CVE-2000-0336 LOW

Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux 4.2
turbolinux turbolinux 6.0.2
turbolinux turbolinux 4.4
openldap openldap 1.2.10
redhat linux 6.1
openldap openldap 1.2.8
mandrakesoft mandrake_linux 7.0
openldap openldap 1.2.7
redhat linux 6.2
openldap openldap 1.2.9
mandrakesoft mandrake_linux 6.1
CVE-2000-0438 HIGH

Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 4.0
suse suse_linux 4.2
slackware slackware_linux 3.4
suse suse_linux 5.0
suse suse_linux 5.1
suse suse_linux 4.4.1
suse suse_linux 6.2
slackware slackware_linux 3.9
suse suse_linux 6.3
slackware slackware_linux 3.5
suse suse_linux 7.0
slackware slackware_linux 3.3
turbolinux turbolinux 6.0
suse suse_linux 4.4
suse suse_linux 4.3
caldera openlinux 7.0
turbolinux turbolinux 6.0.1
turbolinux turbolinux 6.0.2
suse suse_linux 6.4
suse suse_linux 5.3
suse suse_linux 6.1
slackware slackware_linux 3.6
suse suse_linux 6.0
suse suse_linux 5.2
CVE-2000-0844 HIGH

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
turbolinux turbolinux 6.0.4
ibm aix 4.2
ibm aix 4.1.2
ibm aix 4.1.3
debian debian_linux 2.0
sgi irix 6.5.3m
ibm aix 4.1.1
slackware slackware_linux 7.0
conectiva linux 5.0
redhat linux 5.0
sgi irix 6.5.1
suse suse_linux 7.0
ibm aix 4.1.5
redhat linux 6.1
sgi irix 6.3
redhat linux 5.2
ibm aix 4.2.1
turbolinux turbolinux 6.0.1
ibm aix 3.2.5
ibm aix 4.3.1
sgi irix 6.5
ibm aix 4.1
suse suse_linux 6.1
turbolinux turbolinux 6.0.3
sun sunos 5.4
sgi irix 6.5.3
debian debian_linux 2.1
sun sunos 5.7
sun sunos 5.0
mandrakesoft mandrake_linux 7.1
conectiva linux 4.1
sun sunos 5.8
debian debian_linux 2.3
trustix secure_linux 1.1
caldera openlinux_ebuilder 3.0
sgi irix 6.5.6
conectiva linux 4.0es
ibm aix 3.2.4
immunix immunix 6.2
ibm aix 4.3
suse suse_linux 6.2
trustix secure_linux 1.0
redhat linux 6.0
sun sunos 5.1
suse suse_linux 6.3
sun sunos 5.2
sun sunos 5.3
conectiva linux 4.0
turbolinux turbolinux 6.0
mandrakesoft mandrake_linux 7.0
ibm aix 4.1.4
conectiva linux 4.2
turbolinux turbolinux 6.0.2
sgi irix 6.2
sgi irix 6.5.2m
slackware slackware_linux 7.1
sun sunos 5.5
ibm aix 4.0
suse suse_linux 6.4
conectiva linux 5.1
debian debian_linux 2.2
sun solaris 2.6
caldera openlinux_eserver 2.3
sun sunos 5.5.1
sgi irix 6.5.7
ibm aix 4.3.2
sgi irix 6.5.4
ibm aix 3.2
redhat linux 5.1
sgi irix 6.5.8
caldera openlinux *
redhat linux 6.2
sgi irix 6.4
sgi irix 6.5.3f
CVE-2001-0169 LOW

When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mandrakesoft mandrake_linux 6.0
mandrakesoft mandrake_linux_corporate_server 1.0.1
redhat linux 6.0
mandrakesoft mandrake_linux 6.1
mandrakesoft mandrake_linux 7.1
turbolinux turbolinux *
trustix secure_linux 1.2
mandrakesoft mandrake_linux 7.2
redhat linux 6.1
turbolinux turbolinux 6.1
mandrakesoft mandrake_linux 7.0
trustix secure_linux 1.1
redhat linux 6.2
CVE-2003-0370 HIGH

Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_server 8.0
turbolinux turbolinux_workstation 7.0
apple safari 1.0
turbolinux turbolinux_server 7.0
redhat linux 7.1
turbolinux turbolinux_workstation 8.0
kde kde *
redhat linux 7.2
kde konqueror_embedded 0.1
CVE-2003-0681 HIGH

A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
apple mac_os_x_server 10.2.4
sendmail sendmail 8.10.1
sendmail sendmail_switch 2.1.1
apple mac_os_x_server 10.2.3
sendmail sendmail 8.11.5
apple mac_os_x 10.2.3
sendmail sendmail_switch 2.2.3
sendmail sendmail_switch 2.2.2
sendmail sendmail_pro 8.9.3
hp hp-ux 11.22
turbolinux turbolinux_server 6.5
ibm aix 5.1
sendmail sendmail 8.10.2
turbolinux turbolinux_server 6.1
hp hp-ux 11.00
gentoo linux 1.2
sendmail sendmail 8.12.1
turbolinux turbolinux_workstation 7.0
apple mac_os_x 10.2.1
sendmail sendmail 8.9.2
ibm aix 4.3.3
sendmail sendmail 8.9.0
netbsd netbsd 1.5.2
apple mac_os_x 10.2.2
sendmail sendmail 8.8.8
sendmail sendmail_switch 2.2.1
sendmail sendmail 8.12.4
sendmail sendmail_switch 2.1.3
sendmail sendmail 8.11.2
sendmail sendmail_switch 2.1
turbolinux turbolinux_server 8.0
sendmail sendmail 2.6.1
apple mac_os_x 10.2
sendmail sendmail_switch 3.0.1
turbolinux turbolinux_server 7.0
sendmail advanced_message_server 1.2
sendmail sendmail 8.12.8
openbsd openbsd 3.3
turbolinux turbolinux_workstation 6.0
apple mac_os_x 10.2.4
sendmail sendmail_switch 2.2
sendmail sendmail 2.6
netbsd netbsd 1.6.1
gentoo linux 0.5
sendmail sendmail 8.9.3
sendmail sendmail 3.0.2
netbsd netbsd 1.5
hp hp-ux 11.0.4
sendmail sendmail 8.10
sendmail sendmail 8.11.1
sendmail sendmail 8.11.6
netbsd netbsd 1.4.3
sendmail sendmail 8.12.0
sendmail sendmail 8.9.1
sendmail sendmail_switch 2.2.5
apple mac_os_x_server 10.2.5
sendmail sendmail_switch 2.1.4
turbolinux turbolinux_advanced_server 6.0
ibm aix 5.2
apple mac_os_x 10.2.5
gentoo linux 1.4
apple mac_os_x 10.2.6
sendmail sendmail 3.0
apple mac_os_x_server 10.2
netbsd netbsd 1.5.1
netbsd netbsd 1.6
sendmail sendmail 8.12.5
netbsd netbsd 1.5.3
apple mac_os_x_server 10.2.6
sendmail sendmail 8.11.4
hp hp-ux 11.11
turbolinux turbolinux_workstation 8.0
apple mac_os_x_server 10.2.1
sendmail sendmail_switch 3.0.3
sendmail sendmail 3.0.1
apple mac_os_x_server 10.2.2
sendmail sendmail 8.12.3
sendmail sendmail_switch 3.0
sendmail sendmail 8.11.3
gentoo linux 0.7
openbsd openbsd 3.2
sendmail sendmail 8.12
sendmail sendmail_switch 2.2.4
sendmail sendmail_switch 2.1.5
sendmail sendmail 2.6.2
sendmail sendmail_switch 3.0.2
sendmail sendmail_pro 8.9.2
sendmail sendmail 8.12.2
sendmail sendmail 8.12.9
sendmail sendmail 3.0.3
sendmail sendmail 8.12.7
sendmail sendmail 8.12.6
gentoo linux 1.1a
sendmail sendmail 8.11.0
sendmail sendmail_switch 2.1.2
sendmail advanced_message_server 1.3
CVE-2003-0694 HIGH

The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
apple mac_os_x_server 10.2.4
sendmail sendmail 8.10.1
compaq tru64 4.0f
compaq tru64 5.1a_pk5_bl23
sendmail sendmail_switch 2.1.1
apple mac_os_x_server 10.2.3
sendmail sendmail 8.11.5
compaq tru64 5.1_pk3_bl17
apple mac_os_x 10.2.3
freebsd freebsd 4.9
compaq tru64 4.0f_pk7_bl18
sendmail sendmail_switch 2.2.3
compaq tru64 5.1a_pk3_bl3
freebsd freebsd 4.7
sendmail sendmail_switch 2.2.2
freebsd freebsd 4.8
sendmail sendmail_pro 8.9.3
hp hp-ux 11.22
turbolinux turbolinux_server 6.5
sun solaris 8.0
ibm aix 5.1
sendmail sendmail 8.10.2
sgi irix 6.5.19m
freebsd freebsd 5.1
compaq tru64 5.1a_pk4_bl21
turbolinux turbolinux_server 6.1
hp hp-ux 11.00
sgi irix 6.5.17m
gentoo linux 1.2
sun sunos 5.8
sendmail sendmail 8.12.1
sgi irix 6.5.18m
compaq tru64 5.1b_pk2_bl22
sun solaris 9.0
turbolinux turbolinux_workstation 7.0
compaq tru64 4.0f_pk8_bl22
apple mac_os_x 10.2.1
sgi irix 6.5.16
sendmail sendmail 8.9.2
ibm aix 4.3.3
sendmail sendmail 8.9.0
netbsd netbsd 1.5.2
apple mac_os_x 10.2.2
compaq tru64 5.1_pk4_bl18
compaq tru64 5.1b_pk1_bl1
freebsd freebsd 5.0
sgi irix 6.5.20f
sun solaris 7.0
sendmail sendmail 8.8.8
sendmail sendmail_switch 2.2.1
freebsd freebsd 4.3
sendmail sendmail 8.12.4
sendmail sendmail_switch 2.1.3
sendmail sendmail 8.11.2
sendmail sendmail_switch 2.1
sun solaris 2.6
turbolinux turbolinux_server 8.0
sendmail sendmail 2.6.1
apple mac_os_x 10.2
sendmail sendmail_switch 3.0.1
compaq tru64 4.0g_pk3_bl17
compaq tru64 5.1a_pk1_bl1
turbolinux turbolinux_server 7.0
sendmail advanced_message_server 1.2
sendmail sendmail 8.12.8
turbolinux turbolinux_workstation 6.0
freebsd freebsd 4.0
apple mac_os_x 10.2.4
freebsd freebsd 3.0
sendmail sendmail_switch 2.2
sgi irix 6.5.17f
sendmail sendmail 2.6
netbsd netbsd 1.6.1
compaq tru64 5.1_pk5_bl19
compaq tru64 5.1a_pk2_bl2
gentoo linux 0.5
sgi irix 6.5.18f
sgi irix 6.5.20m
sendmail sendmail 8.9.3
compaq tru64 4.0f_pk6_bl17
sendmail sendmail 3.0.2
netbsd netbsd 1.5
sgi irix 6.5.21m
hp hp-ux 11.0.4
sendmail sendmail 8.10
sendmail sendmail 8.11.1
sendmail sendmail 8.11.6
netbsd netbsd 1.4.3
sendmail sendmail 8.12.0
sendmail sendmail 8.9.1
sendmail sendmail_switch 2.2.5
apple mac_os_x_server 10.2.5
sgi irix 6.5.21f
sendmail sendmail_switch 2.1.4
turbolinux turbolinux_advanced_server 6.0
ibm aix 5.2
apple mac_os_x 10.2.5
freebsd freebsd 4.4
freebsd freebsd 4.6
sun sunos -
gentoo linux 1.4
apple mac_os_x 10.2.6
sendmail sendmail 3.0
apple mac_os_x_server 10.2
netbsd netbsd 1.5.1
sun sunos 5.7
netbsd netbsd 1.6
sendmail sendmail 8.12.5
netbsd netbsd 1.5.3
compaq tru64 5.1b
apple mac_os_x_server 10.2.6
sendmail sendmail 8.11.4
compaq tru64 4.0g_pk4_bl22
hp hp-ux 11.11
turbolinux turbolinux_workstation 8.0
apple mac_os_x_server 10.2.1
sendmail sendmail_switch 3.0.3
sendmail sendmail 3.0.1
apple mac_os_x_server 10.2.2
compaq tru64 5.1
sgi irix 6.5.19f
sendmail sendmail 8.12.3
sendmail sendmail_switch 3.0
sendmail sendmail 8.11.3
gentoo linux 0.7
compaq tru64 4.0g
sendmail sendmail 8.12
sendmail sendmail_switch 2.2.4
sgi irix 6.5.15
sendmail sendmail_switch 2.1.5
compaq tru64 5.1a
sendmail sendmail 2.6.2
sendmail sendmail_switch 3.0.2
sendmail sendmail_pro 8.9.2
sendmail sendmail 8.12.2
sendmail sendmail 8.12.9
sendmail sendmail 3.0.3
sendmail sendmail 8.12.7
freebsd freebsd 4.5
sendmail sendmail 8.12.6
compaq tru64 5.1_pk6_bl20
gentoo linux 1.1a
sendmail sendmail 8.11.0
sendmail sendmail_switch 2.1.2
sendmail advanced_message_server 1.3
CVE-2004-0802 MEDIUM

Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
enlightenment imlib 1.9.1
enlightenment imlib2 1.0.2
enlightenment imlib2 1.1.1
imagemagick imagemagick 5.5.3.2.1.2.0
enlightenment imlib 1.9.11
enlightenment imlib 1.9.5
enlightenment imlib2 1.0.5
enlightenment imlib2 1.0.1
suse suse_linux 9.0
imagemagick imagemagick 5.4.7
redhat fedora_core core_2.0
enlightenment imlib2 1.1
suse suse_linux 8.2
enlightenment imlib 1.9.10
mandrakesoft mandrake_linux 10.0
enlightenment imlib2 1.0.3
suse suse_linux 8.1
imagemagick imagemagick 5.4.8.2.1.1.0
ubuntu ubuntu_linux 4.1
sun java_desktop_system 2003
imagemagick imagemagick 5.5.7
redhat enterprise_linux_desktop 3.0
imagemagick imagemagick 5.4.4.5
imagemagick imagemagick 5.5.6.0_2003-04-09
conectiva linux 10.0
turbolinux turbolinux_workstation 7.0
enlightenment imlib 1.9
imagemagick imagemagick 5.4.8
turbolinux turbolinux_workstation 8.0
enlightenment imlib2 1.0.4
enlightenment imlib 1.9.2
enlightenment imlib 1.9.12
suse suse_linux 8.0
imagemagick imagemagick 6.0.2
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
enlightenment imlib2 1.0
imagemagick imagemagick 5.3.3
mandrakesoft mandrake_linux_corporate_server 2.1
imagemagick imagemagick 5.4.3
enlightenment imlib 1.9.9
redhat fedora_core core_1.0
suse suse_linux 9.2
enlightenment imlib 1.9.3
sun java_desktop_system 2.0
enlightenment imlib 1.9.14
suse suse_linux 9.1
enlightenment imlib 1.9.8
enlightenment imlib 1.9.4
enlightenment imlib 1.9.6
mandrakesoft mandrake_linux 9.2
turbolinux turbolinux_server 8.0
turbolinux turbolinux_server 7.0
conectiva linux 9.0
turbolinux turbolinux_desktop 10.0
enlightenment imlib 1.9.13
enlightenment imlib 1.9.7
CVE-2004-0809 MEDIUM

The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
hp hp-ux 11.11
hp secure_web_server_for_tru64 5.1_a
hp secure_web_server_for_tru64 5.0_a
redhat enterprise_linux 3.0
hp secure_web_server_for_tru64 6.3.0
hp secure_web_server_for_tru64 5.1
hp hp-ux 11.23
hp secure_web_server_for_tru64 5.9.2
hp hp-ux 11.22
trustix secure_linux 2.0
mandrakesoft mandrake_linux 10.0
trustix secure_linux 2.1
turbolinux turbolinux_home *
apache http_server *
hp secure_web_server_for_tru64 5.8.2
debian debian_linux 3.0
gentoo linux 1.4
mandrakesoft mandrake_linux 9.2
hp hp-ux 11.00
hp secure_web_server_for_tru64 5.8.1
redhat enterprise_linux_desktop 3.0
hp secure_web_server_for_tru64 4.0_f
hp secure_web_server_for_tru64 5.9.1
turbolinux turbolinux_server 10.0
turbolinux turbolinux_desktop 10.0
hp secure_web_server_for_tru64 4.0_g
CVE-2004-0817 HIGH

Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
enlightenment imlib 1.9.1
enlightenment imlib2 1.0.2
enlightenment imlib2 1.1.1
imagemagick imagemagick 5.5.3.2.1.2.0
enlightenment imlib 1.9.11
enlightenment imlib 1.9.5
enlightenment imlib2 1.0.5
enlightenment imlib2 1.0.1
suse suse_linux 9.0
imagemagick imagemagick 5.4.7
redhat fedora_core core_2.0
enlightenment imlib2 1.1
suse suse_linux 8.2
enlightenment imlib 1.9.10
mandrakesoft mandrake_linux 10.0
enlightenment imlib2 1.0.3
suse suse_linux 8.1
imagemagick imagemagick 5.4.8.2.1.1.0
ubuntu ubuntu_linux 4.1
sun java_desktop_system 2003
imagemagick imagemagick 5.5.7
redhat enterprise_linux_desktop 3.0
imagemagick imagemagick 5.4.4.5
imagemagick imagemagick 5.5.6.0_2003-04-09
conectiva linux 10.0
turbolinux turbolinux_workstation 7.0
enlightenment imlib 1.9
imagemagick imagemagick 5.4.8
turbolinux turbolinux_workstation 8.0
enlightenment imlib2 1.0.4
enlightenment imlib 1.9.2
enlightenment imlib 1.9.12
suse suse_linux 8.0
imagemagick imagemagick 6.0.2
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
enlightenment imlib2 1.0
imagemagick imagemagick 5.3.3
mandrakesoft mandrake_linux_corporate_server 2.1
imagemagick imagemagick 5.4.3
enlightenment imlib 1.9.9
redhat fedora_core core_1.0
suse suse_linux 9.2
enlightenment imlib 1.9.3
sun java_desktop_system 2.0
enlightenment imlib 1.9.14
suse suse_linux 9.1
enlightenment imlib 1.9.8
enlightenment imlib 1.9.4
enlightenment imlib 1.9.6
mandrakesoft mandrake_linux 9.2
turbolinux turbolinux_server 8.0
turbolinux turbolinux_server 7.0
conectiva linux 9.0
turbolinux turbolinux_desktop 10.0
enlightenment imlib 1.9.13
enlightenment imlib 1.9.7
CVE-2004-0827 HIGH

Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
enlightenment imlib 1.9.1
enlightenment imlib2 1.0.2
enlightenment imlib2 1.1.1
imagemagick imagemagick 5.5.3.2.1.2.0
enlightenment imlib 1.9.11
enlightenment imlib 1.9.5
enlightenment imlib2 1.0.5
enlightenment imlib2 1.0.1
suse suse_linux 9.0
imagemagick imagemagick 5.4.7
turbolinux turbolinux server_7.0
redhat fedora_core core_2.0
enlightenment imlib2 1.1
suse suse_linux 8.2
enlightenment imlib 1.9.10
turbolinux turbolinux desktop_10.0
mandrakesoft mandrake_linux 10.0
turbolinux turbolinux workstation_8.0
enlightenment imlib2 1.0.3
suse suse_linux 8.1
imagemagick imagemagick 5.4.8.2.1.1.0
ubuntu ubuntu_linux 4.1
sun java_desktop_system 2003
imagemagick imagemagick 5.5.7
redhat enterprise_linux_desktop 3.0
imagemagick imagemagick 5.4.4.5
imagemagick imagemagick 5.5.6.0_2003-04-09
conectiva linux 10.0
enlightenment imlib 1.9
imagemagick imagemagick 5.4.8
enlightenment imlib2 1.0.4
turbolinux turbolinux workstation_7.0
enlightenment imlib 1.9.2
enlightenment imlib 1.9.12
suse suse_linux 8.0
imagemagick imagemagick 6.0.2
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
turbolinux turbolinux server_8.0
redhat enterprise_linux 2.1
enlightenment imlib2 1.0
imagemagick imagemagick 5.3.3
mandrakesoft mandrake_linux_corporate_server 2.1
imagemagick imagemagick 5.4.3
enlightenment imlib 1.9.9
redhat fedora_core core_1.0
suse suse_linux 9.2
enlightenment imlib 1.9.3
sun java_desktop_system 2.0
enlightenment imlib 1.9.14
suse suse_linux 9.1
enlightenment imlib 1.9.8
enlightenment imlib 1.9.4
enlightenment imlib 1.9.6
mandrakesoft mandrake_linux 9.2
conectiva linux 9.0
enlightenment imlib 1.9.13
enlightenment imlib 1.9.7
CVE-2004-1004 HIGH

Multiple format string vulnerabilities in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1005 HIGH

Multiple buffer overflows in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1009 MEDIUM

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1070 HIGH

The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly check return values from calls to the kernel_read function, which may allow local users to modify sensitive memory in a setuid program and execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
suse suse_linux 8
linux linux_kernel 2.4.15
linux linux_kernel 2.6.2
trustix secure_linux 2.2
linux linux_kernel 2.4.13
linux linux_kernel 2.4.3
trustix secure_linux 1.5
linux linux_kernel 2.4.7
linux linux_kernel 2.4.18
suse suse_linux 9.0
linux linux_kernel 2.4.19
linux linux_kernel 2.4.4
linux linux_kernel 2.4.23_ow2
redhat fedora_core core_2.0
suse suse_linux 8.2
linux linux_kernel 2.6.8
trustix secure_linux 2.0
linux linux_kernel 2.4.11
suse suse_linux 8.1
linux linux_kernel 2.4.24
linux linux_kernel 2.6.9
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 10.0
suse suse_linux 1.0
linux linux_kernel 2.4.1
linux linux_kernel 2.4.10
linux linux_kernel 2.4.22
linux linux_kernel 2.4.20
linux linux_kernel 2.4.17
linux linux_kernel 2.6.4
linux linux_kernel 2.4.9
linux linux_kernel 2.4.6
linux linux_kernel 2.6.5
linux linux_kernel 2.4.8
linux linux_kernel 2.6_test9_cvs
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
linux linux_kernel 2.4.5
linux linux_kernel 2.4.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
linux linux_kernel 2.4.24_ow1
linux linux_kernel 2.4.12
linux linux_kernel 2.6.1
suse suse_linux 9.2
linux linux_kernel 2.4.14
trustix secure_linux 2.1
suse suse_linux 9.1
linux linux_kernel 2.4.2
linux linux_kernel 2.6.3
linux linux_kernel 2.4.25
linux linux_kernel 2.6.6
linux linux_kernel 2.4.27
linux linux_kernel 2.6.7
linux linux_kernel 2.4.21
linux linux_kernel 2.4.23
linux linux_kernel 2.6.0
linux linux_kernel 2.4.16
linux linux_kernel 2.4.26
CVE-2004-1071 HIGH

The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed call to the mmap function, which causes an incorrect mapped image and may allow local users to execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
suse suse_linux 8
linux linux_kernel 2.4.15
linux linux_kernel 2.6.2
trustix secure_linux 2.2
linux linux_kernel 2.4.13
linux linux_kernel 2.4.3
trustix secure_linux 1.5
linux linux_kernel 2.4.7
linux linux_kernel 2.4.18
suse suse_linux 9.0
linux linux_kernel 2.4.19
linux linux_kernel 2.4.4
linux linux_kernel 2.4.23_ow2
redhat fedora_core core_2.0
suse suse_linux 8.2
linux linux_kernel 2.6.8
trustix secure_linux 2.0
linux linux_kernel 2.4.11
suse suse_linux 8.1
linux linux_kernel 2.4.24
linux linux_kernel 2.6.9
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 10.0
suse suse_linux 1.0
linux linux_kernel 2.4.1
linux linux_kernel 2.4.10
linux linux_kernel 2.4.22
linux linux_kernel 2.4.20
linux linux_kernel 2.4.17
linux linux_kernel 2.6.4
linux linux_kernel 2.4.9
linux linux_kernel 2.4.6
linux linux_kernel 2.6.5
linux linux_kernel 2.4.8
linux linux_kernel 2.6_test9_cvs
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
linux linux_kernel 2.4.5
linux linux_kernel 2.4.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
linux linux_kernel 2.4.24_ow1
linux linux_kernel 2.4.12
linux linux_kernel 2.6.1
suse suse_linux 9.2
linux linux_kernel 2.4.14
trustix secure_linux 2.1
suse suse_linux 9.1
linux linux_kernel 2.4.2
linux linux_kernel 2.6.3
linux linux_kernel 2.4.25
linux linux_kernel 2.6.6
linux linux_kernel 2.4.27
linux linux_kernel 2.6.7
linux linux_kernel 2.4.21
linux linux_kernel 2.4.23
linux linux_kernel 2.6.0
linux linux_kernel 2.4.16
linux linux_kernel 2.4.26
CVE-2004-1072 HIGH

The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer overflows that allow local users to cause a denial of service (hang) and possibly execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
suse suse_linux 8
linux linux_kernel 2.4.15
linux linux_kernel 2.6.2
trustix secure_linux 2.2
linux linux_kernel 2.4.13
linux linux_kernel 2.4.3
trustix secure_linux 1.5
linux linux_kernel 2.4.7
linux linux_kernel 2.4.18
suse suse_linux 9.0
linux linux_kernel 2.4.19
linux linux_kernel 2.4.4
linux linux_kernel 2.4.23_ow2
redhat fedora_core core_2.0
suse suse_linux 8.2
linux linux_kernel 2.6.8
trustix secure_linux 2.0
linux linux_kernel 2.4.11
suse suse_linux 8.1
linux linux_kernel 2.4.24
linux linux_kernel 2.6.9
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 10.0
suse suse_linux 1.0
linux linux_kernel 2.4.1
linux linux_kernel 2.4.10
linux linux_kernel 2.4.22
linux linux_kernel 2.4.20
linux linux_kernel 2.4.17
linux linux_kernel 2.6.4
linux linux_kernel 2.4.9
linux linux_kernel 2.4.6
linux linux_kernel 2.6.5
linux linux_kernel 2.4.8
linux linux_kernel 2.6_test9_cvs
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
linux linux_kernel 2.4.5
linux linux_kernel 2.4.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
linux linux_kernel 2.4.24_ow1
linux linux_kernel 2.4.12
linux linux_kernel 2.6.1
suse suse_linux 9.2
linux linux_kernel 2.4.14
trustix secure_linux 2.1
suse suse_linux 9.1
linux linux_kernel 2.4.2
linux linux_kernel 2.6.3
linux linux_kernel 2.4.25
linux linux_kernel 2.6.6
linux linux_kernel 2.4.27
linux linux_kernel 2.6.7
linux linux_kernel 2.4.21
linux linux_kernel 2.4.23
linux linux_kernel 2.6.0
linux linux_kernel 2.4.16
linux linux_kernel 2.4.26
CVE-2004-1073 LOW

The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
suse suse_linux 8
linux linux_kernel 2.4.15
linux linux_kernel 2.6.2
trustix secure_linux 2.2
linux linux_kernel 2.4.13
linux linux_kernel 2.4.3
trustix secure_linux 1.5
linux linux_kernel 2.4.7
linux linux_kernel 2.4.18
suse suse_linux 9.0
linux linux_kernel 2.4.19
linux linux_kernel 2.4.4
linux linux_kernel 2.4.23_ow2
redhat fedora_core core_2.0
suse suse_linux 8.2
linux linux_kernel 2.6.8
trustix secure_linux 2.0
linux linux_kernel 2.4.11
suse suse_linux 8.1
linux linux_kernel 2.4.24
linux linux_kernel 2.6.9
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 10.0
suse suse_linux 1.0
linux linux_kernel 2.4.1
linux linux_kernel 2.4.10
linux linux_kernel 2.4.22
linux linux_kernel 2.4.20
linux linux_kernel 2.4.17
linux linux_kernel 2.6.4
linux linux_kernel 2.4.9
linux linux_kernel 2.4.6
linux linux_kernel 2.6.5
linux linux_kernel 2.4.8
linux linux_kernel 2.6_test9_cvs
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
linux linux_kernel 2.4.5
linux linux_kernel 2.4.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
linux linux_kernel 2.4.24_ow1
linux linux_kernel 2.4.12
linux linux_kernel 2.6.1
suse suse_linux 9.2
linux linux_kernel 2.4.14
trustix secure_linux 2.1
suse suse_linux 9.1
linux linux_kernel 2.4.2
linux linux_kernel 2.6.3
linux linux_kernel 2.4.25
linux linux_kernel 2.6.6
linux linux_kernel 2.4.27
linux linux_kernel 2.6.7
linux linux_kernel 2.4.21
linux linux_kernel 2.4.23
linux linux_kernel 2.6.0
linux linux_kernel 2.4.16
linux linux_kernel 2.4.26
CVE-2004-1090 MEDIUM

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1091 MEDIUM

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1092 MEDIUM

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1093 MEDIUM

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1174 MEDIUM

direntry.c in Midnight Commander (mc) 4.5.55 and earlier allows attackers to cause a denial of service by "manipulating non-existing file handles."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1175 HIGH

fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1176 HIGH

Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
midnight_commander midnight_commander 4.5.54
midnight_commander midnight_commander 4.5.47
turbolinux turbolinux_workstation 8.0
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.48
suse suse_linux 8.0
midnight_commander midnight_commander 4.5.51
redhat linux_advanced_workstation 2.1
midnight_commander midnight_commander 4.5.43
redhat enterprise_linux 2.1
gentoo linux *
suse suse_linux 9.0
midnight_commander midnight_commander 4.5.45
suse suse_linux 8.2
midnight_commander midnight_commander 4.5.52
suse suse_linux 9.2
suse suse_linux 9.1
debian debian_linux 3.0
midnight_commander midnight_commander 4.5.46
suse suse_linux 8.1
midnight_commander midnight_commander 4.5.44
midnight_commander midnight_commander 4.5.40
midnight_commander midnight_commander 4.5.41
turbolinux turbolinux_server 8.0
midnight_commander midnight_commander 4.5.50
turbolinux turbolinux_server 7.0
midnight_commander midnight_commander 4.5.49
midnight_commander midnight_commander 4.6
midnight_commander midnight_commander 4.5.55
CVE-2004-1377 LOW

The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps before 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_server 8.0
turbolinux turbolinux_workstation 7.0
gnu a2ps 4.13
turbolinux turbolinux_home *
turbolinux turbolinux_server 7.0
turbolinux turbolinux_workstation 8.0
gnu a2ps 4.13b
CVE-2005-0988 LOW

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 7.0
turbolinux turbolinux_appliance_server 1.0_workgroup
freebsd freebsd 4.2
freebsd freebsd 4.6.2
gnu gzip 1.2.4a
freebsd freebsd 4.11
turbolinux turbolinux_workstation 8.0
trustix secure_linux 2.2
redhat enterprise_linux 3.0
redhat linux_advanced_workstation 2.1
freebsd freebsd 5.0
redhat enterprise_linux 2.1
gentoo linux *
gnu gzip 1.3.3
freebsd freebsd 4.9
freebsd freebsd 5.2
freebsd freebsd 5.4
freebsd freebsd 5.2.1
turbolinux turbolinux_appliance_server 1.0_hosting
freebsd freebsd 4.10
freebsd freebsd 5.3
freebsd freebsd 4.7
freebsd freebsd 4.1.1
freebsd freebsd 4.8
gnu gzip 1.2.4
trustix secure_linux 2.0
redhat enterprise_linux_desktop 4.0
freebsd freebsd 4.3
trustix secure_linux 2.1
turbolinux turbolinux_home *
freebsd freebsd 4.4
freebsd freebsd 5.1
freebsd freebsd 4.6
ubuntu ubuntu_linux 4.1
ubuntu ubuntu_linux 5.04
turbolinux turbolinux_server 8.0
freebsd freebsd 4.5
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 7.0
redhat enterprise_linux 4.0
turbolinux turbolinux_server 10.0
turbolinux turbolinux_desktop 10.0
freebsd freebsd 4.0
freebsd freebsd 4.1
CVE-2005-3624 MEDIUM

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
kde kdegraphics 3.4.3
tetex tetex 2.0.2
easy_software_products cups 1.1.22_rc1
kde koffice 1.4
trustix secure_linux 2.2
slackware slackware_linux 9.0
turbolinux turbolinux_server 10.0_x86
libextractor libextractor *
tetex tetex 3.0
suse suse_linux 9.3
poppler poppler 0.4.2
tetex tetex 2.0.1
kde koffice 1.4.1
suse suse_linux 9.0
redhat fedora_core core_2.0
mandrakesoft mandrake_linux 2006
sco openserver 5.0.7
mandrakesoft mandrake_linux 10.1
kde kpdf 3.2
slackware slackware_linux 10.1
trustix secure_linux 2.0
kde kword 1.4.2
redhat enterprise_linux_desktop 4.0
turbolinux turbolinux fuji
easy_software_products cups 1.1.22
debian debian_linux 3.0
easy_software_products cups 1.1.23
ubuntu ubuntu_linux 4.1
slackware slackware_linux 10.2
turbolinux turbolinux 10
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 10.0
suse suse_linux 1.0
conectiva linux 10.0
slackware slackware_linux 9.1
sco openserver 6.0
redhat fedora_core core_4.0
xpdf xpdf 3.0
turbolinux turbolinux_appliance_server 1.0_hosting_edition
turbolinux turbolinux_multimedia *
turbolinux turbolinux_appliance_server 1.0_workgroup_edition
easy_software_products cups 1.1.23_rc1
turbolinux turbolinux_workstation 8.0
debian debian_linux 3.1
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
gentoo linux *
mandrakesoft mandrake_linux_corporate_server 2.1
tetex tetex 2.0
mandrakesoft mandrake_linux_corporate_server 3.0
sgi propack 3.0
redhat fedora_core core_1.0
suse suse_linux 9.2
turbolinux turbolinux_personal *
ubuntu ubuntu_linux 5.10
turbolinux turbolinux_home *
suse suse_linux 9.1
kde kdegraphics 3.2
tetex tetex 1.0.7
redhat linux 7.3
trustix secure_linux 3.0
ubuntu ubuntu_linux 5.04
redhat linux 9.0
slackware slackware_linux 10.0
turbolinux turbolinux_server 8.0
redhat enterprise_linux 4.0
mandrakesoft mandrake_linux 10.2
suse suse_linux 10.0
turbolinux turbolinux_desktop 10.0
kde koffice 1.4.2
kde kpdf 3.4.3
CVE-2005-3625 HIGH

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
kde kdegraphics 3.4.3
tetex tetex 2.0.2
easy_software_products cups 1.1.22_rc1
kde koffice 1.4
trustix secure_linux 2.2
slackware slackware_linux 9.0
turbolinux turbolinux_server 10.0_x86
libextractor libextractor *
tetex tetex 3.0
suse suse_linux 9.3
poppler poppler 0.4.2
tetex tetex 2.0.1
kde koffice 1.4.1
suse suse_linux 9.0
redhat fedora_core core_2.0
mandrakesoft mandrake_linux 2006
sco openserver 5.0.7
mandrakesoft mandrake_linux 10.1
kde kpdf 3.2
slackware slackware_linux 10.1
trustix secure_linux 2.0
kde kword 1.4.2
redhat enterprise_linux_desktop 4.0
turbolinux turbolinux fuji
easy_software_products cups 1.1.22
debian debian_linux 3.0
easy_software_products cups 1.1.23
ubuntu ubuntu_linux 4.1
slackware slackware_linux 10.2
turbolinux turbolinux 10
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 10.0
suse suse_linux 1.0
conectiva linux 10.0
slackware slackware_linux 9.1
sco openserver 6.0
redhat fedora_core core_4.0
xpdf xpdf 3.0
turbolinux turbolinux_appliance_server 1.0_hosting_edition
turbolinux turbolinux_multimedia *
turbolinux turbolinux_appliance_server 1.0_workgroup_edition
easy_software_products cups 1.1.23_rc1
turbolinux turbolinux_workstation 8.0
debian debian_linux 3.1
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
gentoo linux *
mandrakesoft mandrake_linux_corporate_server 2.1
tetex tetex 2.0
mandrakesoft mandrake_linux_corporate_server 3.0
sgi propack 3.0
redhat fedora_core core_1.0
suse suse_linux 9.2
turbolinux turbolinux_personal *
ubuntu ubuntu_linux 5.10
turbolinux turbolinux_home *
suse suse_linux 9.1
kde kdegraphics 3.2
tetex tetex 1.0.7
redhat linux 7.3
trustix secure_linux 3.0
ubuntu ubuntu_linux 5.04
redhat linux 9.0
slackware slackware_linux 10.0
turbolinux turbolinux_server 8.0
redhat enterprise_linux 4.0
mandrakesoft mandrake_linux 10.2
suse suse_linux 10.0
turbolinux turbolinux_desktop 10.0
kde koffice 1.4.2
kde kpdf 3.4.3
CVE-2005-3626 MEDIUM

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
kde kdegraphics 3.4.3
tetex tetex 2.0.2
easy_software_products cups 1.1.22_rc1
kde koffice 1.4
trustix secure_linux 2.2
slackware slackware_linux 9.0
turbolinux turbolinux_server 10.0_x86
libextractor libextractor *
tetex tetex 3.0
suse suse_linux 9.3
poppler poppler 0.4.2
tetex tetex 2.0.1
kde koffice 1.4.1
suse suse_linux 9.0
redhat fedora_core core_2.0
mandrakesoft mandrake_linux 2006
sco openserver 5.0.7
mandrakesoft mandrake_linux 10.1
kde kpdf 3.2
slackware slackware_linux 10.1
trustix secure_linux 2.0
kde kword 1.4.2
redhat enterprise_linux_desktop 4.0
turbolinux turbolinux fuji
easy_software_products cups 1.1.22
debian debian_linux 3.0
easy_software_products cups 1.1.23
ubuntu ubuntu_linux 4.1
slackware slackware_linux 10.2
turbolinux turbolinux 10
redhat enterprise_linux_desktop 3.0
turbolinux turbolinux_server 10.0
suse suse_linux 1.0
conectiva linux 10.0
slackware slackware_linux 9.1
sco openserver 6.0
redhat fedora_core core_4.0
xpdf xpdf 3.0
turbolinux turbolinux_appliance_server 1.0_hosting_edition
turbolinux turbolinux_multimedia *
turbolinux turbolinux_appliance_server 1.0_workgroup_edition
easy_software_products cups 1.1.23_rc1
turbolinux turbolinux_workstation 8.0
debian debian_linux 3.1
redhat enterprise_linux 3.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
redhat enterprise_linux 2.1
gentoo linux *
mandrakesoft mandrake_linux_corporate_server 2.1
tetex tetex 2.0
mandrakesoft mandrake_linux_corporate_server 3.0
sgi propack 3.0
redhat fedora_core core_1.0
suse suse_linux 9.2
turbolinux turbolinux_personal *
ubuntu ubuntu_linux 5.10
turbolinux turbolinux_home *
suse suse_linux 9.1
kde kdegraphics 3.2
tetex tetex 1.0.7
redhat linux 7.3
trustix secure_linux 3.0
ubuntu ubuntu_linux 5.04
redhat linux 9.0
slackware slackware_linux 10.0
turbolinux turbolinux_server 8.0
redhat enterprise_linux 4.0
mandrakesoft mandrake_linux 10.2
suse suse_linux 10.0
turbolinux turbolinux_desktop 10.0
kde koffice 1.4.2
kde kpdf 3.4.3