|
289801
|
- |
|
linux
redhat
suse
trustix
ubuntu
|
linux_kernel
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linux
secure_linux
ubuntu_linux
|
The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle the re-assembly of fragmented packets correctly, which could allow remote samba …
|
NVD-CWE-Other
|
CVE-2004-0949
|
2017-10-11 10:29 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289802
|
- |
|
hp
|
hp-ux
|
HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote…
|
NVD-CWE-Other
|
CVE-2004-0952
|
2017-10-11 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289803
|
- |
|
php
|
php
|
php_variables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via (1) GET, (2) POST, or (3) COOKIE GPC variables that end in an open bracket character, which causes PH…
|
NVD-CWE-Other
|
CVE-2004-0958
|
2017-10-11 10:29 |
2004-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289804
|
- |
|
php
|
php
|
rfc1867.c in PHP before 5.0.2 allows local users to upload files to arbitrary locations via a PHP script with a certain MIME header that causes the "$_FILES" array to be modified.
|
NVD-CWE-Other
|
CVE-2004-0959
|
2017-10-11 10:29 |
2004-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289805
|
- |
|
freeradius
redhat
|
freeradius
enterprise_linux
fedora_core
|
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (core dump) via malformed USR vendor-specific attributes (VSA) that cause a memcpy operation with a -1 argument.
|
NVD-CWE-Other
|
CVE-2004-0960
|
2017-10-11 10:29 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289806
|
- |
|
freeradius
redhat
|
freeradius
enterprise_linux
fedora_core
|
Memory leak in FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (memory exhaustion) via a series of Access-Request packets with (1) Ascend-Send-Secret, (2) Ascend-Recv-Sec…
|
NVD-CWE-Other
|
CVE-2004-0961
|
2017-10-11 10:29 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289807
|
- |
|
hp
|
hp-ux
|
stmkfont in HP-UX B.11.00 through B.11.23 relies on the user-specified PATH when executing certain commands, which allows local users to execute arbitrary code by modifying the PATH environment varia…
|
NVD-CWE-Other
|
CVE-2004-0965
|
2017-10-11 10:29 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289808
|
- |
|
aladdin_enterprises
|
ghostscript
|
The (1) pj-gs.sh, (2) ps2epsi, (3) pv.sh, and (4) sysvlp.sh scripts in the ESP Ghostscript (espgs) package in Trustix Secure Linux 1.5 through 2.1, and other operating systems, allow local users to o…
|
CWE-59
Link Following
|
CVE-2004-0967
|
2017-10-11 10:29 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289809
|
- |
|
gnu
redhat
|
glibc
enterprise_linux
enterprise_linux_desktop
|
The catchsegv script in glibc 2.3.2 and earlier allows local users to overwrite files via a symlink attack on temporary files.
|
NVD-CWE-Other
|
CVE-2004-0968
|
2017-10-11 10:29 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289810
|
- |
|
lvm
gentoo
|
logical_volume_management_utilities
linux
|
The lvmcreate_initrd script in the lvm package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary f…
|
NVD-CWE-Other
|
CVE-2004-0972
|
2017-10-11 10:29 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
