|
347421
|
- |
|
yukihiro_matsumoto gentoo mandrakesoft ubuntu
|
ruby linux mandrake_linux mandrake_linux_corporate_server ubuntu_linux
|
The CGI module in Ruby 1.6 before 1.6.8, and 1.8 before 1.8.2, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a certain HTTP request.
|
NVD-CWE-Other
|
CVE-2004-0983
|
2018-10-4 06:29 |
2005-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347422
|
- |
|
info-zip
|
zip
|
Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname.
|
NVD-CWE-Other
|
CVE-2004-1010
|
2018-10-4 06:29 |
2005-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347423
|
- |
|
linux ubuntu
|
linux_kernel ubuntu_linux
|
Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline.
|
NVD-CWE-Other
|
CVE-2004-1058
|
2018-10-4 06:29 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347424
|
- |
|
easy_software_products xpdf kde
|
cups xpdf kde
|
Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers t…
|
CWE-20
Improper Input Validation
|
CVE-2004-1125
|
2018-10-4 06:29 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347425
|
- |
|
easy_software_products redhat
|
cups fedora_core
|
Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2004-1267
|
2018-10-4 06:29 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347426
|
- |
|
easy_software_products redhat
|
cups fedora_core
|
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
|
NVD-CWE-Other
|
CVE-2004-1268
|
2018-10-4 06:29 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347427
|
- |
|
easy_software_products redhat
|
cups fedora_core
|
lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.
|
NVD-CWE-Other
|
CVE-2004-1269
|
2018-10-4 06:29 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347428
|
- |
|
easy_software_products redhat
|
cups fedora_core
|
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STD…
|
NVD-CWE-Other
|
CVE-2004-1270
|
2018-10-4 06:29 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347429
|
- |
|
apache
|
http_server
|
The check_forensic script in apache-utils package 1.3.31 allows local users to overwrite or create arbitrary files via a symlink attack on temporary files.
|
NVD-CWE-Other
|
CVE-2004-1387
|
2018-10-4 06:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347430
|
- |
|
gnu
|
wget
|
wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite certain files via a redirection URL containing a ".." that resolves to the IP address of the malicious server, which bypasses wg…
|
NVD-CWE-Other
|
CVE-2004-1487
|
2018-10-4 06:29 |
2005-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|