Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0119 | Local Security vulnerability in Helvis helvis 1.8h2_1 and earlier allows local users to recover and read the files of other users via the elvrec setuid program. | 2.1 |
| 2005-05-02 | CVE-2005-0118 | Local Security vulnerability in Helvis helvis 1.8h2_1 and earlier stores recovery files in world readable directories with world readable permissions, which allows local users to read the recovered files of other users. | 2.1 |
| 2005-05-02 | CVE-2005-0091 | Multiple vulnerability in Red Hat Enterprise Linux Kernel Unknown vulnerability in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split patch, when using the hugemem kernel, allows local users to read and write to arbitrary kernel memory and gain privileges via certain syscalls. | 7.2 |
| 2005-05-02 | CVE-2005-0090 | Multiple vulnerability in Red Hat Enterprise Linux Kernel A regression error in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split patch omits an "access check," which allows local users to cause a denial of service (crash). | 2.1 |
| 2005-05-02 | CVE-2005-0088 | Information Disclosure vulnerability in Apache mod_python Module Publisher Handler The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL. | 7.5 |
| 2005-05-02 | CVE-2005-0086 | Unspecified vulnerability in Redhat Enterprise Linux and Enterprise Linux Desktop Heap-based buffer overflow in less in Red Hat Enterprise Linux 3 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted file, as demonstrated using the UTF-8 locale. | 7.5 |
| 2005-05-02 | CVE-2005-0083 | Unspecified vulnerability in Mysql Maxdb 7.5.00 MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote attackers to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_String::ReallocString, (2) DBMCli_String::operator, (3) DBMCli_Buffer::ForceResize, (4) DBMCli_Wizard::InstallDatabase, (5) DBMCli_Devspaces::Complete, (6) DBMWeb_TemplateWizard::askForWriteCountStep5, or (7) DBMWeb_DBMWeb::wizardDB functions, which triggers a null dereference. | 5.0 |
| 2005-05-02 | CVE-2005-0080 | Remote Security vulnerability in Ubuntu Linux The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 displays a different error message depending on whether the e-mail address is subscribed to a private list, which allows remote attackers to determine the list membership for a given e-mail address. | 5.0 |
| 2005-05-02 | CVE-2005-0079 | Local Buffer Overflow vulnerability in Xtrlock 2.0 Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service (application crash) and hijack the desktop session. | 4.6 |
| 2005-05-02 | CVE-2005-0078 | The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session. | 4.6 |