Vulnerabilities > Gnome > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-08-12 | CVE-2005-2550 | Format String vulnerability in GNOME Evolution Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab. | 7.5 |
| 2005-08-12 | CVE-2005-2549 | Format String vulnerability in GNOME Evolution Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers. | 7.5 |
| 2005-08-01 | CVE-2005-2410 | Unspecified vulnerability in Gnome Networkmanager 0.1/0.3.1/0.4 Format string vulnerability in the nm_info_handler function in Network Manager may allow remote attackers to execute arbitrary code via format string specifiers in a Wireless Access Point identifier, which is not properly handled in a syslog call. | 7.5 |
| 2005-05-02 | CVE-2005-0891 | Double Free vulnerability in Gnome GTK Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image. | 7.5 |
| 2005-04-27 | CVE-2005-0206 | Integer Overflow vulnerability in Xpdf PDFTOPS The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities. | 7.5 |
| 2003-03-31 | CVE-2003-0080 | Unspecified vulnerability in Gnome Gnome-Lokkit 0.5021 The iptables ruleset in Gnome-lokkit in Red Hat Linux 8.0 does not include any rules in the FORWARD chain, which could allow attackers to bypass intended access restrictions if packet forwarding is enabled. | 7.5 |
| 2001-11-28 | CVE-2001-0928 | Remote Buffer Overflow vulnerability in GNOME libgtop_daemon Buffer overflow in the permitted function of GNOME gtop daemon (libgtop_daemon) in libgtop 1.0.13 and earlier may allow remote attackers to execute arbitrary code via long authentication data. | 7.5 |
| 2001-11-27 | CVE-2001-0927 | Unspecified vulnerability in Gnome Libgtop Daemon Format string vulnerability in the permitted function of GNOME libgtop_daemon in libgtop 1.0.12 and earlier allows remote attackers to execute arbitrary code via an argument that contains format specifiers that are passed into the (1) syslog_message and (2) syslog_io_message functions. | 7.5 |
| 2000-12-19 | CVE-2000-0948 | Unspecified vulnerability in Gnome Gnorpm GnoRPM before 0.95 allows local users to modify arbitrary files via a symlink attack. | 7.2 |
| 1999-09-23 | CVE-1999-1477 | Local Buffer Overflow vulnerability in GNOME espeaker Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker argument in programs such as nethack. | 7.2 |