Vulnerabilities > GNU
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-1772 | Buffer Overflow vulnerability in GNU Sharutils 4.2/4.2.1 Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument. | 4.6 |
2004-12-31 | CVE-2004-1485 | Remote Buffer Overflow vulnerability in InetUtils TFTP Client Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via a large DNS response that is handled by the gethostbyname function. | 7.5 |
2004-12-31 | CVE-2004-1453 | Local Information Disclosure vulnerability in GNU GLibC LD_DEBUG GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use of LD_DEBUG for a setuid program, which allows local users to gain sensitive information, such as the list of symbols used by the program. | 2.1 |
2004-12-31 | CVE-2004-1382 | Local Security vulnerability in glibc The glibcbug script in glibc 2.3.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CVE-2004-0968. | 2.1 |
2004-12-31 | CVE-2004-1296 | Local Security vulnerability in groff The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files. | 2.1 |
2004-12-31 | CVE-2004-1186 | Multiple vulnerability in GNU Enscript 1.6.3 Multiple buffer overflows in enscript 1.6.3 allow remote attackers or local users to cause a denial of service (application crash). | 5.0 |
2004-12-31 | CVE-2004-1143 | Unspecified vulnerability in GNU Mailman The password generation in mailman before 2.1.5 generates only 5 million unique passwords, which makes it easier for remote attackers to guess passwords via a brute force attack. | 7.5 |
2004-12-31 | CVE-2004-0984 | Local Security vulnerability in GNU Mailutils 0.5/0.6 Unknown vulnerability in the dotlock implementation in mailutils before 1:0.5-4 on Debian GNU/Linux allows attackers to gain privileges. | 7.2 |
2004-12-31 | CVE-2004-0555 | Unspecified vulnerability in GNU Queue Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 may allow remote attackers to execute arbitrary code. | 7.5 |
2004-12-27 | CVE-2004-1377 | The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps before 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files. | 2.1 |