Vulnerabilities > GNU
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-03-04 | CVE-2001-1376 | Buffer Overflow vulnerability in Multiple Vendor RADIUS Digest Calculation Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data. network low complexity ascend freeradius gnu icradius livingston lucent miquel-van-smoorenburg-cistron openradius radiusclient xtradius yard-radius yard-radius-project | 7.5 |
2002-02-27 | CVE-2002-0003 | Buffer Overflow vulnerability in Groff Pre-Processor Buffer overflow in the preprocessor in groff 1.16 and earlier allows remote attackers to gain privileges via lpd in the LPRng printing system. | 7.5 |
2002-01-31 | CVE-2002-0044 | GNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript user via a symlink attack on temporary files. | 3.6 |
2001-12-21 | CVE-2001-0884 | Cross-Site Scripting vulnerability in GNU Mailman Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users. | 5.1 |
2001-11-18 | CVE-2001-1228 | Buffer Overflow vulnerability in GNU Gzip 1.2.4/1.2.4A/1.3 Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server. | 7.5 |
2001-09-05 | CVE-2001-1132 | Unspecified vulnerability in GNU Mailman Mailman 2.0.x before 2.0.6 allows remote attackers to gain access to list administrative pages when there is an empty site or list password, which is not properly handled during the call to the crypt function during authentication. | 7.5 |
2001-08-31 | CVE-2001-1036 | GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory. | 7.2 |
2001-08-14 | CVE-2001-0522 | Unspecified vulnerability in GNU Privacy Guard 7.1/7.2/8.0 Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an attacker to gain privileges via format strings in the original filename that is stored in an encrypted file. | 7.5 |
2001-08-07 | CVE-2001-1301 | Local Security vulnerability in Xemacs rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file. | 1.2 |
2001-07-26 | CVE-2001-1022 | Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command. | 7.5 |