Vulnerabilities > GNU > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-09-04 | CVE-2008-3916 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in GNU ED Heap-based buffer overflow in the strip_escapes function in signal.c in GNU ed before 1.0 allows context-dependent or user-assisted attackers to execute arbitrary code via a long filename. | 9.3 |
| 2007-12-07 | CVE-2007-6109 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in GNU Emacs Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function, as demonstrated via a certain "emacs -batch -eval" command line. | 10.0 |
| 2007-05-04 | CVE-2007-2500 | Remote Code Execution vulnerability in GNU Flash Player 0.7.2 server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow. | 10.0 |
| 2006-12-07 | CVE-2006-6235 | A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from deallocated stack memory. | 10.0 |
| 2006-11-28 | CVE-2006-4181 | Remote Format String vulnerability in GNU Radius SQLLog Format string vulnerability in the sqllog function in the SQL accounting code for radiusd in GNU Radius 1.2 and 1.3 allows remote attackers to execute arbitrary code via unknown vectors. | 10.0 |
| 2005-01-10 | CVE-2004-1170 | a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename. | 10.0 |
| 2004-12-06 | CVE-2004-0603 | Unspecified vulnerability in GNU Gzip gzexe in gzip 1.3.3 and earlier will execute an argument when the creation of a temp file fails instead of exiting the program, which could allow remote attackers or local users to execute arbitrary commands, a different vulnerability than CVE-1999-1332. | 10.0 |
| 2004-12-06 | CVE-2004-0623 | Unspecified vulnerability in GNU Gnats Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog. | 10.0 |
| 2004-11-23 | CVE-2004-0353 | Remote Buffer Overflow and Format String vulnerability in GNU Anubis Multiple buffer overflows in auth_ident() function in auth.c for GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to gain privileges via a long string. | 10.0 |
| 2004-11-23 | CVE-2004-0354 | Remote Buffer Overflow and Format String vulnerability in GNU Anubis Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to execute arbitrary code via format string specifiers in strings passed to (1) the info function in log.c, (2) the anubis_error function in errs.c, or (3) the ssl_error function in ssl.c. | 10.0 |