Vulnerabilities > GNU > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-08-09 | CVE-2004-1701 | Remote Heap Based Buffer Overrun vulnerability in GNU CFEngine AuthenticationDialogue Heap-based buffer overflow in the AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 allows remote attackers to execute arbitrary code via a long SAUTH command during RSA authentication. | 10.0 |
| 2003-12-15 | CVE-2003-0972 | Unspecified vulnerability in GNU Screen Integer signedness error in ansi.c for GNU screen 4.0.1 and earlier, and 3.9.15 and earlier, allows local users to execute arbitrary code via a large number of ";" (semicolon) characters in escape sequences, which leads to a buffer overflow. | 10.0 |
| 2003-05-27 | CVE-2003-0255 | Unspecified vulnerability in GNU Privacy Guard The key validation code in GnuPG before 1.2.2 does not properly determine the validity of keys with multiple user IDs and assigns the greatest validity of the most valid user ID, which prevents GnuPG from warning the encrypting user when a user ID does not have a trusted path. | 10.0 |
| 2000-12-19 | CVE-2000-0803 | Unspecified vulnerability in GNU Groff GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff. | 10.0 |
| 2000-12-19 | CVE-2000-0947 | Unspecified vulnerability in GNU Cfengine 1.5/1.5.34/1.6 Format string vulnerability in cfd daemon in GNU CFEngine before 1.6.0a11 allows attackers to execute arbitrary commands via format characters in the CAUTH command. | 10.0 |