Vulnerabilities > Linux > Linux Kernel > Critical

DATE CVE VULNERABILITY TITLE RISK
2006-05-22 CVE-2006-1857 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Linux Kernel
Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed HB-ACK chunk.
network
low complexity
linux CWE-119
critical
9.0
2006-04-12 CVE-2006-1523 Unspecified vulnerability in Linux Kernel 2.6.16
The __group_complete_signal function in the RCU signal handling (signal.c) in Linux kernel 2.6.16, and possibly other versions, has unknown impact and attack vectors related to improper use of BUG_ON.
network
low complexity
linux
critical
10.0
2005-01-10 CVE-2004-1137 Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote attackers to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a counter to -1, or (2) the igmp_marksources function, which does not properly validate IGMP message parameters and performs an out-of-bounds read.
network
low complexity
linux ubuntu
critical
10.0
2004-12-31 CVE-2004-1017 Local Integer Overflow vulnerability in Linux Kernel 2.4.0
Multiple "overflows" in the io_edgeport driver for Linux kernel 2.4.x have unknown impact and unknown attack vectors.
network
low complexity
linux
critical
10.0
2003-12-31 CVE-2003-1327 Remote Stack-based Buffer Overrun vulnerability in Wu-Ftpd SockPrintf()
Buffer overflow in the SockPrintf function in wu-ftpd 2.6.2 and earlier, when compiled with MAIL_ADMIN option enabled on a system that supports very long pathnames, might allow remote anonymous users to execute arbitrary code by uploading a file with a long pathname, which triggers the overflow when wu-ftpd constructs a notification message to the administrator.
network
linux washington-university
critical
9.3
2000-06-01 CVE-1999-0590 A system does not present an appropriate legal message or warning to a user who is accessing it.
network
low complexity
microsoft linux apple
critical
10.0
1999-01-28 CVE-1999-0461 Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.
network
low complexity
sgi linux
critical
10.0
1997-03-01 CVE-1999-0165 NFS cache poisoning.
network
low complexity
sun bsdi linux
critical
10.0