Vulnerabilities > Linux > Linux Kernel > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-09-15 | CVE-2010-3009 | Information Disclosure Vulnerability in HP System Management Homepage 6.0/6.1 Unspecified vulnerability in HP System Management Homepage (SMH) for Linux 6.0 and 6.1 allows remote authenticated users to obtain sensitive information and gain root privileges via unknown vectors. | 9.0 |
2010-08-11 | CVE-2010-2217 | Code Injection vulnerability in Adobe Flash Media Server and Flash Media Server 2 Adobe Flash Media Server (FMS) before 3.0.6, and 3.5.x before 3.5.4, allows attackers to execute arbitrary code via unspecified vectors, related to a "JS method vulnerability." | 10.0 |
2010-06-15 | CVE-2010-2298 | Improper Input Validation vulnerability in Google Chrome browser/renderer_host/database_dispatcher_host.cc in Google Chrome before 5.0.375.70 on Linux does not properly handle ViewHostMsg_DatabaseOpenFile messages in chroot-based sandboxing, which allows remote attackers to bypass intended sandbox restrictions via vectors involving fchdir and chdir calls. | 10.0 |
2010-01-12 | CVE-2009-4538 | Remote Security Bypass vulnerability in Linux Kernel drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537. | 10.0 |
2008-12-18 | CVE-2008-5499 | Code Injection vulnerability in Adobe Flash Player FOR Linux Unspecified vulnerability in Adobe Flash Player for Linux 10.0.12.36, and 9.0.151.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file. | 9.3 |
2008-08-06 | CVE-2008-3496 | Classic Buffer Overflow vulnerability in Linux Kernel Buffer overflow in format descriptor parsing in the uvc_parse_format function in drivers/media/video/uvc/uvc_driver.c in uvcvideo in the video4linux (V4L) implementation in the Linux kernel before 2.6.26.1 has unknown impact and attack vectors. | 10.0 |
2007-11-20 | CVE-2007-6053 | Resource Management Errors vulnerability in IBM DB2 Universal Database IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendor description of this issue is too vague to be certain that it is security-related. | 9.3 |
2007-11-20 | CVE-2007-6051 | Permissions, Privileges, and Access Controls vulnerability in IBM DB2 Universal Database IBM DB2 UDB 9.1 before Fixpak 4 assigns incorrect privileges to the (1) DB2ADMNS and (2) DB2USERS alternative groups, which has unknown impact. | 10.0 |
2007-11-20 | CVE-2007-6048 | Permissions, Privileges, and Access Controls vulnerability in IBM DB2 Universal Database IBM DB2 UDB 9.1 before Fixpak 4 uses incorrect permissions on ACLs for DB2NODES.CFG, which has unknown impact and attack vectors. | 10.0 |
2007-11-20 | CVE-2007-6047 | Permissions, Privileges, and Access Controls vulnerability in IBM DB2 Universal Database Unspecified vulnerability in the DB2DART tool in IBM DB2 UDB 9.1 before Fixpak 4 allows attackers to execute arbitrary commands as the DB2 instance owner, related to invocation of TPUT by DB2DART. | 10.0 |