Vulnerabilities > Mandrakesoft > Medium

DATE CVE VULNERABILITY TITLE RISK
2007-03-20 CVE-2007-1546 Local Privilege Escalation and Denial of Service vulnerability in Radscan Network Audio System 1.8A
Array index error in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) via (1) large num_action values in the ProcAuSetElements function in server/dia/audispatch.c or (2) a large inputNum parameter to the compileInputs function in server/dia/auutil.c.
network
low complexity
mandrakesoft radscan
5.0
5.0
2007-03-20 CVE-2007-1545 Local Privilege Escalation and Denial of Service vulnerability in Radscan Network Audio System 1.8A
The AddResource function in server/dia/resource.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (server crash) via a nonexistent client ID.
network
low complexity
mandrakesoft radscan
5.0
5.0
2007-03-20 CVE-2007-1544 Local Privilege Escalation and Denial of Service vulnerability in Radscan Network Audio System 1.8A
Integer overflow in the ProcAuWriteElement function in server/dia/audispatch.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large max_samples value.
network
low complexity
mandrakesoft radscan
5.0
5.0
2005-12-31 CVE-2005-3626 Resource Management Errors vulnerability in multiple products
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference. 		5.0
5.0
2005-12-31 CVE-2005-3624 Numeric Errors vulnerability in multiple products
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows. 		5.0
5.0
2005-07-26 CVE-2005-2377 Denial-Of-Service vulnerability in Mandrakesoft Mandrake Linux and Mandrake Linux Corporate Server
nss_ldap 181 to versions before 213, as used in Mandrake Corporate Server and Mandrake 10.0, and other operating systems, does not properly handle a SIGPIPE signal when sending a search request to an LDAP directory server, which might allow remote attackers to cause a denial of service (crond and other application crash) if they can cause an LDAP server to become unavailable.
network
low complexity
mandrakesoft
5.0
5.0
2005-06-10 CVE-2005-1267 Denial Of Service vulnerability in tcpdump BGP Decoding Routines
The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.
network
low complexity
lbl gentoo mandrakesoft redhat trustix
5.0
5.0
2005-05-03 CVE-2005-1379 Unspecified vulnerability in Mandrakesoft Mandrake Lam-Runtime 7.0.6.2Mdk
The LAM runtime environment package (lam-runtime-7.0.6-2mdk) on Mandrake Linux installs the mpi user without a password, which allows local users to gain privileges.
local
low complexity
mandrakesoft
4.6
4.6
2005-04-27 CVE-2005-0085 Cross-Site Scripting vulnerability in Dig Config Parameter
Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message. 		6.8
6.8
2005-04-14 CVE-2004-1235 Local Privilege Escalation vulnerability in Linux kernel Uselib()
Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor. 		6.2
6.2