Vulnerabilities > Mandriva

DATE CVE VULNERABILITY TITLE RISK
2019-11-07 CVE-2007-3915 Exposure of Resource to Wrong Sphere vulnerability in Mandriva Mondo 2.24
Mondo 2.24 has insecure handling of temporary files.
network
low complexity
mandriva CWE-668
6.4
2013-07-29 CVE-2013-4854 Remote Denial of Service vulnerability in ISC BIND 9 DNS RDATA Handling
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.
7.8
2011-05-20 CVE-2011-2162 Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers."
network
low complexity
ffmpeg mplayerhq mandriva
critical
10.0
2010-07-28 CVE-2010-2529 Remote Denial Of Service vulnerability in iputils 'ping.c'
Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service (hang) via a crafted echo response.
network
low complexity
skbuff mandriva
5.0
2009-03-16 CVE-2009-0912 Improper Input Validation vulnerability in Mandriva products
perl-MDK-Common 1.1.11 and 1.1.24, 1.2.9 through 1.2.14, and possibly other versions, in Mandriva Linux does not properly handle strings when writing them to configuration files, which allows attackers to gain privileges via "special characters" in unspecified vectors.
local
low complexity
mandriva CWE-20
7.2
2009-01-27 CVE-2009-0032 Link Following vulnerability in Apple Cups
CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi Network Firewall (MNF) 2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pdf.log temporary file.
6.9