High

DATE	CVE	VULNERABILITY TITLE	RISK
2004-11-23	CVE-2004-0079	NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. network low complexity cisco symantec hp avaya redhat freebsd openbsd apple sco 4d checkpoint dell lite neoteris novell openssl sgi stonesoft tarantella vmware bluecoat securecomputing sun CWE-476	7.5
2004-10-20	CVE-2004-0750	Unspecified vulnerability in Redhat Enterprise Linux and Enterprise Linux Desktop Unknown vulnerability in redhat-config-nfs before 1.0.13, when shares are exported to multiple hosts, can produce incorrect permissions and prevent the all_squash option from being applied. network low complexity redhat	7.5
2004-09-16	CVE-2004-0827	Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files. network low complexity enlightenment imagemagick sun conectiva mandrakesoft redhat suse turbolinux ubuntu	7.5
2004-08-06	CVE-2004-0495	Device Driver vulnerability in Linux Kernel Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool. local low complexity avaya gentoo linux redhat suse conectiva	7.2
2004-03-03	CVE-2004-0105	Buffer Overflow/Format String Handling vulnerability in Metamail Multiple buffer overflows in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code. network low complexity metamail-corporation sgi redhat	7.5
2004-03-03	CVE-2004-0104	Buffer Overflow/Format String Handling vulnerability in Metamail Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code. network low complexity metamail-corporation sgi redhat	7.5
2003-10-20	CVE-2003-0689	Unspecified vulnerability in Redhat Enterprise Linux 2.1 The getgrouplist function in GNU libc (glibc) 2.2.4 and earlier allows attackers to cause a denial of service (segmentation fault) and execute arbitrary code when a user is a member of a large number of groups, which can cause a buffer overflow. network low complexity redhat	7.5
2003-08-27	CVE-2003-0699	Remote Security vulnerability in Linux Advanced Work Station The C-Media PCI sound driver in Linux before 2.4.21 does not use the get_user function to access userspace, which crosses security boundaries and may facilitate the exploitation of vulnerabilities, a different vulnerability than CVE-2003-0700. network low complexity redhat	7.5
2003-07-24	CVE-2003-0434	Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink. network low complexity adobe xpdf mandrakesoft redhat	7.5