High

DATE	CVE	VULNERABILITY TITLE	RISK
2004-12-06	CVE-2004-0619	Integer Overflow vulnerability in Linux Kernel Broadcom 5820 Cryptonet Driver Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer overflow. local low complexity redhat	7.2
2004-11-23	CVE-2004-0494	Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI. network low complexity avaya redhat	7.5
2004-11-23	CVE-2004-0079	NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. network low complexity cisco symantec hp avaya redhat freebsd openbsd apple sco 4d checkpoint dell lite neoteris novell openssl sgi stonesoft tarantella vmware bluecoat securecomputing sun CWE-476	7.5
2004-10-20	CVE-2004-0750	Unspecified vulnerability in Redhat Enterprise Linux and Enterprise Linux Desktop Unknown vulnerability in redhat-config-nfs before 1.0.13, when shares are exported to multiple hosts, can produce incorrect permissions and prevent the all_squash option from being applied. network low complexity redhat	7.5
2004-10-07	CVE-2005-0373	Remote And Local vulnerability in Cyrus SASL Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code. network low complexity cyrus openpkg suse conectiva apple redhat	7.5
2004-09-16	CVE-2004-0827	Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files. network low complexity enlightenment imagemagick sun conectiva mandrakesoft redhat suse turbolinux ubuntu	7.5
2004-08-06	CVE-2004-0495	Device Driver vulnerability in Linux Kernel Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool. local low complexity avaya gentoo linux redhat suse conectiva	7.2
2004-03-03	CVE-2004-0105	Buffer Overflow/Format String Handling vulnerability in Metamail Multiple buffer overflows in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code. network low complexity metamail-corporation sgi redhat	7.5
2004-03-03	CVE-2004-0104	Buffer Overflow/Format String Handling vulnerability in Metamail Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code. network low complexity metamail-corporation sgi redhat	7.5
2004-03-03	CVE-2004-0077	Local Privilege Escalation vulnerability in Linux Kernel do_mremap Function VMA Limit The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985. local low complexity redhat linux netwosix trustix	7.2