| 2005-01-10 | CVE-2004-1073 | Local Privilege Escalation vulnerability in Linux Kernel BINFMT_ELF Loader
The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality. | 2.1 |
| 2005-01-10 | CVE-2004-1074 | Local Denial Of Service And Memory Disclosure vulnerability in Linux Kernel
The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local users to cause a denial of service (kernel oops) via a malformed a.out binary. | 2.1 |
| 2005-01-10 | CVE-2004-1171 | KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-readable permissions, which could allow local users to obtain usernames and passwords for remote resources such as SMB shares. | 2.1 |
| 2005-01-10 | CVE-2004-1268 | lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors. | 2.1 |
| 2005-01-10 | CVE-2004-1270 | lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message. | 2.1 |
| 2004-12-31 | CVE-2004-0491 | Local MEMLOCK RLIMIT Bypass Denial Of Service vulnerability in Redhat Enterprise Linux 3.0
The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit. | 2.1 |
| 2004-12-06 | CVE-2004-0497 | Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4. | 2.1 |
| 2004-11-23 | CVE-2004-0415 | Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory. | 2.1 |
| 2004-08-06 | CVE-2004-0554 | Local Denial Of Service vulnerability in Linux Kernel Floating Point Exception Handler
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program. | 2.1 |
| 2004-08-06 | CVE-2004-0587 | Denial of Service vulnerability in Linux Kernel HbaApiNode Improper File Permissions
Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service. | 2.1 |