Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-01-10 | CVE-2004-1171 | KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-readable permissions, which could allow local users to obtain usernames and passwords for remote resources such as SMB shares. | 2.1 |
| 2005-01-10 | CVE-2004-1110 | The mtink status monitor before 1.0.5 for Epson printers allows local users to overwrite arbitrary files via a symlink attack on the epson temporary file. | 2.1 |
| 2005-01-10 | CVE-2004-1108 | Unspecified vulnerability in Gentoo Linux qpkg in Gentoolkit 0.2.0_pre10 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary directory. | 2.1 |
| 2005-01-10 | CVE-2004-1107 | Unspecified vulnerability in Gentoo Linux dispatch-conf in Portage 2.0.51-r2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files. | 2.1 |
| 2005-01-10 | CVE-2004-1074 | Local Denial Of Service And Memory Disclosure vulnerability in Linux Kernel The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local users to cause a denial of service (kernel oops) via a malformed a.out binary. | 2.1 |
| 2005-01-10 | CVE-2004-1073 | Local Privilege Escalation vulnerability in Linux Kernel BINFMT_ELF Loader The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality. | 2.1 |
| 2005-01-10 | CVE-2004-1069 | Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service (kernel crash) via SOCK_SEQPACKET unix domain sockets, which are not properly handled in the sock_dgram_sendmsg function. | 1.2 |
| 2005-01-10 | CVE-2004-1066 | Unspecified vulnerability in Freebsd The cmdline pseudofiles in (1) procfs on FreeBSD 4.8 through 5.3, and (2) linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a denial of service (panic) or read portions of kernel memory. | 3.6 |
| 2005-01-10 | CVE-2004-1058 | Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline. | 1.2 |
| 2005-01-10 | CVE-2004-1023 | Local Security vulnerability in Kerio Mailserver, Serverfirewall and Winroute Firewall Kerio Winroute Firewall before 6.0.9, ServerFirewall before 1.0.1, and MailServer before 6.0.5, when installed on Windows based systems, do not modify the ACLs for critical files, which allows local users with Power Users privileges to modify programs, install malicious DLLs in the plug-ins folder, and modify XML files related to configuration. | 2.1 |