Vulnerabilities > SGI > Propack > 2.4

DATE	CVE	VULNERABILITY TITLE	RISK
2004-12-31	CVE-2004-1471	Multiple vulnerability in CVS Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line. network high complexity cvs openpkg sgi freebsd gentoo openbsd	7.1
2004-11-23	CVE-2004-0081	OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. network low complexity cisco symantec hp avaya freebsd openbsd redhat sco apple 4d checkpoint lite neoteris novell openssl sgi stonesoft vmware bluecoat securecomputing dell tarantella sun	5.0
2004-11-23	CVE-2004-0079	NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. network low complexity cisco symantec hp avaya redhat freebsd openbsd apple sco 4d checkpoint dell lite neoteris novell openssl sgi stonesoft tarantella vmware bluecoat securecomputing sun CWE-476	7.5
2004-08-18	CVE-2004-0523	Principal Name Buffer Overrun vulnerability in MIT Kerberos 5 KRB5_AName_To_Localname Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root. network low complexity mit sgi sun tinysofa critical	10.0
2004-08-18	CVE-2004-0235	Buffer Overflow/Directory Traversal vulnerability in Multiple LHA Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. network low complexity clearswift f-secure rarlab redhat sgi stalker tsugio-okamoto winzip	6.4
2004-08-18	CVE-2004-0234	Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive. network low complexity clearswift f-secure rarlab redhat sgi stalker tsugio-okamoto winzip CWE-119 critical	10.0
2004-08-18	CVE-2004-0233	Local vulnerability in UTempter Utempter allows device names that contain .. local low complexity sgi utempter slackware	2.1
2004-08-18	CVE-2004-0232	Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. network low complexity midnight-commander sgi gentoo slackware	5.0
2004-08-18	CVE-2004-0231	Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations." local low complexity midnight-commander sgi gentoo slackware	2.1
2004-08-18	CVE-2004-0226	Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. network low complexity midnight-commander sgi gentoo slackware critical	10.0