Vulnerabilities > Suse > Suse Linux Openexchange Server > 4.0

DATE	CVE	VULNERABILITY TITLE	RISK
2007-11-02	CVE-2007-5197	Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mono Buffer overflow in the Mono.Math.BigInteger class in Mono 1.2.5.1 and earlier allows context-dependent attackers to execute arbitrary code via unspecified vectors related to Reduce in Montgomery-based Pow methods. network low complexity suse debian opensuse mono CWE-119	7.5
2007-05-14	CVE-2007-2654	Race Condition vulnerability in multiple products xfs_fsr in xfsdump creates a .fsr temporary directory with insecure permissions, which allows local users to read or overwrite arbitrary files on xfs filesystems. local suse xfsdump CWE-362	4.4
2005-12-31	CVE-2005-4772	Unspecified vulnerability in Suse products liby2util in Yet another Setup Tool (YaST) in SUSE Linux before 20051007 preserves permissions and ownerships when copying a remote repository, which might allow local users to read or modify sensitive files, possibly giving local users the ability to exploit CVE-2005-3013. network low complexity suse	6.4
2003-12-31	CVE-2003-1538	Improper Input Validation vulnerability in Suse products susehelp in SuSE Linux 8.1, Enterprise Server 8, Office Server, and Openexchange Server 4 does not properly filter shell metacharacters, which allows remote attackers to execute arbitrary commands via CGI queries. network low complexity suse CWE-20	6.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.