Vulnerabilities > Suse > Suse Linux
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-24 | CVE-2017-3224 | Insufficient Verification of Data Authenticity vulnerability in multiple products Open Shortest Path First (OSPF) protocol implementations may improperly determine Link State Advertisement (LSA) recency for LSAs with MaxSequenceNumber. | 4.3 |
| 2010-01-22 | CVE-2010-0230 | Permissions, Privileges, and Access Controls vulnerability in Suse Opensuse and Suse Linux SUSE Linux Enterprise 10 SP3 (SLE10-SP3) and openSUSE 11.2 configures postfix to listen on all network interfaces, which might allow remote attackers to bypass intended access restrictions. | 7.5 |
| 2009-07-05 | CVE-2009-1648 | Configuration vulnerability in Suse Linux 11 The YaST2 LDAP module in yast2-ldap-server on SUSE Linux Enterprise Server 11 (aka SLE11) does not enable the firewall in certain circumstances involving reboots during online updates, which makes it easier for remote attackers to access network services. | 7.5 |
| 2009-05-14 | CVE-2009-0714 | Privilege Escalation vulnerability in HP Data Protector Express 3.5/4.0 Unspecified vulnerability in the dpwinsup module (dpwinsup.dll) for dpwingad (dpwingad.exe) in HP Data Protector Express and Express SSE 3.x before build 47065, and Express and Express SSE 4.x before build 46537, allows remote attackers to cause a denial of service (application crash) or read portions of memory via one or more crafted packets. | 7.2 |
| 2008-09-22 | CVE-2008-3949 | Code Injection vulnerability in Suse Linux emacs/lisp/progmodes/python.el in Emacs 22.1 and 22.2 imports Python script from the current working directory during editing of a Python file, which allows local users to execute arbitrary code via a Trojan horse Python file. | 7.2 |
| 2008-03-06 | CVE-2008-0883 | Link Following vulnerability in Adobe Acrobat Reader 8.1.2 acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling. | 3.7 |
| 2008-02-12 | CVE-2008-0732 | Link Following vulnerability in Apache Geronimo The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown operation, which might allow local users to obtain access to unspecified files or directories. | 2.1 |
| 2007-11-29 | CVE-2007-6167 | Permissions, Privileges, and Access Controls vulnerability in Suse Linux Untrusted search path vulnerability in yast2-core in SUSE Linux might allow local users to execute arbitrary code by creating a malicious yast2 module in the current working directory. | 7.2 |
| 2007-11-02 | CVE-2007-5197 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mono Buffer overflow in the Mono.Math.BigInteger class in Mono 1.2.5.1 and earlier allows context-dependent attackers to execute arbitrary code via unspecified vectors related to Reduce in Montgomery-based Pow methods. | 7.5 |
| 2007-10-16 | CVE-2007-5471 | Denial Of Service vulnerability in Suse Linux 10 libgssapi before 0.6-13.7, as used by the ISC BIND named daemon in SUSE Linux Enterprise Server 10 SP 1, terminates upon an initialization error, which allows remote attackers to cause a denial of service (daemon exit) via a GSS-TSIG request. | 7.8 |