Vulnerabilities > Suse > Suse Linux > 10.0

DATE CVE VULNERABILITY TITLE RISK
2008-03-06 CVE-2008-0883 Link Following vulnerability in Adobe Acrobat Reader 8.1.2
acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling.
local
high complexity
suse adobe CWE-59
3.7
2007-11-02 CVE-2007-5197 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mono
Buffer overflow in the Mono.Math.BigInteger class in Mono 1.2.5.1 and earlier allows context-dependent attackers to execute arbitrary code via unspecified vectors related to Reduce in Montgomery-based Pow methods.
network
low complexity
suse debian opensuse mono CWE-119
7.5
2007-05-14 CVE-2007-2654 Race Condition vulnerability in multiple products
xfs_fsr in xfsdump creates a .fsr temporary directory with insecure permissions, which allows local users to read or overwrite arbitrary files on xfs filesystems.
4.4
2007-01-24 CVE-2007-0460 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Suse Linux
Multiple buffer overflows in ulogd for SUSE Linux 9.3 up to 10.1, and possibly other distributions, have unknown impact and attack vectors related to "improper string length calculations."
network
low complexity
suse CWE-119
critical
10.0
2006-10-31 CVE-2006-5616 Local and Remote vulnerability in OpenPBS
Multiple unspecified vulnerabilities in OpenPBS, as used in SUSE Linux 9.2 through 10.1, allow attackers to execute arbitrary code via unspecified vectors.
network
low complexity
openpbs suse
critical
10.0
2006-09-12 CVE-2006-2658 Directory Traversal vulnerability in Mono XSP
Directory traversal vulnerability in the xsp component in mod_mono in Mono/C# web server, as used in SUSE Open-Enterprise-Server 1 and SUSE Linux 9.2 through 10.0, allows remote attackers to read arbitrary files via a ..
network
low complexity
mono suse
5.0
2006-03-21 CVE-2006-0745 Local Privilege Escalation vulnerability in X.Org X Window Server
X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.
local
low complexity
x-org mandrakesoft redhat sun suse
7.2
2006-02-11 CVE-2006-0646 Unspecified vulnerability in Suse Linux
ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain circumstances when linking binaries, can leave an empty RPATH or RUNPATH, which allows local attackers to execute arbitrary code as other users via by running an ld-linked application from the current directory, which could contain an attacker-controlled library file.
local
suse
4.4
2006-01-31 CVE-2006-0043 Remote Buffer Overflow vulnerability in NFS-SERVER
Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks.
local
low complexity
suse
4.6
2005-12-31 CVE-2005-4778 Local Denial Of Service vulnerability in SUSE Linux PowerSave Daemon
The powersave daemon in SUSE Linux 10.0 before 20051007 has an unspecified "configuration problem," which allows local users to suspend the computer and possibly perform certain other unauthorized actions.
local
low complexity
suse
2.1