Turbolinux Server

DATE	CVE	VULNERABILITY TITLE	RISK
2005-04-14	CVE-2004-1090	Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header." network low complexity midnight-commander debian gentoo redhat suse turbolinux	5.0
2005-04-14	CVE-2004-1009	Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. network low complexity midnight-commander debian gentoo redhat suse turbolinux	5.0
2005-04-14	CVE-2004-1005	Multiple buffer overflows in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact. network low complexity midnight-commander debian gentoo redhat suse turbolinux	7.5
2005-04-14	CVE-2004-1004	Multiple format string vulnerabilities in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact. network low complexity midnight-commander debian gentoo redhat suse turbolinux	7.5
2005-01-10	CVE-2004-1074	Local Denial Of Service And Memory Disclosure vulnerability in Linux Kernel The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local users to cause a denial of service (kernel oops) via a malformed a.out binary. local low complexity linux redhat suse trustix turbolinux	2.1
2005-01-10	CVE-2004-1073	Local Privilege Escalation vulnerability in Linux Kernel BINFMT_ELF Loader The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality. local low complexity linux redhat suse trustix turbolinux	2.1
2005-01-10	CVE-2004-1072	Local Privilege Escalation vulnerability in Linux Kernel BINFMT_ELF Loader The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer overflows that allow local users to cause a denial of service (hang) and possibly execute arbitrary code. local low complexity linux redhat suse trustix turbolinux	7.2
2005-01-10	CVE-2004-1071	Local Privilege Escalation vulnerability in Linux Kernel BINFMT_ELF Loader The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed call to the mmap function, which causes an incorrect mapped image and may allow local users to execute arbitrary code. local low complexity linux redhat suse trustix turbolinux	7.2
2005-01-10	CVE-2004-1070	Local Privilege Escalation vulnerability in Linux Kernel BINFMT_ELF Loader The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly check return values from calls to the kernel_read function, which may allow local users to modify sensitive memory in a setuid program and execute arbitrary code. local low complexity linux redhat suse trustix turbolinux	7.2
2004-12-31	CVE-2004-0817	BMP Image Decoding Buffer Overflow vulnerability in IMLib/IMLib2 Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file. network low complexity enlightenment imagemagick sun conectiva mandrakesoft redhat suse turbolinux ubuntu	7.5