Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mandrake_linux
(Mandrakesoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 134 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-06-21 | CVE-2000-0607 | Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings. | Debian_linux, Mandrake_linux, Linux | N/A | ||
| 2000-06-21 | CVE-2000-0606 | Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter. | Debian_linux, Mandrake_linux, Linux | N/A | ||
| 2004-09-16 | CVE-2004-0809 | The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access. | Http_server, Debian_linux, Linux, Hp\-Ux, Secure_web_server_for_tru64, Mandrake_linux, Enterprise_linux, Enterprise_linux_desktop, Secure_linux, Turbolinux_desktop, Turbolinux_home, Turbolinux_server | N/A | ||
| 2004-12-23 | CVE-2004-0834 | Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3. | Linux, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_multi_network_firewall, Speedtouch_usb_driver | N/A | ||
| 2005-04-14 | CVE-2005-0003 | The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbitrary code via a crafted ELF or a.out file. | Converged_communications_server, Intuity_audix, Mn100, Modular_messaging_message_storage_server, Network_routing, S8300, S8500, S8700, S8710, Linux_kernel, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_multi_network_firewall, Enterprise_linux, Enterprise_linux_desktop | N/A | ||
| 2008-01-12 | CVE-2007-6284 | The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences. | Debian_linux, Mandrake_linux, Mandrake_linux_corporate_server, Fedora | N/A | ||
| 2008-02-29 | CVE-2008-0595 | dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface. | Fedora, Dbus, Mandrake_linux, Enterprise_linux | N/A | ||
| 2005-01-10 | CVE-2004-1096 | Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. | Brightstor_arcserve_backup, Etrust_antivirus, Etrust_antivirus_gateway, Etrust_ez_antivirus, Etrust_ez_armor, Etrust_intrusion_detection, Etrust_secure_content_manager, Inoculateit, Etrust_antivirus, Etrust_secure_content_manager, Nod32_antivirus, Linux, Kaspersky_anti\-Virus, Mandrake_linux, Antivirus_engine, Rav_antivirus_desktop, Rav_antivirus_for_file_servers, Rav_antivirus_for_mail_servers, Sophos_anti\-Virus, Sophos_puremessage_anti\-Virus, Sophos_small_business_suite, Suse_linux | N/A | ||
| 2005-02-09 | CVE-2004-0937 | Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. | Archive_zip, Brightstor_arcserve_backup, Etrust_antivirus, Etrust_antivirus_gateway, Etrust_ez_antivirus, Etrust_ez_armor, Etrust_intrusion_detection, Etrust_secure_content_manager, Inoculateit, Etrust_antivirus, Etrust_secure_content_manager, Nod32_antivirus, Linux, Kaspersky_anti\-Virus, Mandrake_linux, Antivirus_engine, Rav_antivirus_desktop, Rav_antivirus_for_file_servers, Rav_antivirus_for_mail_servers, Sophos_anti\-Virus, Sophos_puremessage_anti\-Virus, Sophos_small_business_suite, Suse_linux | N/A | ||
| 2005-01-27 | CVE-2004-0934 | Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. | Archive_zip, Brightstor_arcserve_backup, Etrust_antivirus, Etrust_antivirus_gateway, Etrust_ez_antivirus, Etrust_ez_armor, Etrust_intrusion_detection, Etrust_secure_content_manager, Inoculateit, Etrust_antivirus, Etrust_secure_content_manager, Nod32_antivirus, Linux, Kaspersky_anti\-Virus, Mandrake_linux, Antivirus_engine, Rav_antivirus_desktop, Rav_antivirus_for_file_servers, Rav_antivirus_for_mail_servers, Sophos_anti\-Virus, Sophos_puremessage_anti\-Virus, Sophos_small_business_suite, Suse_linux | N/A |