Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mandrake_linux
(Mandrakesoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 135 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2002-02-27 | CVE-2002-0004 | Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice. | Openlinux_server, Openlinux_workstation, Debian_linux, Freebsd, Mandrake_linux, Netbsd, Linux, Slackware_linux, Suse_linux | N/A | ||
| 2002-01-31 | CVE-2002-0002 | Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code. | Secure_linux, Mandrake_linux, Linux, Stunnel | N/A | ||
| 2001-11-28 | CVE-2001-1449 | The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories. | Http_server, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_single_network_firewall | N/A | ||
| 2001-01-12 | CVE-2001-1385 | The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts. | Mandrake_linux, Php | N/A | ||
| 2001-12-12 | CVE-2001-1190 | The default PAM files included with passwd in Mandrake Linux 8.1 do not support MD5 passwords, which could result in a lower level of password security than intended. | Mandrake_linux | N/A | ||
| 2001-07-18 | CVE-2001-1030 | Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning. | Openlinux_server, Immunix, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_single_network_firewall, Linux, Squid_web_proxy, Secure_linux | N/A | ||
| 2001-07-16 | CVE-2001-0977 | slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field. | Debian_linux, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_single_network_firewall, Openldap, Linux | N/A | ||
| 2001-11-30 | CVE-2001-0912 | Packaging error for expect 8.3.3 in Mandrake Linux 8.1 causes expect to search for its libraries in the /home/snailtalk directory before other directories, which could allow a local user to gain root privileges. | Mandrake_linux | N/A | ||
| 2001-10-18 | CVE-2001-0736 | Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. | Secure_linux, Immunix, Mandrake_linux, Mandrake_linux_corporate_server, Linux, Pine | N/A | ||
| 2001-06-27 | CVE-2001-0496 | kdesu in kdelibs package creates world readable temporary files containing authentication info, which can allow local users to gain privileges. | Mandrake_linux, Linux | N/A |