Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Propack
(Sgi)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 54 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2004-08-18 | CVE-2004-0235 | Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path"). | Mailsweeper, F\-Secure_anti\-Virus, F\-Secure_for_firewalls, F\-Secure_internet_security, F\-Secure_personal_express, Internet_gatekeeper, Winrar, Fedora_core, Lha, Propack, Cgpmcafee, Lha, Winzip | N/A | ||
| 2004-08-18 | CVE-2004-0234 | Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive. | Mailsweeper, F\-Secure_anti\-Virus, F\-Secure_for_firewalls, F\-Secure_internet_security, F\-Secure_personal_express, Internet_gatekeeper, Winrar, Fedora_core, Lha, Propack, Cgpmcafee, Lha, Winzip | N/A | ||
| 2004-08-18 | CVE-2004-0233 | Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files. | Propack, Slackware_linux, Utempter | N/A | ||
| 2004-08-18 | CVE-2004-0232 | Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. | Linux, Midnight_commander, Propack, Slackware_linux | N/A | ||
| 2004-08-18 | CVE-2004-0231 | Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations." | Linux, Midnight_commander, Propack, Slackware_linux | N/A | ||
| 2004-08-18 | CVE-2004-0226 | Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. | Linux, Midnight_commander, Propack, Slackware_linux | N/A | ||
| 2004-04-15 | CVE-2004-0148 | wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead. | Propack, Wu\-Ftpd | N/A | ||
| 2004-04-15 | CVE-2004-0111 | gdk-pixbuf before 0.20 allows attackers to cause a denial of service (crash) via a malformed bitmap (BMP) file. | Gdkpixbuf, Enterprise_linux, Gdk_pixbuf, Linux_advanced_workstation, Propack | N/A | ||
| 2004-03-15 | CVE-2004-0110 | Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL. | Propack, Libxml, Libxml2 | N/A | ||
| 2004-04-15 | CVE-2004-0108 | The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107. | Sysstat, Propack, Sysstat | N/A |