CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3915
https://notcve.org/view.php?id=CVE-2007-3915
07 Nov 2019 — Mondo 2.24 has insecure handling of temporary files. Mondo versión 2.24, presenta un manejo no seguro de archivos temporales. • https://security-tracker.debian.org/tracker/CVE-2007-3915 • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.8EPSS: 79%CPEs: 109EXPL: 0CVE-2013-4854 – ISC BIND rdata Denial Of Service Vulnerability
https://notcve.org/view.php?id=CVE-2013-4854
26 Jul 2013 — The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013. La implementación RFC en rdata.c en ISC BIND 9.7.x y 9.8.x anterior a 9.8.5-P2, ... • http://archives.neohapsis.com/archives/bugtraq/2013-08/0030.html •
CVSS: 10.0EPSS: 1%CPEs: 20EXPL: 0CVE-2011-2162
https://notcve.org/view.php?id=CVE-2011-2162
20 May 2011 — Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers." Múltiples vulnerabilidades no especificadas en FFmpeg v0.4.x hasta v0.6.x, tal como se utiliza en MPlayer v1.0 y otros productos, en Mandriva Linux v2009.0, v2010.0 y... • http://www.mandriva.com/security/advisories?name=MDVSA-2011:059 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2010-2529 – Gentoo Linux Security Advisory 201412-08
https://notcve.org/view.php?id=CVE-2010-2529
27 Jul 2010 — Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service (hang) via a crafted echo response. Vulnerabilidad no especificada en ping.c en iputils 20020927, 20070202, 20071127 y 20100214 en Mandriva Linux permite a atacantes remotos provocar una denegación de servicio (cuelgue) mediante una respuesta echo manipulada. This GLSA contains notification of vulnerabilities found in several Gentoo packages which h... • http://www.mandriva.com/security/advisories?name=MDVSA-2010:138 •
CVSS: 9.8EPSS: 0%CPEs: 11EXPL: 0CVE-2009-0912
https://notcve.org/view.php?id=CVE-2009-0912
16 Mar 2009 — perl-MDK-Common 1.1.11 and 1.1.24, 1.2.9 through 1.2.14, and possibly other versions, in Mandriva Linux does not properly handle strings when writing them to configuration files, which allows attackers to gain privileges via "special characters" in unspecified vectors. perl-MDK-Common v1.1.11 y v1.1.24, v1.2.9 hasta v1.2.14, y posiblemente otras versiones, en Mandriva Linux no maneja correctamente las cadenas de caracteres cuando las añade a ficheros de configuración, permitiendo a atacantes remotos obtener... • http://www.mandriva.com/security/advisories?name=MDVSA-2009:072 • CWE-20: Improper Input Validation •
CVSS: 6.9EPSS: 0%CPEs: 11EXPL: 0CVE-2009-0032
https://notcve.org/view.php?id=CVE-2009-0032
27 Jan 2009 — CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi Network Firewall (MNF) 2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pdf.log temporary file. CUPS sobre Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) v3.0 y v4.0, y Multi Network Firewall (MNF) v2.0, permite a usuarios locales sobrescribir archivos de su elección a través de un ataque de enlace simbólico sobre el archivo temporal /tmp/pdf.log. • http://securitytracker.com/id?1021637 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.5EPSS: 1%CPEs: 2EXPL: 0CVE-2007-3741 – Gimp image loader multiple input validation flaws
https://notcve.org/view.php?id=CVE-2007-3741
27 Aug 2007 — The (1) psp (aka .tub), (2) bmp, (3) pcx, and (4) psd plugins in gimp allow user-assisted remote attackers to cause a denial of service (crash or memory consumption) via crafted image files, as discovered using the fusil fuzzing tool. Las extensiones 1) psp (también conocida como .tub), (2) bmp, (3) pcx, y (4) psd en gimp permite a atacantes remotos con la intervención del usuario provocar denegación de servicio (caida o cosumo de memoria) a través de archivos de imagen manipuladas, como se descubrió utiliz... • http://osvdb.org/42128 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2005-3181
https://notcve.org/view.php?id=CVE-2005-3181
11 Oct 2005 — The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a memory leak that allows attackers to cause a denial of service (memory consumption). • http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=829841146878e082613a49581ae252c071057c23 • CWE-401: Missing Release of Memory after Effective Lifetime •