CVE-2007-6206
- EPSS 0.43%
- Veröffentlicht 04.12.2007 00:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:36
The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might ...
CVE-2006-5752
- EPSS 27.78%
- Veröffentlicht 27.06.2007 17:30:00
- Zuletzt bearbeitet 16.06.2026 22:31:48
Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote attackers to inject arbitrary web script or HTML vi...
- EPSS 10.11%
- Veröffentlicht 30.03.2007 00:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:23
PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted U...
CVE-2006-5158
- EPSS 3.47%
- Veröffentlicht 05.10.2006 04:04:00
- Zuletzt bearbeitet 16.06.2026 22:30:36
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference...