CVE-2008-0595
- EPSS 0.41%
- Veröffentlicht 29.02.2008 19:44:00
- Zuletzt bearbeitet 16.06.2026 22:49:57
dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a m...
CVE-2007-4130
- EPSS 0.47%
- Veröffentlicht 05.02.2008 00:00:00
- Zuletzt bearbeitet 16.06.2026 22:43:27
The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does not properly handle page faults during NUMA memory access, which allows local users to cause a denial of service (panic) via invalid arguments to set_m...
CVE-2007-6285
- EPSS 0.36%
- Veröffentlicht 20.12.2007 22:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:45
The default configuration for autofs 5 (autofs5) in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 4 and 5, does not specify the nodev mount option for the -hosts map, which allows local users to access "important devices" by opera...
CVE-2007-6283
- EPSS 0.42%
- Veröffentlicht 18.12.2007 01:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:44
Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping named.
CVE-2007-5964
- EPSS 0.48%
- Veröffentlicht 13.12.2007 18:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:08
The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/net filesystem) map, which allows local users to gain privileges via a setuid program on a remote NF...
CVE-2006-7226
- EPSS 1.6%
- Veröffentlicht 03.12.2007 20:46:00
- Zuletzt bearbeitet 16.06.2026 22:34:36
Perl-Compatible Regular Expression (PCRE) library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows ...
CVE-2007-5494
- EPSS 0.39%
- Veröffentlicht 30.11.2007 02:46:00
- Zuletzt bearbeitet 16.06.2026 22:46:16
Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux (RHEL) 4 and 5 allows local users to cause a denial of service (memory consumption) via a large number of open requests involving O_ATOMICLOOKUP.
CVE-2007-5116
- EPSS 4.83%
- Veröffentlicht 07.11.2007 23:46:00
- Zuletzt bearbeitet 16.06.2026 22:45:28
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.
CVE-2007-4574
- EPSS 0.36%
- Veröffentlicht 23.10.2007 10:46:00
- Zuletzt bearbeitet 16.06.2026 22:44:21
Unspecified vulnerability in the "stack unwinder fixes" in kernel in Red Hat Enterprise Linux 5, when running on AMD64 and Intel 64, allows local users to cause a denial of service via unknown vectors.
CVE-2007-5365
- EPSS 80.27%
- Veröffentlicht 11.10.2007 10:17:00
- Zuletzt bearbeitet 16.06.2026 22:45:58
Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemo...