Redhat

Enterprise Linux

1851 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 17.96%
  • Veröffentlicht 06.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:01

The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow.

  • EPSS 5.28%
  • Veröffentlicht 06.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:02

The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference.

  • EPSS 5.28%
  • Veröffentlicht 06.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:02

The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read.

  • EPSS 9.54%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:04:53

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

  • EPSS 7.23%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:04:53

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

  • EPSS 10.42%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:04:57

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a ...

  • EPSS 1.63%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:45

Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.

  • EPSS 1.36%
  • Veröffentlicht 20.10.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:17

Unknown vulnerability in redhat-config-nfs before 1.0.13, when shares are exported to multiple hosts, can produce incorrect permissions and prevent the all_squash option from being applied.

Exploit
  • EPSS 1.65%
  • Veröffentlicht 18.10.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:08:02

Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG tag followed by a null character and some trailing...

Exploit
  • EPSS 15.46%
  • Veröffentlicht 16.09.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:25

The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.