CVE-2006-1564
- EPSS 0.48%
- Veröffentlicht 31.03.2006 11:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:12
Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the (1) mod_authz_svn.so and (2) mod_dav_svn.so modules, which might allow local users to gain pri...
CVE-2006-1565
- EPSS 0.48%
- Veröffentlicht 31.03.2006 11:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:12
Untrusted search path vulnerability in libgpib-perl 3.2.06-2 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the LinuxGpib.so module, which might allow local users to gain privileges by installing malicious libraries i...
CVE-2006-1566
- EPSS 0.49%
- Veröffentlicht 31.03.2006 11:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:12
Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries...
CVE-2006-1376
- EPSS 0.39%
- Veröffentlicht 24.03.2006 02:02:00
- Zuletzt bearbeitet 16.06.2026 22:22:33
The installation of Debian GNU/Linux 3.1r1 from the network install CD creates /var/log/debian-installer/cdebconf with world writable permissions, which allows local users to cause a denial of service (disk consumption).
CVE-2006-0050
- EPSS 0.32%
- Veröffentlicht 23.03.2006 11:06:00
- Zuletzt bearbeitet 16.06.2026 22:19:47
snmptrapfmt in Debian 3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary log file.
CVE-2006-1244
- EPSS 2.14%
- Veröffentlicht 15.03.2006 19:06:00
- Zuletzt bearbeitet 16.06.2026 22:22:17
Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and user-assisted attack vectors, possibly involving error...
- EPSS 6.23%
- Veröffentlicht 18.02.2006 21:02:00
- Zuletzt bearbeitet 16.06.2026 22:19:46
Unspecified vulnerability in (1) apreq_parse_headers and (2) apreq_parse_urlencoded functions in Apache2::Request (Libapreq2) before 2.07 allows remote attackers to cause a denial of service (CPU consumption) via unknown attack vectors that result in...
- EPSS 2.3%
- Veröffentlicht 31.12.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:17:16
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to int...
- EPSS 3.86%
- Veröffentlicht 31.12.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:17:16
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and ...
- EPSS 3.41%
- Veröffentlicht 31.12.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:17:17
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.