- EPSS 2.09%
- Veröffentlicht 31.12.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:18:37
The Linux 2.4 kernel patch in kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux does not correctly set the "chroot barrier" with util-vserver, which allows attackers to access files on the host system that are outside of the...
CVE-2005-4178
- EPSS 3.44%
- Veröffentlicht 12.12.2005 21:03:00
- Zuletzt bearbeitet 16.06.2026 22:18:19
Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operati...
CVE-2005-3912
- EPSS 14.48%
- Veröffentlicht 30.11.2005 11:03:00
- Zuletzt bearbeitet 16.06.2026 22:17:52
Format string vulnerability in miniserv.pl Perl web server in Webmin before 1.250 and Usermin before 1.180, with syslog logging enabled, allows remote attackers to cause a denial of service (crash or memory consumption) and possibly execute arbitrary...
CVE-2005-3847
- EPSS 0.27%
- Veröffentlicht 27.11.2005 00:03:00
- Zuletzt bearbeitet 16.06.2026 22:17:44
The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2.6.13 and 2.6.12.6 allows local users to cause a denial of service (deadlock) by sending a SIGKILL to a real-time threaded process while it is performing ...
CVE-2005-3323
- EPSS 3.05%
- Veröffentlicht 27.10.2005 10:02:00
- Zuletzt bearbeitet 16.06.2026 22:16:43
docutils in Zope 2.6, 2.7 before 2.7.8, and 2.8 before 2.8.2 allows remote attackers to include arbitrary files via include directives in RestructuredText functionality.
CVE-2005-3302
- EPSS 3.88%
- Veröffentlicht 24.10.2005 10:02:00
- Zuletzt bearbeitet 16.06.2026 22:16:40
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call.
CVE-2005-3274
- EPSS 0.39%
- Veröffentlicht 21.10.2005 01:02:00
- Zuletzt bearbeitet 16.06.2026 22:16:37
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service (null dereference) by causing a connection timer to expire while the connection tab...
CVE-2005-3120
- EPSS 23.26%
- Veröffentlicht 17.10.2005 20:06:00
- Zuletzt bearbeitet 16.06.2026 22:16:17
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
CVE-2005-3181
- EPSS 0.5%
- Veröffentlicht 12.10.2005 13:04:00
- Zuletzt bearbeitet 16.06.2026 22:16:25
The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a m...
CVE-2005-2960
- EPSS 0.43%
- Veröffentlicht 05.10.2005 19:02:00
- Zuletzt bearbeitet 16.06.2026 22:15:58
cfengine 1.6.5 and 2.1.16 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by vicf.in, a different vulnerability than CVE-2005-3137.