CVE-2018-18398
- EPSS 0.05%
- Published 19.10.2018 22:29:01
- Last modified 21.11.2024 03:55:52
Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey input method for file searches within File Manager, leading to an out-of-bounds read and SEGV. This could potentially be exploited by an arbitrary local user who creates files in ...
CVE-2009-4996
- EPSS 0.16%
- Published 07.09.2010 18:00:01
- Last modified 11.04.2025 00:51:21
Xfce4-session 4.5.91 in Xfce does not lock the screen when the suspend or hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action, a related issue to CVE-2010-2532....
- EPSS 1.99%
- Published 09.01.2008 23:46:00
- Last modified 09.04.2025 00:30:58
Stack-based buffer overflow in the Panel (xfce4-panel) component in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via Launcher tooltips. NOTE: a second buffer overflow (over-read) in the xfce_mkdirhier function was also re...
- EPSS 3.09%
- Published 09.01.2008 23:46:00
- Last modified 09.04.2025 00:30:58
Double free vulnerability in the Widget Library (libxfcegui4) in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via unknown vectors related to the "cliend id, program name and working directory in session management."