Gentoo

Linux

135 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.1

CVE-2004-1110

  • EPSS 0.06%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The mtink status monitor before 1.0.5 for Epson printers allows local users to overwrite arbitrary files via a symlink attack on the epson temporary file.

7.2

CVE-2004-1115

  • EPSS 0.05%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The init scripts in Search for Extraterrestrial Intelligence (SETI) project 3.08-r3 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the programs.

7.2

CVE-2004-1116

  • EPSS 0.05%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The init scripts in Great Internet Mersenne Prime Search (GIMPS) 23.9 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the programs.

7.2

CVE-2004-1117

  • EPSS 0.05%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The init scripts in ChessBrain 20407 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the programs.

7.5

CVE-2004-1161

Exploit
  • EPSS 4.73%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

rssh 2.2.2 and earlier does not properly restrict programs that can be run, which could allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via (1) rdist -P, (2) rsync, or (3) scp -S.

7.5

CVE-2004-1162

Exploit
  • EPSS 0.65%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The unison command in scponly before 4.0 does not properly restrict programs that can be run, which could allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via the (1) -rshcmd or (2) -sshcmd flags.

10

CVE-2004-1304

  • EPSS 5.72%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file.

7.2

CVE-2004-1452

  • EPSS 0.05%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Tomcat before 5.0.27-r3 in Gentoo Linux sets the default permissions on the init scripts as tomcat:tomcat, but executes the scripts with root privileges, which could allow local users in the tomcat group to execute arbitrary commands as root by modif...

7.1

CVE-2004-1471

  • EPSS 5.95%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format strin...

5

CVE-2004-1491

  • EPSS 25.86%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.