Shodan
Vulnerabilities
Vulnerable Software
Suse:  >> Suse Linux  >> 9.3  Security Vulnerabilities
CVE-2005-3146
StoreBackup before 1.19 allows local users to perform unauthorized operations on arbitrary files via a symlink attack on temporary files.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-10-05
CVE-2005-3147
StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive information.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-10-05
CVE-2005-3148
StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be restored with incorrect ownership.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-10-05
CVE-2005-3013
Buffer overflow in liby2util in Yet another Setup Tool (YaST) for SuSE Linux 9.3 allows local users to execute arbitrary code via a long Loc entry.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-09-21
CVE-2005-1761
Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service (kernel crash) via ptrace and the restore_sigcontext function.
CVSS Score
2.1
EPSS Score
0.0
Published
2005-08-05
CVE-2005-1767
traps.c in the Linux kernel 2.6.x and 2.4.x executes stack segment faults on an exception stack, which allows local users to cause a denial of service (oops and stack fault exception).
CVSS Score
2.1
EPSS Score
0.0
Published
2005-08-05
CVE-2005-2023
The send_pinentry_environment function in asshelp.c in gpg2 on SUSE Linux 9.3 does not properly handle certain options, which can prevent pinentry from being found and causes S/MIME signing to fail.
CVSS Score
10.0
EPSS Score
0.005
Published
2005-06-17
CVE-2005-1043
exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.
CVSS Score
5.0
EPSS Score
0.012
Published
2005-04-14
CVE-2005-0750
The bluez_sock_create function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows local users to gain privileges via (1) socket or (2) socketpair call with a negative protocol value.
CVSS Score
7.2
EPSS Score
0.002
Published
2005-03-27
CVE-2005-0638
xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbitrary commands via shell metacharacters in filenames for compressed images, which are not properly quoted when calling the gunzip command.
CVSS Score
7.5
EPSS Score
0.028
Published
2005-03-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved