CVE search results

401 – 410 of 490 results

Detailed view

Sort by:

CVE-2009-2265

Low priority

Some fixes available 1 of 3

Multiple directory traversal vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to create executable files in arbitrary directories via directory traversal sequences in the input to unspecified connector modules,...

2 affected packages

moin, fckeditor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
moin	—	—	—	—
fckeditor	—	—	—	—

CVE-2009-2166

Medium priority

Ignored

Absolute path traversal vulnerability in cvs.php in OCS Inventory NG before 1.02.1 on Unix allows remote attackers to read arbitrary files via a full pathname in the log parameter.

1 affected package

ocsinventory-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ocsinventory-server	—	—	—	Not affected

CVE-2009-1760

Medium priority

Ignored

Directory traversal vulnerability in src/torrent_info.cpp in Rasterbar libtorrent before 0.14.4, as used in firetorrent, qBittorrent, deluge Torrent, and other applications, allows remote attackers to create or overwrite arbitrary...

1 affected package

libtorrent-rasterbar

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libtorrent-rasterbar	—	—	—	—

CVE-2009-1769

Low priority

Ignored

The web interface in Open Computer and Software Inventory Next Generation (OCS Inventory NG) 1.01 generates different error messages depending on whether a username is valid, which allows remote attackers to enumerate valid usernames.

1 affected package

ocsinventory-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ocsinventory-server	—	—	—	—

CVE-2009-1759

Medium priority

Some fixes available 1 of 3

Stack-based buffer overflow in the btFiles::BuildFromMI function (trunk/btfiles.cpp) in Enhanced CTorrent (aka dTorrent) 3.3.2 and probably earlier, and CTorrent 1.3.4, allows remote attackers to cause a denial of service (crash)...

1 affected package

ctorrent

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ctorrent	—	—	—	—

CVE-2009-1443

Low priority

Ignored

Multiple unspecified vulnerabilities in the Server component in OCS Inventory NG before 1.02 have unknown impact and attack vectors.

1 affected package

ocsinventory-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ocsinventory-server	—	—	—	—

CVE-2009-1188

Medium priority

Some fixes available 34 of 74

Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote attackers to...

14 affected packages

koffice, xpdf, libextractor, cups, cupsys...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
koffice	—	Not in release	Not in release	Not in release
xpdf	—	Not affected	Not in release	Not affected
libextractor	—	Not affected	Not affected	Not affected
cups	—	Not affected	Not affected	Not affected
cupsys	—	Not in release	Not in release	Not in release
evince	—	Not affected	Not affected	Not affected
gpdf	—	Not in release	Not in release	Not in release
ipe	—	Not affected	Not affected	Not affected
kdegraphics	—	Not in release	Not in release	Not in release
pdfkit.framework	—	Not in release	Not in release	Not in release
pdftohtml	—	Not in release	Not in release	Not in release
poppler	—	Fixed	Fixed	Fixed
tetex-bin	—	Not in release	Not in release	Not in release
texlive-bin	—	Not affected	Not affected	Not affected

CVE-2009-1187

Medium priority

Some fixes available 5 of 19

Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).

14 affected packages

cupsys, cups, evince, gpdf, ipe...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
cupsys	—	—	—	—
cups	—	—	—	—
evince	—	—	—	—
gpdf	—	—	—	—
ipe	—	—	—	—
kdegraphics	—	—	—	—
koffice	—	—	—	—
libextractor	—	—	—	—
pdfkit.framework	—	—	—	—
pdftohtml	—	—	—	—
poppler	—	—	—	—
tetex-bin	—	—	—	—
texlive-bin	—	—	—	—
xpdf	—	—	—	—

CVE-2009-1183

Medium priority

Some fixes available 34 of 76

The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted PDF file.

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
cups	—	Not affected	Not affected	Not affected
cupsys	—	Not in release	Not in release	Not in release
evince	—	Not affected	Not affected	Not affected
gpdf	—	Not in release	Not in release	Not in release
ipe	—	Not affected	Not affected	Not affected
kdegraphics	—	Not in release	Not in release	Not in release
koffice	—	Not in release	Not in release	Not in release
libextractor	—	Not affected	Not affected	Not affected
pdfkit.framework	—	Not in release	Not in release	Not in release
pdftohtml	—	Not in release	Not in release	Not in release
poppler	—	Fixed	Fixed	Fixed
tetex-bin	—	Not in release	Not in release	Not in release
texlive-bin	—	Not affected	Not affected	Not affected
xpdf	—	Not affected	Not in release	Not affected

CVE-2009-1182

Medium priority

Some fixes available 34 of 76

Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.

14 affected packages

cupsys, gpdf, cups, evince, ipe...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
cupsys	—	Not in release	Not in release	Not in release
gpdf	—	Not in release	Not in release	Not in release
cups	—	Not affected	Not affected	Not affected
evince	—	Not affected	Not affected	Not affected
ipe	—	Not affected	Not affected	Not affected
kdegraphics	—	Not in release	Not in release	Not in release
koffice	—	Not in release	Not in release	Not in release
libextractor	—	Not affected	Not affected	Not affected
pdfkit.framework	—	Not in release	Not in release	Not in release
pdftohtml	—	Not in release	Not in release	Not in release
poppler	—	Fixed	Fixed	Fixed
tetex-bin	—	Not in release	Not in release	Not in release
texlive-bin	—	Not affected	Not affected	Not affected
xpdf	—	Not affected	Not in release	Not affected

Export to JSON

Results by page:

Search CVE reports