Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerable product
Vulnerabilities of Linux Mandrake

Linux Mandrake vulnerability: denial of service of ping
A server can send a malicious ICMP reply, in order to generate an infinite loop in the ping tool.

Linux Mandrake vulnerability: memory corruptions
An attacker can create a malicious font in order to execute code on computers of FreeType users.

Linux Mandrake vulnerability: double free of SplObjectStorage
When a PHP application unserializes malicious SplObjectStorage data, a double memory free occurs, and can lead to code execution.

Linux Mandrake vulnerability: buffer overflow of chain_reply
An unauthenticated attacker can send a malicious SMB query, in order to generate a buffer overflow in Samba, leading to a denial of service or to code execution.

Linux Mandrake vulnerability: bypassing secure path
When sudo calls some programs, a local attacker can bypass the "secure path" feature, in order to elevate his privileges.

Display other vulnerabilities of Linux Mandrake described by Vigil@nce...

Display information about Linux Mandrake:



















France Télécom Copyright 1999-2010 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française