OVAL Definitions - Family: unix

Filter: Compliance Inventory Patch Vulnerability All
Title Definition Id Class Family
Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2... oval:org.mitre.oval:def:10082 Vulnerability unix
Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) dissector (packet-srvloc... oval:org.mitre.oval:def:10074 Vulnerability unix
Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a... oval:org.mitre.oval:def:10069 Vulnerability unix
Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries on some platforms includin... oval:org.mitre.oval:def:10021 Vulnerability unix
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers ... oval:org.mitre.oval:def:10019 Vulnerability unix
Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c in the Linux kernel before 2.6.28-rc1 might ... oval:org.mitre.oval:def:11344 Vulnerability unix
Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the... oval:org.mitre.oval:def:11321 Vulnerability unix
Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial o... oval:org.mitre.oval:def:10145 Vulnerability unix
Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbi... oval:org.mitre.oval:def:10140 Vulnerability unix
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords fr... oval:org.mitre.oval:def:9483 Vulnerability unix
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes... oval:org.mitre.oval:def:10700 Vulnerability unix
bzip2 Arbitrary File Permission Modification Vulnerability oval:org.mitre.oval:def:1154 Vulnerability unix
Bzip2 Bug Lets Remote Users Deny Service oval:org.mitre.oval:def:6467 Vulnerability unix
bzip2 Decompression Bomb oval:org.mitre.oval:def:749 Vulnerability unix
bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted f... oval:org.mitre.oval:def:10067 Vulnerability unix
C-Media Sound Driver Userspace Access Vulnerability oval:org.mitre.oval:def:401 Vulnerability unix
C-Media Sound Driver Userspace Access Vulnerability II oval:org.mitre.oval:def:387 Vulnerability unix
cachefsd DoS via Invalid RPC Request oval:org.mitre.oval:def:4329 Vulnerability unix
cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabled and a threaded Multi-Process... oval:org.mitre.oval:def:9824 Vulnerability unix
Camel (camel-imap-folder.c) in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute... oval:org.mitre.oval:def:11724 Vulnerability unix
Capture All Failed Login Attempts oval:gov.irs.sol10:def:90 Compliance unix
Capture syslog AUTH Messages oval:gov.irs.sol10:def:85 Compliance unix
CD Drive DoS Vulnerability oval:org.mitre.oval:def:1628 Vulnerability unix
CDE AddSuLog Function Buffer Overflow oval:org.mitre.oval:def:3078 Vulnerability unix
CDE dtspcd Daemon Symlink Vulnerability oval:org.mitre.oval:def:1880 Vulnerability unix
CDE libDtHelp Buffer Overflow oval:org.mitre.oval:def:5141 Vulnerability unix
cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before execu... oval:org.mitre.oval:def:9805 Vulnerability unix
CentOS Linux 3.x oval:org.mitre.oval:def:16651 Inventory unix
CentOS Linux 4.x oval:org.mitre.oval:def:16636 Inventory unix
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers ... oval:org.mitre.oval:def:11373 Vulnerability unix

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html