Sune Kloppenborg Jeppesen

#14005of 53,638
19.2Total CVSS
Vulnerabilities · 4
Low
1
Medium
2
High
1
PT-2005-3601
7.5
2005-08-29
Mplayer · Mplayer · CVE-2005-2718
**Name of the Vulnerable Software and Affected Versions** MPlayer versions 1.0pre7 and earlier **Description** The issue is related to a buffer overflow in the ad pcm.c file, which can be triggered by remote attackers sending crafted PCM audio data. This can be achieved by using a video file with an audio header that contains a large value in a stream format (strf) chunk, allowing the execution of arbitrary code. **Recommendations** For MPlayer versions 1.0pre7 and earlier, consider updating to a newer version to mitigate the risk of exploitation, as the current version contains a buffer overflow vulnerability in the ad pcm.c file. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2005-2967
5.0
2005-06-17
Vipul · Vipul Razor Agents · CVE-2005-2024
**Name of the Vulnerable Software and Affected Versions** Vipul Razor Agents (razor-agents) versions prior to 2.70 **Description** The issue allows remote attackers to cause a denial of service through certain unusual HTML messages or certain malformed headers, such as the Content-Type header. **Recommendations** For versions prior to 2.70, update to version 2.70 or later to resolve the issue.
PT-2005-1789
4.6
2005-05-13
Gnu · Gzip · CVE-2005-0758
**Name of the Vulnerable Software and Affected Versions** gzip versions prior to 1.3.5 **Description** The issue allows local users to execute arbitrary commands via filenames that are injected into a sed script, due to improper sanitization of arguments by zgrep in gzip. **Recommendations** For versions prior to 1.3.5, update to version 1.3.5 or later to resolve the issue.
PT-2005-2277
2.1
2005-04-26
Rootkit Hunter · Rootkit Hunter · CVE-2005-1270
Name of the Vulnerable Software and Affected Versions: Rootkit Hunter versions prior to 1.2.3-r1 Description: The issue concerns the creation of temporary files with predictable file names by the check update.sh and rkhunter script in Rootkit Hunter. This predictability allows local users to perform a symlink attack, enabling them to overwrite arbitrary files. Recommendations: For versions prior to 1.2.3-r1, update to version 1.2.3-r1 or later to resolve the issue. As a temporary workaround, consider restricting access to the check update.sh and rkhunter script to minimize the risk of exploitation.