Vendor
Turbolinux
Turbolinux is a discontinued Japanese Linux distribution targeting Asian users.
Founded 1998
Products
9
CVEs
39
Across products
167
Status
Private
Products
9- 53 CVEs
- 45 CVEs
- 39 CVEs
- 8 CVEs
- 8 CVEs
- 6 CVEs
- 3 CVEs
- 3 CVEs
- 2 CVEs
Recent CVEs
39| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2003-0694 | 0.09 | — | 0.76 | Oct 6, 2003 | The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. | ||
| CVE-2003-0681 | 0.04 | — | 0.12 | Oct 6, 2003 | A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences. | ||
| CVE-2004-1073 | 0.03 | — | 0.00 | Jan 10, 2005 | The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality. | ||
| CVE-2001-0169 | 0.03 | — | 0.00 | Mar 26, 2001 | When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib. | ||
| CVE-2000-0844 | 0.03 | — | 0.01 | Nov 14, 2000 | Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | ||
| CVE-2000-0438 | 0.03 | — | 0.00 | May 22, 2000 | Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter. | ||
| CVE-2000-0336 | 0.03 | — | 0.00 | Apr 21, 2000 | Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack. | ||
| CVE-2000-0172 | 0.03 | — | 0.00 | Mar 3, 2000 | The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges. | ||
| CVE-2000-0170 | 0.03 | — | 0.00 | Feb 26, 2000 | Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable. | ||
| CVE-2000-0052 | 0.03 | — | 0.00 | Jan 4, 2000 | Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack. | ||
| CVE-1999-0949 | 0.03 | — | 0.00 | Nov 2, 1999 | Buffer overflow in canuum program for Canna input system allows local users to gain root privileges. | ||
| CVE-1999-0948 | 0.03 | — | 0.00 | Nov 2, 1999 | Buffer overflow in uum program for Canna input system allows local users to gain root privileges. | ||
| CVE-2005-3625 | 0.01 | — | 0.11 | Dec 31, 2005 | Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins." | ||
| CVE-2005-3624 | 0.01 | — | 0.07 | Dec 31, 2005 | The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows. | ||
| CVE-2005-3626 | 0.01 | — | 0.09 | Dec 31, 2005 | Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference. | ||
| CVE-2004-0802 | 0.01 | — | 0.06 | Dec 31, 2004 | Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817. | ||
| CVE-2004-0809 | 0.01 | — | 0.14 | Sep 16, 2004 | The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access. | ||
| CVE-2007-1352 | 0.00 | — | 0.02 | Apr 6, 2007 | Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow. | ||
| CVE-2005-0988 | 0.00 | — | 0.00 | May 2, 2005 | Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete. | ||
| CVE-2004-1009 | 0.00 | — | 0.01 | Apr 14, 2005 | Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. |