Known Vulnerabilities for products from Nongnu

Listed below are 7 of the newest known vulnerabilities associated with the vendor "Nongnu".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2019-17455 Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse re... 9.8 - CRITICAL 2019-10-10 2023-11-07
CVE-2018-1000637 zutils version prior to version 1.8-pre2 contains a Buffer Overflow vulnerability in zcat that can result in Potential denial... 7.8 - HIGH 2018-08-20 2018-11-02
CVE-2014-2886 GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) characters in a gksu-run-helper argument, which allows attac... 6.8 - MEDIUM 2014-09-18 2018-12-31
CVE-2013-7322 usersfile.c in liboath in OATH Toolkit before 2.4.1 does not properly handle lines containing an invalid one-time-password (O... 4.9 - MEDIUM 2014-03-09 2017-08-29
CVE-2010-3846 Array index error in the apply_rcs_change function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS f... 6.9 - MEDIUM 2010-11-05 2023-02-13
CVE-2009-0359 Multiple cross-site scripting (XSS) vulnerabilities in Samizdat before 0.6.2 allow remote authenticated users to inject arbit... 3.5 - LOW 2009-02-17 2023-11-07
CVE-2007-3209 Mail Notification 4.0, when WITH_SSL is set to 0 at compile time, uses unencrypted connections for accounts configured with S... 7.8 - HIGH 2007-06-14 2017-07-29

Known software with vulnerabilities from Nongnu

Type Vendor Product Version
ApplicationNongnuLibntlm-
ApplicationNongnuOath Toolkit1.0.0
ApplicationNongnuZutils0.2