Known Vulnerabilities for products from Rpath

Listed below are 19 of the newest known vulnerabilities associated with the vendor "Rpath".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2008-5516 json	The web interface in git (gitweb) 1.5.x before 1.5.5 allows remote attackers to execute arbitrary commands via shell metachar...	7.5 - HIGH	2009-01-20	2023-02-13
CVE-2008-4832 json	rc.sysinit in initscripts 8.12-8.21 and 8.56.15-0.1 on rPath allows local users to delete arbitrary files via a symlink attac...	6.9 - MEDIUM	2008-11-17	2017-08-08
CVE-2008-3139 json	The RTMPT dissector in Wireshark (formerly Ethereal) 0.99.8 through 1.0.0 allows remote attackers to cause a denial of servic...	5 - MEDIUM	2008-07-10	2018-10-11
CVE-2008-3138 json	The (1) PANA and (2) KISMET dissectors in Wireshark (formerly Ethereal) 0.99.3 through 1.0.0 allow remote attackers to cause ...	5 - MEDIUM	2008-07-10	2018-10-11
CVE-2008-2140 json	Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote ...	2.6 - LOW	2008-05-12	2017-08-08
CVE-2008-2139 json	The rootpw plugin in rPath Appliance Platform Agent 2 and 3 does not re-validate requests from a browser with a valid adminis...	6.5 - MEDIUM	2008-05-12	2017-08-08
CVE-2008-1078 json	expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows local users to overwrite ar...	7.2 - HIGH	2008-02-29	2023-11-07
CVE-2008-0411 json	Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to...	6.8 - MEDIUM	2008-02-28	2018-10-15
CVE-2007-5962 json	Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, ...	7.1 - HIGH	2008-05-22	2023-02-13
CVE-2007-5686 json	initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensiti...	4.9 - MEDIUM	2007-10-28	2018-10-15
CVE-2007-5194 json	The Chroot server in rMake 1.0.11 creates a /dev/zero device file with read/write permissions for the rMake user and the same...	6.9 - MEDIUM	2007-10-04	2018-10-15
CVE-2007-5116 json	Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dep...	7.5 - HIGH	2007-11-07	2018-10-15
CVE-2007-4131 json	Directory traversal vulnerability in the contains_dot_dot function in src/names.c in GNU tar allows user-assisted remote atta...	6.8 - MEDIUM	2007-08-25	2018-10-15
CVE-2007-4029 json	libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service vi...	6.8 - MEDIUM	2007-07-26	2018-10-15
CVE-2007-3106 json	lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial...	6.8 - MEDIUM	2007-07-26	2023-11-07
CVE-2007-1352 json	Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to exe...	3.8 - LOW	2007-04-06	2018-10-16
CVE-2007-1351 json	Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 ...	8.5 - HIGH	2007-04-06	2018-10-16
CVE-2007-0536 json	The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with in...	7.2 - HIGH	2007-01-27	2017-07-29
CVE-2006-6235 json	A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attacker...	10 - HIGH	2006-12-07	2018-10-17