Known Vulnerabilities for products from Rpath

Listed below are 19 of the newest known vulnerabilities associated with the vendor "Rpath".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2008-5516	The web interface in git (gitweb) 1.5.x before 1.5.5 allows remote attackers to execute arbitrary commands via shell metachar...	7.5 - HIGH	2009-01-20	2023-02-13
CVE-2008-4832	rc.sysinit in initscripts 8.12-8.21 and 8.56.15-0.1 on rPath allows local users to delete arbitrary files via a symlink attac...	6.9 - MEDIUM	2008-11-17	2017-08-08
CVE-2008-3139	The RTMPT dissector in Wireshark (formerly Ethereal) 0.99.8 through 1.0.0 allows remote attackers to cause a denial of servic...	5 - MEDIUM	2008-07-10	2018-10-11
CVE-2008-3138	The (1) PANA and (2) KISMET dissectors in Wireshark (formerly Ethereal) 0.99.3 through 1.0.0 allow remote attackers to cause ...	5 - MEDIUM	2008-07-10	2018-10-11
CVE-2008-2140	Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote ...	2.6 - LOW	2008-05-12	2017-08-08
CVE-2008-2139	The rootpw plugin in rPath Appliance Platform Agent 2 and 3 does not re-validate requests from a browser with a valid adminis...	6.5 - MEDIUM	2008-05-12	2017-08-08
CVE-2008-1078	expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows local users to overwrite ar...	7.2 - HIGH	2008-02-29	2023-11-07
CVE-2008-0411	Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to...	6.8 - MEDIUM	2008-02-28	2018-10-15
CVE-2007-5962	Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, ...	7.1 - HIGH	2008-05-22	2023-02-13
CVE-2007-5686	initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensiti...	4.9 - MEDIUM	2007-10-28	2018-10-15
CVE-2007-5194	The Chroot server in rMake 1.0.11 creates a /dev/zero device file with read/write permissions for the rMake user and the same...	6.9 - MEDIUM	2007-10-04	2018-10-15
CVE-2007-5116	Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dep...	7.5 - HIGH	2007-11-07	2018-10-15
CVE-2007-4131	Directory traversal vulnerability in the contains_dot_dot function in src/names.c in GNU tar allows user-assisted remote atta...	6.8 - MEDIUM	2007-08-25	2018-10-15
CVE-2007-4029	libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service vi...	6.8 - MEDIUM	2007-07-26	2018-10-15
CVE-2007-3106	lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial...	6.8 - MEDIUM	2007-07-26	2023-11-07
CVE-2007-1352	Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to exe...	3.8 - LOW	2007-04-06	2018-10-16
CVE-2007-1351	Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 ...	8.5 - HIGH	2007-04-06	2018-10-16
CVE-2007-0536	The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with in...	7.2 - HIGH	2007-01-27	2017-07-29
CVE-2006-6235	A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attacker...	10 - HIGH	2006-12-07	2018-10-17