Astaro Security Linux vulnerabilities

8 known vulnerabilities affecting astaro/security_linux.

Total CVEs
8
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM3LOW2

Vulnerabilities

Page 1 of 1
CVE-2005-3985HIGHCVSS 7.8v6.001v6.002+1 more2005-12-04
CVE-2005-3985 [HIGH] CVE-2005-3985: The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux before 6.102 all The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux before 6.102 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2
nvd
CVE-2005-3100MEDIUMCVSS 5.0v4.0272005-09-28
CVE-2005-3100 [MEDIUM] CVE-2005-3100: Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause a denial of service.
nvd
CVE-2005-2729HIGHCVSS 7.5PoCv6.0012005-08-30
CVE-2005-2729 [HIGH] CVE-2005-2729: The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localh The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.
nvd
CVE-2005-2730MEDIUMCVSS 5.0v6.0012005-08-30
CVE-2005-2730 [MEDIUM] CVE-2005-2730: The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information via an invalid request, which reveals a Proxy-authorization string in an error message.
nvd
CVE-2005-2731LOWCVSS 2.1v6.0012005-08-30
CVE-2005-2731 [LOW] CVE-2005-2731: Directory traversal vulnerability in Astaro Security Linux 6.0, when using Webmin, allows remote aut Directory traversal vulnerability in Astaro Security Linux 6.0, when using Webmin, allows remote authenticated webmin users to read arbitrary files via a .. (dot dot) in the wfe_download parameter to index.fpl.
nvd
CVE-2004-2251MEDIUMCVSS 5.0v4.017v4.018+5 more2004-12-31
CVE-2004-2251 [MEDIUM] CVE-2004-2251: The PPTP server in Astaro Security Linux before 4.024 provides information about its version, which The PPTP server in Astaro Security Linux before 4.024 provides information about its version, which makes it easier for remote attackers to construct specialized attacks.
nvd
CVE-2002-1737LOWCVSS 2.1v2.012002-12-31
CVE-2002-1737 [LOW] CVE-2002-1737: Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users t Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files.
nvd
CVE-2002-0029HIGHCVSS 7.5v2.0.23v2.0.24+7 more2002-11-29
CVE-2002-0029 [HIGH] CVE-2002-0029: Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derive Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability t
nvd