Wolfram Research : Security Vulnerabilities, CVEs,
Mathematica 7, when running on Linux, allows local users to overwrite arbitrary files via a symlink attack on (1) files within /tmp/MathLink/ or (2) /tmp/fonts$$.conf.
Max CVSS
1.9
EPSS Score
0.04%
Published
2010-05-24
Updated
2018-10-10
Directory traversal vulnerability in Wolfram Research webMathematica 1.0.0 and 1.0.0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the MSPStoreID parameter.
Max CVSS
5.0
EPSS Score
3.47%
Published
2002-10-04
Updated
2008-09-05
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to bypass access control (specified by the -restrict argument) and steal a license via a client request that includes the name of a host that is allowed to obtain the license.
Max CVSS
7.5
EPSS Score
0.42%
Published
2002-02-13
Updated
2017-12-19
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents users from making license requests.
Max CVSS
5.0
EPSS Score
0.73%
Published
2001-07-30
Updated
2017-12-19
4 vulnerabilities found