RSS   Vulnerabilities for 'Linuxconf'   RSS

2003-04-02
 
CVE-2002-1506

 

 
Buffer overflow in Linuxconf before 1.28r4 allows local users to execute arbitrary code via a long LINUXCONF_LANG environment variable, which overflows an error string that is generated.

 
2002-11-12
 
CVE-2002-1278

 

 
The mailconf module in Linuxconf 1.24, and other versions before 1.28, on Conectiva Linux 6.0 through 8, and possibly other distributions, generates the Sendmail configuration file (sendmail.cf) in a way that configures Sendmail to run as an open mail relay, which allows remote attackers to send Spam email.

 


Copyright 2024, cxsecurity.com

 

Back to Top