Vulnerabilities for UNIX (...) - CXSECURITY.COM

Vulnerabilities for 'UNIX'

2001-06-27

CVE-2001-0369

CWE-Other

Buffer overflow in lpsched on DGUX version R4.20MU06 and MU02 allows a local attacker to obtain root access via a long command line argument (non-existent printer name).

2001-03-12

CVE-2001-0134

Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary commands via a long user name.

2000-11-14

CVE-2000-0845

kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by specifying the full file name in the initialization packet.

2001-03-12

CVE-2000-0315

traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.

CVE-2000-0314

traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.

1999-01-25

CVE-1999-1458

CWE-Other

Buffer overflow in at program in Digital UNIX 4.0 allows local users to gain root privileges via a long command line argument.

1996-11-17

CVE-1999-1221

CWE-Other

dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file.

1997-11-12

CVE-1999-1210

CWE-Other

xterm in Digital UNIX 4.0B with patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is created when xterm is called with a DISPLAY environmental variable set to a display that xterm cannot access.

1998-05-07

CVE-1999-1044

Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local users to gain privileges.

1999-02-15

CVE-1999-0714

Vulnerability in Compaq Tru64 UNIX edauth command.

Copyright 2024, cxsecurity.com