RSS   Podatności dla 'Immunix'   RSS

2003-06-16
 
CVE-2002-1565

 

 
Buffer overflow in url_filename function for wget 1.8.1 allows attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long URL.

 
2002-03-15
 
CVE-2002-0083

 

 
Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.

 
2001-07-18
 
CVE-2001-1030

 

 
Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.

 
2001-10-18
 
CVE-2001-0738

 

 
LogLine function in klogd in sysklogd 1.3 in various Linux distributions allows an attacker to cause a denial of service (hang) by causing null bytes to be placed in log messages.

 
 
CVE-2001-0736

CWE-Other
 

 
Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack.

 
2001-09-20
 
CVE-2001-0641

 

 
Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option.

 
2001-06-27
 
CVE-2001-0473

 

 
Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.

 
 
CVE-2001-0416

 

 
sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools.

 
2001-03-26
 
CVE-2001-0170

 

 
glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.

 
2001-03-12
 
CVE-2001-0143

 

 
vpop3d program in linuxconf 1.23r and earlier allows local users to overwrite arbitrary files via a symlink attack.

 


Copyright 2024, cxsecurity.com

 

Back to Top