RSS   Podatności dla 'Openlinux'   RSS

2002-10-28
 
CVE-2002-1199

CWE-Other
 

 
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.

 
2001-12-06
 
CVE-2001-0851

 

 
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.

 
 
CVE-2001-0850

 

 
A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote users to exploit those functions with a buffer overflow.

 
2001-01-09
 
CVE-2000-1134

 

 
Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.

 
2000-12-19
 
CVE-2000-0917

 

 
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.

 
2001-07-21
 
CVE-2000-0892

 

 
Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.

 
2000-11-14
 
CVE-2000-0844

CWE-264
 

 
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

 
2000-07-03
 
CVE-2000-0566

CWE-Other
 

 
makewhatis in Linux man package allows local users to overwrite files via a symlink attack.

 
1999-11-23
 
CVE-2000-0531

CWE-Other
 

 
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.

 
2000-05-31
 
CVE-2000-0530

 

 
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.

 


Copyright 2024, cxsecurity.com

 

Back to Top