VYPR

Linux

by SUSE S.A.

CVEs (212)

  • CVE-2001-0109Mar 12, 2001
    risk 0.03cvss epss 0.01

    rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file.

  • CVE-2000-1095Jan 9, 2001
    risk 0.03cvss epss 0.01

    modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.

  • CVE-2000-1134Jan 9, 2001
    risk 0.03cvss epss 0.01

    Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.

  • CVE-2000-0438May 22, 2000
    risk 0.03cvss epss 0.01

    Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.

  • CVE-2000-0293May 2, 2000
    risk 0.03cvss epss 0.01

    aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.

  • CVE-2000-0340Apr 29, 2000
    risk 0.03cvss epss 0.01

    Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable.

  • CVE-2000-0229Mar 22, 2000
    risk 0.03cvss epss 0.01

    gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.

  • CVE-2000-0231Mar 16, 2000
    risk 0.03cvss epss 0.01

    Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges.

  • CVE-2000-0218Feb 3, 2000
    risk 0.03cvss epss 0.01

    Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.

  • CVE-2000-0362Oct 22, 1999
    risk 0.03cvss epss 0.01

    Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges.

  • CVE-1999-0906Sep 23, 1999
    risk 0.03cvss epss 0.01

    Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable.

  • CVE-1999-0768Aug 25, 1999
    risk 0.03cvss epss 0.02

    Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.

  • CVE-1999-0746Aug 16, 1999
    risk 0.03cvss epss 0.06

    A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service.

  • CVE-1999-0804Jun 1, 1999
    risk 0.03cvss epss 0.06

    Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.

  • CVE-1999-0433Mar 21, 1999
    risk 0.03cvss epss 0.01

    XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

  • CVE-1999-0409Mar 4, 1999
    risk 0.03cvss epss 0.01

    Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access.

  • CVE-1999-0405Feb 18, 1999
    risk 0.03cvss epss 0.01

    A buffer overflow in lsof allows local users to obtain root privilege.

  • CVE-1999-0363Feb 2, 1999
    risk 0.03cvss epss 0.01

    SuSE 5.2 PLP lpc program has a buffer overflow that leads to root compromise.

  • CVE-2005-0488Jun 14, 2005
    risk 0.01cvss epss 0.17

    Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

  • CVE-2004-0947Feb 9, 2005
    risk 0.01cvss epss 0.07

    Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames.

Page 3 of 11