Arkeia
CVEs (5)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2001-0967 | Cri | 0.64 | 9.8 | 0.00 | Aug 31, 2001 | Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing. | |
| CVE-1999-1534 | 0.03 | — | 0.00 | Sep 23, 1999 | Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environmental variable. | ||
| CVE-2001-0968 | 0.00 | — | 0.01 | Aug 31, 2001 | Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by default, which allows local and remote users to gain privileges. | ||
| CVE-2001-0988 | 0.00 | — | 0.00 | Jul 23, 2001 | Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions, which could allow local users to overwrite the files or obtain sensitive information. | ||
| CVE-1999-0788 | 0.00 | — | 0.01 | Sep 26, 1999 | Arkiea nlservd allows remote attackers to conduct a denial of service. |
- risk 0.64cvss 9.8epss 0.00
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.
- CVE-1999-1534Sep 23, 1999risk 0.03cvss —epss 0.00
Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environmental variable.
- CVE-2001-0968Aug 31, 2001risk 0.00cvss —epss 0.01
Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by default, which allows local and remote users to gain privileges.
- CVE-2001-0988Jul 23, 2001risk 0.00cvss —epss 0.00
Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions, which could allow local users to overwrite the files or obtain sensitive information.
- CVE-1999-0788Sep 26, 1999risk 0.00cvss —epss 0.01
Arkiea nlservd allows remote attackers to conduct a denial of service.