Linux
by Red Hat
CVEs (233)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0606 | 0.00 | — | 0.01 | Jun 21, 2000 | Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter. | |||
| CVE-2000-0391 | 0.00 | — | 0.04 | May 16, 2000 | Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges. | |||
| CVE-2000-0392 | 0.00 | — | 0.00 | May 16, 2000 | Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges. | |||
| CVE-2000-0390 | 0.00 | — | 0.04 | May 16, 2000 | Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges. | |||
| CVE-1999-0706 | 0.00 | — | 0.02 | Apr 27, 2000 | Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables. | |||
| CVE-2000-0289 | 0.00 | — | 0.03 | Mar 27, 2000 | IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection. | |||
| CVE-2000-0184 | 0.00 | — | 0.00 | Mar 9, 2000 | Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords. | |||
| CVE-2000-0186 | 0.00 | — | 0.00 | Feb 28, 2000 | Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument. | |||
| CVE-2000-0196 | 0.00 | — | 0.03 | Feb 28, 2000 | Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message. | |||
| CVE-2000-0093 | 0.00 | — | 0.01 | Jan 21, 2000 | An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5. | |||
| CVE-1999-0894 | 0.00 | — | 0.02 | Jan 4, 2000 | Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals. | |||
| CVE-1999-1333 | 0.00 | — | 0.03 | Dec 31, 1999 | automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded. | |||
| CVE-1999-1329 | 0.00 | — | 0.00 | Dec 31, 1999 | Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges. | |||
| CVE-1999-1327 | 0.00 | — | 0.00 | Dec 31, 1999 | Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable. | |||
| CVE-1999-1332 | 0.00 | — | 0.00 | Dec 31, 1999 | gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file. | |||
| CVE-1999-1328 | 0.00 | — | 0.00 | Dec 31, 1999 | linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files and gain root access via a symlink attack. | |||
| CVE-1999-1331 | 0.00 | — | 0.00 | Dec 31, 1999 | netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the interface. | |||
| CVE-1999-1335 | 0.00 | — | 0.02 | Dec 31, 1999 | snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information. | |||
| CVE-1999-1330 | 0.00 | — | 0.00 | Dec 31, 1999 | The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf. | |||
| CVE-2000-0357 | 0.00 | — | 0.02 | Dec 3, 1999 | ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys. |
- CVE-2000-0606Jun 21, 2000risk 0.00cvss —epss 0.01
Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter.
- CVE-2000-0391May 16, 2000risk 0.00cvss —epss 0.04
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.
- CVE-2000-0392May 16, 2000risk 0.00cvss —epss 0.00
Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.
- CVE-2000-0390May 16, 2000risk 0.00cvss —epss 0.04
Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.
- CVE-1999-0706Apr 27, 2000risk 0.00cvss —epss 0.02
Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables.
- CVE-2000-0289Mar 27, 2000risk 0.00cvss —epss 0.03
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.
- CVE-2000-0184Mar 9, 2000risk 0.00cvss —epss 0.00
Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.
- CVE-2000-0186Feb 28, 2000risk 0.00cvss —epss 0.00
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument.
- CVE-2000-0196Feb 28, 2000risk 0.00cvss —epss 0.03
Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message.
- CVE-2000-0093Jan 21, 2000risk 0.00cvss —epss 0.01
An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5.
- CVE-1999-0894Jan 4, 2000risk 0.00cvss —epss 0.02
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals.
- CVE-1999-1333Dec 31, 1999risk 0.00cvss —epss 0.03
automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded.
- CVE-1999-1329Dec 31, 1999risk 0.00cvss —epss 0.00
Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges.
- CVE-1999-1327Dec 31, 1999risk 0.00cvss —epss 0.00
Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable.
- CVE-1999-1332Dec 31, 1999risk 0.00cvss —epss 0.00
gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.
- CVE-1999-1328Dec 31, 1999risk 0.00cvss —epss 0.00
linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files and gain root access via a symlink attack.
- CVE-1999-1331Dec 31, 1999risk 0.00cvss —epss 0.00
netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the interface.
- CVE-1999-1335Dec 31, 1999risk 0.00cvss —epss 0.02
snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information.
- CVE-1999-1330Dec 31, 1999risk 0.00cvss —epss 0.00
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf.
- CVE-2000-0357Dec 3, 1999risk 0.00cvss —epss 0.02
ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.
Page 10 of 12