Linux
by Red Hat
CVEs (233)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0358 | 0.00 | — | 0.02 | Dec 3, 1999 | ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program. | |||
| CVE-1999-0832 | 0.00 | — | 0.03 | Nov 9, 1999 | Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname. | |||
| CVE-2000-0356 | 0.00 | — | 0.00 | Oct 13, 1999 | Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts. | |||
| CVE-1999-1346 | 0.00 | — | 0.01 | Oct 7, 1999 | PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file. | |||
| CVE-1999-1347 | 0.00 | — | 0.00 | Oct 7, 1999 | Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm. | |||
| CVE-1999-1542 | 0.00 | — | 0.03 | Oct 4, 1999 | RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command. | |||
| CVE-1999-0872 | 0.00 | — | 0.00 | Aug 25, 1999 | Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. | |||
| CVE-2000-0355 | 0.00 | — | 0.01 | Aug 21, 1999 | pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files. | |||
| CVE-1999-0740 | 0.00 | — | 0.02 | Aug 19, 1999 | Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable. | |||
| CVE-1999-0814 | 0.00 | — | 0.02 | Aug 11, 1999 | Red Hat pump DHCP client allows remote attackers to gain root access in some configurations. | |||
| CVE-1999-1348 | 0.00 | — | 0.00 | Jun 30, 1999 | Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service. | |||
| CVE-1999-0748 | 0.00 | — | 0.01 | Jun 24, 1999 | Buffer overflows in Red Hat net-tools package. | |||
| CVE-1999-1496 | 0.00 | — | 0.01 | Jun 8, 1999 | Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist. | |||
| CVE-2000-0365 | 0.00 | — | 0.00 | Jun 1, 1999 | Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices. | |||
| CVE-2000-0364 | 0.00 | — | 0.00 | Jun 1, 1999 | screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys. | |||
| CVE-1999-0434 | 0.00 | — | 0.01 | Mar 30, 1999 | XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | |||
| CVE-1999-0390 | 0.00 | — | 0.00 | Jan 4, 1999 | Buffer overflow in Dosemu Slang library in Linux. | |||
| CVE-1999-0798 | 0.00 | — | 0.02 | Dec 4, 1998 | Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type. | |||
| CVE-1999-1288 | 0.00 | — | 0.00 | Nov 19, 1998 | Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program. | |||
| CVE-1999-1048 | 0.00 | — | 0.01 | Sep 5, 1998 | Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that… |
- CVE-2000-0358Dec 3, 1999risk 0.00cvss —epss 0.02
ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program.
- CVE-1999-0832Nov 9, 1999risk 0.00cvss —epss 0.03
Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname.
- CVE-2000-0356Oct 13, 1999risk 0.00cvss —epss 0.00
Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts.
- CVE-1999-1346Oct 7, 1999risk 0.00cvss —epss 0.01
PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file.
- CVE-1999-1347Oct 7, 1999risk 0.00cvss —epss 0.00
Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm.
- CVE-1999-1542Oct 4, 1999risk 0.00cvss —epss 0.03
RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command.
- CVE-1999-0872Aug 25, 1999risk 0.00cvss —epss 0.00
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
- CVE-2000-0355Aug 21, 1999risk 0.00cvss —epss 0.01
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.
- CVE-1999-0740Aug 19, 1999risk 0.00cvss —epss 0.02
Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.
- CVE-1999-0814Aug 11, 1999risk 0.00cvss —epss 0.02
Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.
- CVE-1999-1348Jun 30, 1999risk 0.00cvss —epss 0.00
Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.
- CVE-1999-0748Jun 24, 1999risk 0.00cvss —epss 0.01
Buffer overflows in Red Hat net-tools package.
- CVE-1999-1496Jun 8, 1999risk 0.00cvss —epss 0.01
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
- CVE-2000-0365Jun 1, 1999risk 0.00cvss —epss 0.00
Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices.
- CVE-2000-0364Jun 1, 1999risk 0.00cvss —epss 0.00
screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys.
- CVE-1999-0434Mar 30, 1999risk 0.00cvss —epss 0.01
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
- CVE-1999-0390Jan 4, 1999risk 0.00cvss —epss 0.00
Buffer overflow in Dosemu Slang library in Linux.
- CVE-1999-0798Dec 4, 1998risk 0.00cvss —epss 0.02
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
- CVE-1999-1288Nov 19, 1998risk 0.00cvss —epss 0.00
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
- CVE-1999-1048Sep 5, 1998risk 0.00cvss —epss 0.01
Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that…
Page 11 of 12