Linux
by Red Hat
CVEs (233)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0336 | 0.03 | — | 0.01 | Apr 21, 2000 | Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack. | |||
| CVE-2000-0263 | 0.03 | — | 0.01 | Apr 16, 2000 | The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request. | |||
| CVE-2000-0286 | 0.03 | — | 0.01 | Apr 16, 2000 | X fontserver xfs allows local users to cause a denial of service via malformed input to the server. | |||
| CVE-2000-0229 | 0.03 | — | 0.01 | Mar 22, 2000 | gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root. | |||
| CVE-2000-0230 | 0.03 | — | 0.01 | Mar 13, 2000 | Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable. | |||
| CVE-2000-0170 | 0.03 | — | 0.02 | Feb 26, 2000 | Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable. | |||
| CVE-2000-0219 | 0.03 | — | 0.01 | Feb 23, 2000 | Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt. | |||
| CVE-2000-0052 | 0.03 | — | 0.01 | Jan 4, 2000 | Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack. | |||
| CVE-1999-0997 | 0.03 | — | 0.06 | Dec 20, 1999 | wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress. | |||
| CVE-1999-0986 | 0.03 | — | 0.04 | Dec 8, 1999 | The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option. | |||
| CVE-2000-0531 | 0.03 | — | 0.01 | Nov 23, 1999 | Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets. | |||
| CVE-1999-0704 | 0.03 | — | 0.04 | Sep 16, 1999 | Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others. | |||
| CVE-1999-0705 | 0.03 | — | 0.05 | Sep 1, 1999 | Buffer overflow in INN inews program. | |||
| CVE-1999-0768 | 0.03 | — | 0.02 | Aug 25, 1999 | Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable. | |||
| CVE-1999-0769 | 0.03 | — | 0.01 | Aug 25, 1999 | Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable. | |||
| CVE-2000-0118 | 0.03 | — | 0.01 | Jun 9, 1999 | The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing. | |||
| CVE-1999-0804 | 0.03 | — | 0.06 | Jun 1, 1999 | Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths. | |||
| CVE-1999-0433 | 0.03 | — | 0.01 | Mar 21, 1999 | XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | |||
| CVE-1999-0405 | 0.03 | — | 0.01 | Feb 18, 1999 | A buffer overflow in lsof allows local users to obtain root privilege. | |||
| CVE-1999-1490 | 0.03 | — | 0.01 | May 28, 1998 | xosview 1.5.1 in Red Hat 5.1 allows local users to gain root access via a long HOME environmental variable. |
- CVE-2000-0336Apr 21, 2000risk 0.03cvss —epss 0.01
Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.
- CVE-2000-0263Apr 16, 2000risk 0.03cvss —epss 0.01
The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request.
- CVE-2000-0286Apr 16, 2000risk 0.03cvss —epss 0.01
X fontserver xfs allows local users to cause a denial of service via malformed input to the server.
- CVE-2000-0229Mar 22, 2000risk 0.03cvss —epss 0.01
gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.
- CVE-2000-0230Mar 13, 2000risk 0.03cvss —epss 0.01
Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable.
- CVE-2000-0170Feb 26, 2000risk 0.03cvss —epss 0.02
Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable.
- CVE-2000-0219Feb 23, 2000risk 0.03cvss —epss 0.01
Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt.
- CVE-2000-0052Jan 4, 2000risk 0.03cvss —epss 0.01
Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.
- CVE-1999-0997Dec 20, 1999risk 0.03cvss —epss 0.06
wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
- CVE-1999-0986Dec 8, 1999risk 0.03cvss —epss 0.04
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
- CVE-2000-0531Nov 23, 1999risk 0.03cvss —epss 0.01
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.
- CVE-1999-0704Sep 16, 1999risk 0.03cvss —epss 0.04
Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.
- CVE-1999-0705Sep 1, 1999risk 0.03cvss —epss 0.05
Buffer overflow in INN inews program.
- CVE-1999-0768Aug 25, 1999risk 0.03cvss —epss 0.02
Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.
- CVE-1999-0769Aug 25, 1999risk 0.03cvss —epss 0.01
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
- CVE-2000-0118Jun 9, 1999risk 0.03cvss —epss 0.01
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
- CVE-1999-0804Jun 1, 1999risk 0.03cvss —epss 0.06
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
- CVE-1999-0433Mar 21, 1999risk 0.03cvss —epss 0.01
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
- CVE-1999-0405Feb 18, 1999risk 0.03cvss —epss 0.01
A buffer overflow in lsof allows local users to obtain root privilege.
- CVE-1999-1490May 28, 1998risk 0.03cvss —epss 0.01
xosview 1.5.1 in Red Hat 5.1 allows local users to gain root access via a long HOME environmental variable.
Page 4 of 12