Linux
by Red Hat
CVEs (233)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-0116 | 0.00 | — | 0.00 | Mar 12, 2001 | gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack. | |||
| CVE-2001-0140 | 0.00 | — | 0.00 | Mar 12, 2001 | arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations. | |||
| CVE-2001-0120 | 0.00 | — | 0.00 | Mar 12, 2001 | useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack. | |||
| CVE-2001-0138 | 0.00 | — | 0.00 | Mar 12, 2001 | privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack. | |||
| CVE-2000-1189 | 0.00 | — | 0.00 | Jan 9, 2001 | Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain privileges. | |||
| CVE-2000-0956 | 0.00 | — | 0.00 | Dec 19, 2000 | cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions. | |||
| CVE-2000-0963 | 0.00 | — | 0.01 | Dec 19, 2000 | Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS. | |||
| CVE-2000-0934 | 0.00 | — | 0.00 | Dec 19, 2000 | Glint in Red Hat Linux 5.2 allows local users to overwrite arbitrary files and cause a denial of service via a symlink attack. | |||
| CVE-2000-1010 | 0.00 | — | 0.05 | Dec 11, 2000 | Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. | |||
| CVE-2000-0867 | 0.00 | — | 0.00 | Nov 14, 2000 | Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages. | |||
| CVE-2000-0715 | 0.00 | — | 0.00 | Oct 20, 2000 | DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file. | |||
| CVE-2000-0750 | 0.00 | — | 0.02 | Oct 20, 2000 | Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name. | |||
| CVE-2000-0701 | 0.00 | — | 0.00 | Oct 20, 2000 | The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges. | |||
| CVE-2000-0031 | 0.00 | — | 0.00 | Oct 20, 2000 | The initscripts package in Red Hat Linux allows local users to gain privileges via a symlink attack. | |||
| CVE-2000-1214 | 0.00 | — | 0.00 | Oct 18, 2000 | Buffer overflows in the (1) outpack or (2) buf variables of ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, may allow local users to gain privileges. | |||
| CVE-2000-1213 | 0.00 | — | 0.02 | Oct 18, 2000 | ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping's exposure to bugs that otherwise would occur at lower privileges. | |||
| CVE-2000-1207 | 0.00 | — | 0.00 | Sep 30, 2000 | userhelper in the usermode package on Red Hat Linux executes non-setuid programs as root, which does not activate the security measures in glibc and allows the programs to be exploited via format string vulnerabilities in glibc via the LANG or LC_ALL environment variables… | |||
| CVE-2000-0633 | 0.00 | — | 0.00 | Jul 18, 2000 | Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system. | |||
| CVE-2000-0566 | 0.00 | — | 0.00 | Jul 3, 2000 | makewhatis in Linux man package allows local users to overwrite files via a symlink attack. | |||
| CVE-2000-0606 | 0.00 | — | 0.01 | Jun 21, 2000 | Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter. |
- CVE-2001-0116Mar 12, 2001risk 0.00cvss —epss 0.00
gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.
- CVE-2001-0140Mar 12, 2001risk 0.00cvss —epss 0.00
arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
- CVE-2001-0120Mar 12, 2001risk 0.00cvss —epss 0.00
useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack.
- CVE-2001-0138Mar 12, 2001risk 0.00cvss —epss 0.00
privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.
- CVE-2000-1189Jan 9, 2001risk 0.00cvss —epss 0.00
Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain privileges.
- CVE-2000-0956Dec 19, 2000risk 0.00cvss —epss 0.00
cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions.
- CVE-2000-0963Dec 19, 2000risk 0.00cvss —epss 0.01
Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS.
- CVE-2000-0934Dec 19, 2000risk 0.00cvss —epss 0.00
Glint in Red Hat Linux 5.2 allows local users to overwrite arbitrary files and cause a denial of service via a symlink attack.
- CVE-2000-1010Dec 11, 2000risk 0.00cvss —epss 0.05
Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters.
- CVE-2000-0867Nov 14, 2000risk 0.00cvss —epss 0.00
Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
- CVE-2000-0715Oct 20, 2000risk 0.00cvss —epss 0.00
DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file.
- CVE-2000-0750Oct 20, 2000risk 0.00cvss —epss 0.02
Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name.
- CVE-2000-0701Oct 20, 2000risk 0.00cvss —epss 0.00
The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges.
- CVE-2000-0031Oct 20, 2000risk 0.00cvss —epss 0.00
The initscripts package in Red Hat Linux allows local users to gain privileges via a symlink attack.
- CVE-2000-1214Oct 18, 2000risk 0.00cvss —epss 0.00
Buffer overflows in the (1) outpack or (2) buf variables of ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, may allow local users to gain privileges.
- CVE-2000-1213Oct 18, 2000risk 0.00cvss —epss 0.02
ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping's exposure to bugs that otherwise would occur at lower privileges.
- CVE-2000-1207Sep 30, 2000risk 0.00cvss —epss 0.00
userhelper in the usermode package on Red Hat Linux executes non-setuid programs as root, which does not activate the security measures in glibc and allows the programs to be exploited via format string vulnerabilities in glibc via the LANG or LC_ALL environment variables…
- CVE-2000-0633Jul 18, 2000risk 0.00cvss —epss 0.00
Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system.
- CVE-2000-0566Jul 3, 2000risk 0.00cvss —epss 0.00
makewhatis in Linux man package allows local users to overwrite files via a symlink attack.
- CVE-2000-0606Jun 21, 2000risk 0.00cvss —epss 0.01
Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter.
Page 9 of 12