Canna
Products
1- 6 CVEs
Recent CVEs
6| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0584 | 0.04 | — | 0.07 | Jul 2, 2000 | Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name. | |||
| CVE-1999-0949 | 0.03 | — | 0.00 | Nov 2, 1999 | Buffer overflow in canuum program for Canna input system allows local users to gain root privileges. | |||
| CVE-1999-0948 | 0.03 | — | 0.00 | Nov 2, 1999 | Buffer overflow in uum program for Canna input system allows local users to gain root privileges. | |||
| CVE-2022-21950 | 0.00 | — | 0.00 | Sep 7, 2022 | A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to… | |||
| CVE-2002-1159 | 0.00 | — | 0.01 | Dec 18, 2002 | Canna 3.6 and earlier does not properly validate requests, which allows remote attackers to cause a denial of service or information leak. | |||
| CVE-2002-1158 | 0.00 | — | 0.00 | Dec 18, 2002 | Buffer overflow in the irw_through function for Canna 3.5b2 and earlier allows local users to execute arbitrary code as the bin user. |
- CVE-2000-0584Jul 2, 2000risk 0.04cvss —epss 0.07
Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name.
- CVE-1999-0949Nov 2, 1999risk 0.03cvss —epss 0.00
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.
- CVE-1999-0948Nov 2, 1999risk 0.03cvss —epss 0.00
Buffer overflow in uum program for Canna input system allows local users to gain root privileges.
- CVE-2022-21950Sep 7, 2022risk 0.00cvss —epss 0.00
A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to…
- CVE-2002-1159Dec 18, 2002risk 0.00cvss —epss 0.01
Canna 3.6 and earlier does not properly validate requests, which allows remote attackers to cause a denial of service or information leak.
- CVE-2002-1158Dec 18, 2002risk 0.00cvss —epss 0.00
Buffer overflow in the irw_through function for Canna 3.5b2 and earlier allows local users to execute arbitrary code as the bin user.