Vendor CVEs
Red Hat
All CVEs
3,692 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-1329 | 0.00 | — | 0.00 | Dec 31, 1999 | Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges. | |||
| CVE-1999-1331 | 0.00 | — | 0.00 | Dec 31, 1999 | netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the interface. | |||
| CVE-1999-1333 | 0.00 | — | 0.03 | Dec 31, 1999 | automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded. | |||
| CVE-1999-1332 | 0.00 | — | 0.00 | Dec 31, 1999 | gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file. | |||
| CVE-1999-1327 | 0.00 | — | 0.00 | Dec 31, 1999 | Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable. | |||
| CVE-1999-1335 | 0.00 | — | 0.02 | Dec 31, 1999 | snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information. | |||
| CVE-1999-1330 | 0.00 | — | 0.00 | Dec 31, 1999 | The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf. | |||
| CVE-2000-0357 | 0.00 | — | 0.02 | Dec 3, 1999 | ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys. | |||
| CVE-2000-0358 | 0.00 | — | 0.02 | Dec 3, 1999 | ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program. | |||
| CVE-1999-0832 | 0.00 | — | 0.03 | Nov 9, 1999 | Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname. | |||
| CVE-2000-0356 | 0.00 | — | 0.00 | Oct 13, 1999 | Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts. | |||
| CVE-1999-1346 | 0.00 | — | 0.01 | Oct 7, 1999 | PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file. | |||
| CVE-1999-1347 | 0.00 | — | 0.00 | Oct 7, 1999 | Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm. | |||
| CVE-1999-1542 | 0.00 | — | 0.03 | Oct 4, 1999 | RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command. | |||
| CVE-1999-0872 | 0.00 | — | 0.00 | Aug 25, 1999 | Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. | |||
| CVE-2000-0355 | 0.00 | — | 0.01 | Aug 21, 1999 | pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files. | |||
| CVE-1999-0740 | 0.00 | — | 0.02 | Aug 19, 1999 | Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable. | |||
| CVE-1999-0814 | 0.00 | — | 0.02 | Aug 11, 1999 | Red Hat pump DHCP client allows remote attackers to gain root access in some configurations. | |||
| CVE-1999-1348 | 0.00 | — | 0.00 | Jun 30, 1999 | Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service. | |||
| CVE-1999-0748 | 0.00 | — | 0.01 | Jun 24, 1999 | Buffer overflows in Red Hat net-tools package. | |||
| CVE-1999-1496 | 0.00 | — | 0.01 | Jun 8, 1999 | Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist. | |||
| CVE-2000-0364 | 0.00 | — | 0.00 | Jun 1, 1999 | screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys. | |||
| CVE-2000-0365 | 0.00 | — | 0.00 | Jun 1, 1999 | Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices. | |||
| CVE-1999-0434 | 0.00 | — | 0.01 | Mar 30, 1999 | XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | |||
| CVE-1999-0390 | 0.00 | — | 0.00 | Jan 4, 1999 | Buffer overflow in Dosemu Slang library in Linux. | |||
| CVE-1999-0798 | 0.00 | — | 0.02 | Dec 4, 1998 | Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type. | |||
| CVE-1999-1288 | 0.00 | — | 0.00 | Nov 19, 1998 | Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program. | |||
| CVE-1999-1048 | 0.00 | — | 0.01 | Sep 5, 1998 | Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that… | |||
| CVE-1999-1406 | 0.00 | — | 0.00 | Jul 29, 1998 | dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a denial of service (crash) by redirecting fd 1 (stdout) to the kernel. | |||
| CVE-1999-0010 | 0.00 | — | 0.02 | Apr 8, 1998 | Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | |||
| CVE-1999-1407 | 0.00 | — | 0.00 | Mar 9, 1998 | ifdhcpc-done script for configuring DHCP on Red Hat Linux 5 allows local users to append text to arbitrary files via a symlink attack on the dhcplog file. | |||
| CVE-1999-1095 | 0.00 | — | 0.00 | Oct 6, 1997 | sort creates temporary files and follows symbolic links, which allows local users to modify arbitrary files that are writable by the user running sort, as observed in updatedb and other programs that use sort. | |||
| CVE-1999-1182 | 0.00 | — | 0.00 | Jul 17, 1997 | Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error. | |||
| CVE-1999-0037 | 0.00 | — | 0.04 | May 21, 1997 | Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail. | |||
| CVE-1999-0318 | 0.00 | — | 0.01 | Mar 1, 1997 | Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable. | |||
| CVE-1999-0868 | 0.00 | — | 0.01 | Feb 20, 1997 | ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN. | |||
| CVE-1999-1299 | 0.00 | — | 0.02 | Feb 3, 1997 | rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file. | |||
| CVE-1999-0297 | 0.00 | — | 0.00 | Dec 12, 1996 | Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable. | |||
| CVE-1999-0234 | 0.00 | — | 0.00 | Oct 8, 1996 | Bash treats any character with a value of 255 as a command separator. | |||
| CVE-1999-0131 | 0.00 | — | 0.01 | Sep 11, 1996 | Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. | |||
| CVE-1999-1572 | 0.00 | — | 0.01 | Jul 16, 1996 | cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files. | |||
| CVE-1999-1186 | 0.00 | — | 0.00 | Jan 2, 1996 | rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter. |
- CVE-1999-1329Dec 31, 1999risk 0.00cvss —epss 0.00
Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges.
- CVE-1999-1331Dec 31, 1999risk 0.00cvss —epss 0.00
netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the interface.
- CVE-1999-1333Dec 31, 1999risk 0.00cvss —epss 0.03
automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded.
- CVE-1999-1332Dec 31, 1999risk 0.00cvss —epss 0.00
gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.
- CVE-1999-1327Dec 31, 1999risk 0.00cvss —epss 0.00
Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable.
- CVE-1999-1335Dec 31, 1999risk 0.00cvss —epss 0.02
snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information.
- CVE-1999-1330Dec 31, 1999risk 0.00cvss —epss 0.00
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf.
- CVE-2000-0357Dec 3, 1999risk 0.00cvss —epss 0.02
ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.
- CVE-2000-0358Dec 3, 1999risk 0.00cvss —epss 0.02
ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program.
- CVE-1999-0832Nov 9, 1999risk 0.00cvss —epss 0.03
Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname.
- CVE-2000-0356Oct 13, 1999risk 0.00cvss —epss 0.00
Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts.
- CVE-1999-1346Oct 7, 1999risk 0.00cvss —epss 0.01
PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file.
- CVE-1999-1347Oct 7, 1999risk 0.00cvss —epss 0.00
Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm.
- CVE-1999-1542Oct 4, 1999risk 0.00cvss —epss 0.03
RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command.
- CVE-1999-0872Aug 25, 1999risk 0.00cvss —epss 0.00
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
- CVE-2000-0355Aug 21, 1999risk 0.00cvss —epss 0.01
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.
- CVE-1999-0740Aug 19, 1999risk 0.00cvss —epss 0.02
Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.
- CVE-1999-0814Aug 11, 1999risk 0.00cvss —epss 0.02
Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.
- CVE-1999-1348Jun 30, 1999risk 0.00cvss —epss 0.00
Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.
- CVE-1999-0748Jun 24, 1999risk 0.00cvss —epss 0.01
Buffer overflows in Red Hat net-tools package.
- CVE-1999-1496Jun 8, 1999risk 0.00cvss —epss 0.01
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
- CVE-2000-0364Jun 1, 1999risk 0.00cvss —epss 0.00
screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys.
- CVE-2000-0365Jun 1, 1999risk 0.00cvss —epss 0.00
Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices.
- CVE-1999-0434Mar 30, 1999risk 0.00cvss —epss 0.01
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
- CVE-1999-0390Jan 4, 1999risk 0.00cvss —epss 0.00
Buffer overflow in Dosemu Slang library in Linux.
- CVE-1999-0798Dec 4, 1998risk 0.00cvss —epss 0.02
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
- CVE-1999-1288Nov 19, 1998risk 0.00cvss —epss 0.00
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
- CVE-1999-1048Sep 5, 1998risk 0.00cvss —epss 0.01
Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that…
- CVE-1999-1406Jul 29, 1998risk 0.00cvss —epss 0.00
dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a denial of service (crash) by redirecting fd 1 (stdout) to the kernel.
- CVE-1999-0010Apr 8, 1998risk 0.00cvss —epss 0.02
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
- CVE-1999-1407Mar 9, 1998risk 0.00cvss —epss 0.00
ifdhcpc-done script for configuring DHCP on Red Hat Linux 5 allows local users to append text to arbitrary files via a symlink attack on the dhcplog file.
- CVE-1999-1095Oct 6, 1997risk 0.00cvss —epss 0.00
sort creates temporary files and follows symbolic links, which allows local users to modify arbitrary files that are writable by the user running sort, as observed in updatedb and other programs that use sort.
- CVE-1999-1182Jul 17, 1997risk 0.00cvss —epss 0.00
Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error.
- CVE-1999-0037May 21, 1997risk 0.00cvss —epss 0.04
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail.
- CVE-1999-0318Mar 1, 1997risk 0.00cvss —epss 0.01
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
- CVE-1999-0868Feb 20, 1997risk 0.00cvss —epss 0.01
ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN.
- CVE-1999-1299Feb 3, 1997risk 0.00cvss —epss 0.02
rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file.
- CVE-1999-0297Dec 12, 1996risk 0.00cvss —epss 0.00
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
- CVE-1999-0234Oct 8, 1996risk 0.00cvss —epss 0.00
Bash treats any character with a value of 255 as a command separator.
- CVE-1999-0131Sep 11, 1996risk 0.00cvss —epss 0.01
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.
- CVE-1999-1572Jul 16, 1996risk 0.00cvss —epss 0.01
cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.
- CVE-1999-1186Jan 2, 1996risk 0.00cvss —epss 0.00
rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter.
Page 74 of 74