CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

156 matches found

Debian CVE•added 2004/10/20 4:0 a.m.•19 views

CVE-2004-0974

The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files...

2.1CVSS6AI score0.00393EPSS

Exploits0

Debian CVE•added 2004/10/20 4:0 a.m.•24 views

CVE-2004-0976

Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files...

2.1CVSS6AI score0.00427EPSS

Exploits0

Debian CVE•added 2004/10/20 4:0 a.m.•21 views

CVE-2004-0971

The krb5-send-pr script in the kerberos5 krb5 package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files...

2.1CVSS6AI score0.00328EPSS

Exploits0

Debian CVE•added 2004/10/20 4:0 a.m.•24 views

CVE-2004-0966

The 1 autopoint and 2 gettextize scripts in the GNU gettext package 1.14 and later versions, as used in Trustix Secure Linux 1.5 through 2.1 and other operating systems, allows local users to overwrite files via a symlink attack on temporary files...

2.1CVSS5.9AI score0.00399EPSS

Exploits0

CVE•added 2004/10/20 4:0 a.m.•87 views

CVE-2004-0971

The CVE-2004-0971 issue affects the krb5-send-pr script in the krb5 package, allowing local users to overwrite files via a symlink attack on temporary files. Description in the sources notes this vulnerability for Trustix Secure Linux 1.5–2.1 and potentially other OSes. The vulnerability originat...

2.1CVSS5.9AI score0.00328EPSS

Exploits0References8Affected Software1

securityvulns•added 2003/09/25 12:0 a.m.•23 views

[ESA-20030924-026] 'WebTool-userpass' passphrase disclosure vulnerability.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | Guardian Digital Security Advisory September 24, 2003 | | http://www.guardiandigital.com ESA-20030924-026 | | | | Package: WebTool-userpass | | Summary: Passphrase disclosure...

0.5AI score

Exploits0

securityvulns•added 2003/09/16 12:0 a.m.•44 views

[ESA-20030916-023] OpenSSH buffer management error.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | Guardian Digital Security Advisory September 16, 2003 | | http://www.guardiandigital.com ESA-20030916-023 | | | | Packages: openssh, openssh-clients, openssh-server | |...

10CVSS0.6AI score0.09893EPSS

Exploits2

securityvulns•added 2003/03/19 12:0 a.m.•49 views

[ESA-20030318-009] Several 'kernel' vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | EnGarde Secure Linux Security Advisory March 18, 2003 | | http://www.engardelinux.org/ ESA-20030318-009 | | | | Package: kernel | | Summary: several vulnerabilities. |...

7.2CVSS1.4AI score0.73006EPSS

Exploits21

securityvulns•added 2002/10/30 12:0 a.m.•25 views

[ESA-20021029-028] syslog-ng: buffer overflow in macro handling code (UPDATED)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | EnGarde Secure Linux Security Advisory October 29, 2002 | | http://www.engardelinux.org/ ESA-20021029-028 | | | | Package: syslog-ng | | Summary: buffer overflow in macro...

1.4AI score

Exploits0

CVE•added 2002/06/25 4:0 a.m.•45 views

CVE-2001-1240

The CVE-2001-1240 entry concerns Engarde Secure Linux 1.0.1 where the default sudo configuration allows any user in the admin group to execute certain commands that could yield full root access. The documents confirm the affected component is the sudo configuration on Engarde Secure Linux 1.0.1 a...

10CVSS7.3AI score0.0184EPSS

Exploits0References1Affected Software1

Cvelist•added 2002/06/25 4:0 a.m.•19 views

CVE-2001-1240

The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain commands that could be leveraged to gain full root access...

6.9AI score0.0184EPSS

Exploits0References1

CVE•added 2002/06/25 4:0 a.m.•38 views

CVE-2001-1146

AllCommerce with debugging enabled in EnGarde Secure Linux 1.0.1 is affected. The issue stems from creating temporary files with predictable names, enabling local users to perform a symlink attack to modify files. The description in the Connected documents confirms the root cause as predictable t...

1.2CVSS6.5AI score0.00336EPSS

Exploits0References3Affected Software1

Cvelist•added 2002/06/25 4:0 a.m.•14 views

CVE-2001-1146

AllCommerce with debugging enabled in EnGarde Secure Linux 1.0.1 creates temporary files with predictable names, which allows local users to modify files via a symlink attack...

6.1AI score0.00336EPSS

Exploits0References3

Cvelist•added 2002/03/09 5:0 a.m.•26 views

CVE-2001-0739

Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges...

6.5AI score0.00393EPSS

Exploits0References3

NVD•added 2001/10/18 4:0 a.m.•17 views

CVE-2001-0739

Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges...

7.2CVSS6.5AI score0.00393EPSS

Exploits0References3

NVD•added 2001/07/11 4:0 a.m.•10 views

CVE-2001-1146

AllCommerce with debugging enabled in EnGarde Secure Linux 1.0.1 creates temporary files with predictable names, which allows local users to modify files via a symlink attack...

1.2CVSS6.1AI score0.00336EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by