Unix Security Vulnerabilities and Issues — Unix CVE List

Lucene search

DigitalUnix

17 matches found

CVE•added 1999/09/29 4:0 a.m.•147 views

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

5CVSS7.3AI score0.25583EPSS

CVE•added 2001/05/07 4:0 a.m.•56 views

CVE-2000-0314

traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.

5CVSS6.7AI score0.00315EPSS

CVE•added 2000/01/04 5:0 a.m.•54 views

CVE-1999-0687

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

7.5CVSS7.3AI score0.07295EPSS

CVE•added 2000/01/04 5:0 a.m.•51 views

CVE-1999-0713

The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges.

7.2CVSS7AI score0.00038EPSS

CVE•added 1999/09/29 4:0 a.m.•50 views

CVE-1999-0073

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.

10CVSS7.7AI score0.00259EPSS

CVE•added 2001/05/07 4:0 a.m.•50 views

CVE-2000-0315

traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.

5CVSS6.6AI score0.00439EPSS

CVE•added 2000/02/04 5:0 a.m.•47 views

CVE-1999-0406

Digital Unix Networker program nsralist has a buffer overflow which allows local users to obtain root privilege.

7.2CVSS7.2AI score0.0004EPSS

CVE•added 2000/01/04 5:0 a.m.•45 views

CVE-1999-0691

Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.

7.2CVSS7.2AI score0.00367EPSS

CVE•added 2001/06/27 4:0 a.m.•44 views

CVE-2001-0369

Buffer overflow in lpsched on DGUX version R4.20MU06 and MU02 allows a local attacker to obtain root access via a long command line argument (non-existent printer name).

7.2CVSS7AI score0.00092EPSS

CVE•added 2001/09/12 4:0 a.m.•43 views

CVE-1999-1458

Buffer overflow in at program in Digital UNIX 4.0 allows local users to gain root privileges via a long command line argument.

7.2CVSS7.3AI score0.00033EPSS

CVE•added 2000/01/04 5:0 a.m.•41 views

CVE-1999-0714

Vulnerability in Compaq Tru64 UNIX edauth command.

2.1CVSS7AI score0.00082EPSS

CVE•added 2001/03/12 5:0 a.m.•41 views

CVE-2001-0134

Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary commands via a long user name.

10CVSS7.8AI score0.02028EPSS

CVE•added 2000/11/14 5:0 a.m.•35 views

CVE-2000-0845

kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by specifying the full file name in the initialization packet.

6.4CVSS7.1AI score0.00271EPSS

CVE•added 2002/03/09 5:0 a.m.•34 views

CVE-1999-1044

Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local users to gain privileges.

4.6CVSS7.3AI score0.00046EPSS

CVE•added 2001/09/12 4:0 a.m.•32 views

CVE-1999-1210

xterm in Digital UNIX 4.0B with patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is created when xterm is called with a DISPLAY environmental variable set to a display that xterm cannot access.

7.2CVSS7.1AI score0.00038EPSS

CVE•added 2001/09/12 4:0 a.m.•32 views

CVE-1999-1221

dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file.

2.1CVSS7.1AI score0.00071EPSS

CVE•added 2000/10/13 4:0 a.m.•31 views

CVE-1999-0358

Digital Unix 4.0 has a buffer overflow in the inc program of the mh package.

7.2CVSS7.5AI score0.00045EPSS