Lucene search
K
RedhatLinux

229 matches found

CVE
CVE
added 2000/07/12 4:0 a.m.59 views

CVE-2000-0391

CVE-2000-0391 describes a buffer overflow in krshd of Kerberos 5, allowing remote attackers to gain root privileges. The vulnerability affects krb5’s krshd component and is described with a high impact (remote code execution with root privileges). Exploitation details are not provided in the docu...

10CVSS7.6AI score0.04061EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.59 views

CVE-2000-0750

CVE-2000-0750 involves a buffer overflow in mopd (Maintenance Operations Protocol loader daemon). The vulnerability allows remote attackers to execute arbitrary commands by supplying a long file name, indicating a remote code execution risk via crafted input. The affected component is mopd, and t...

7.5CVSS8.2AI score0.02331EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.59 views

CVE-2000-0917

CVE-2000-0917 describes a format-string vulnerability in LPRng’s use_syslog() in version 3.6.24 (and earlier), enabling remote attackers to execute arbitrary commands. Multiple sources corroborate: Red Hat RHSA-2000-065 notes vulnerability in 3.6.24 and earlier; CERT advisories document the forma...

10CVSS7.4AI score0.78658EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.58 views

CVE-1999-0804

CVE-1999-0804 affects Linux 2.2.x kernels, where the vulnerability lies in ICMP handling. Malformed ICMP packets with unusual types, codes and IP header lengths can cause a denial of service. The NVD CVSS v2 base score is 5.0 (Medium), with network attack vector, low attack complexity, and partia...

5CVSS7AI score0.05639EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.58 views

CVE-1999-1330

The CVE-1999-1330 issue affects the db library’s snprintf usage in version 1.85.4, where the size parameter is ignored and could permit buffer overflows that proper snprintf implementation would prevent. This describes a potential local memory corruption risk. Exploitation details or concrete rem...

4.6CVSS7AI score0.00395EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.58 views

CVE-1999-1333

CVE-1999-1333 affects ncftp 2.4.2 and earlier on Red Hat Linux 5.0 and earlier. The automatic download option can be abused by remote attackers to execute arbitrary commands via shell metacharacters in the names of files to be downloaded. The provided documents do not specify a remediation versio...

7.5CVSS8AI score0.03314EPSS
CVE
CVE
added 2000/07/19 4:0 a.m.58 views

CVE-2000-0607

Technical details about CVE-2000-0607 are not provided in the supplied connected documents. The description in the Initial document notes a buffer overflow in KON on Linux, but no affected versions, impact specifics, or remediation are disclosed here. Monitor for updates.

7.2CVSS7.3AI score0.01113EPSS
CVE
CVE
added 2000/11/29 5:0 a.m.58 views

CVE-2000-0963

The CVE-2000-0963 vulnerability is a local buffer overflow in the ncurses library that can allow execution of arbitrary commands via overly long environment variables (TERM or TERMINFO_DIRS). Connected PT-2000-1003 and other records specify affected software as ncurses versions 5.0–5.2 and ncurse...

7.2CVSS7.6AI score0.00679EPSS
CVE
CVE
added 2002/08/01 4:0 a.m.58 views

CVE-2000-1208

CVE-2000-1208 affects BSD-based lpr/lpd (print subsystem). It is a format-string vulnerability in startprinting() inside printjob.c that can allow local privilege escalation via a faulty syslog call using strings from checkremote(). The vulnerability is tied to the lpr/lpd package and has been ad...

7.2CVSS6.5AI score0.00368EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.58 views

CVE-2001-0787

CVE-2001-0787 affects LPRng in Red Hat Linux 7.0 and 7.1, where dropping privileges does not remove supplemental group memberships. The underlying issue is that LPRng fails to drop these group memberships when lowering privileges, so the process and its children may retain the starting process’s ...

4.6CVSS6.7AI score0.00717EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.57 views

CVE-1999-0814

Technical details about CVE-1999-0814 are not publicly provided in the connected documents. No affected versions, root cause, or remediation are listed here. Monitor for updates from Red Hat and CVE repositories for concrete details.

10CVSS7.3AI score0.02253EPSS
CVE
CVE
added 2000/02/08 5:0 a.m.57 views

CVE-2000-0093

The CVE-2000-0093 entry concerns Red Hat installations that use DES-encrypted passwords via crypt() for the initial password instead of MD5. Affected component is the initial password handling in Red Hat setups; root cause is the use of DES crypt() rather than a stronger hash. Documents explicitl...

10CVSS7.2AI score0.01347EPSS
CVE
CVE
added 2002/08/31 4:0 a.m.57 views

CVE-2000-1213

The CVE-2000-1213 entry concerns ping (iputils) before 20001010, distributed on Red Hat Linux 6.2–7J and other OSes. The root cause is that ping fails to drop privileges after acquiring a raw socket, increasing exposure to bugs that would occur at lower privileges. The vulnerability is tied to th...

7.5CVSS7.1AI score0.01935EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.57 views

CVE-2001-0116

The CVE concerns gpm 1.19.3 where a race condition allows a local user to exploit predictable /tmp filenames and symlink targets to overwrite/modify files the privileged gpm process uses. This is described in CERT/CC and Mandrake advisories, which note a temporary-file handling flaw; the impact i...

1.2CVSS6.4AI score0.00298EPSS
CVE
CVE
added 2003/05/17 4:0 a.m.57 views

CVE-2003-0194

tcpdump (affected up to versions prior to the Red Hat patches) had a bug where privileges were not dropped to user 'pcap' at startup due to a compilation error, causing it to run as root unless the -U flag was used. Red Hat advisories RHSA-2003:151 and related NASL/redhat entries describe updated...

4.6CVSS6.5AI score0.00371EPSS
CVE
CVE
added 2000/03/22 5:0 a.m.56 views

CVE-1999-0740

The CVE-1999-0740 entry affects the Linux in.telnetd telnet daemon. The issue arises from processing a malformed TERM environment variable, which can lead to a denial of service. The description confirms impact as DoS on affected systems. No explicit details about affected Linux versions, vendor ...

6.4CVSS7AI score0.02011EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.56 views

CVE-1999-1491

CVE-1999-1491 affects Red Hat 2.1 via abuse.console which uses relative pathnames to locate and execute the undrv program. The underlying issue is path-based execution that allows local users to run arbitrary commands by pointing to a Trojan horse program, enabling complete confidentiality, integ...

7.2CVSS7.9AI score0.01923EPSS
CVE
CVE
added 2000/04/26 4:0 a.m.56 views

CVE-2000-0248

The CVE-2000-0248 issue affects the Red Hat Linux Piranha LVS package (web GUI) where a backdoor password exists, enabling remote command execution via the GUI. Public sources detail an arbitrary-command vulnerability in the piranha-gui component, with exploits demonstrating execution of commands...

10CVSS7.5AI score0.73662EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.56 views

CVE-2000-0668

CVE-2000-0668 affects the Linux pam_console PAM module when a display manager (gdm or kdm) has XDMCP enabled. The vulnerability allows a user to access the system console and reboot the system, with a Medium severity (CVSS v2 base score 5.0) and a Partial availability impact. The provided sources...

5CVSS6.9AI score0.0724EPSS
CVE
CVE
added 2000/12/19 5:0 a.m.56 views

CVE-2000-1125

CVE-2000-1125 affects Red Hat Linux 6.2 where the restore utility trusts the pathname in the RSH environment variable. A local attacker can set RSH to a Trojan horse program, potentially gaining root privileges. The vulnerability arises from unvalidated use of RSH in invoking external programs (r...

7.2CVSS6.2AI score0.01107EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.56 views

CVE-2001-1028

CVE-2001-1028 describes a buffer overflow in the ultimate_source() function of the man package (versions 1.5 and earlier), enabling local privilege escalation. Connected documents confirm the root cause is a buffer overflow, with the Red Hat advisory RHSA-2001:072 noting local GID man exploits an...

7.2CVSS7.2AI score0.00397EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.56 views

CVE-2002-0068

CVE-2002-0068 affects Squid 2.4 STABLE3 and earlier, due to a buffer overflow in FTP URL parsing when the URL contains many special characters. This can cause a core dump (DoS) and, in some reports, may allow remote code execution. Mitigation: upgrade to Squid 2.4.STABLE4 or newer (and apply vend...

7.5CVSS7.8AI score0.09449EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.56 views

CVE-2002-1509

CVE-2002-1509 concerns a bug in the shadow-utils useradd flow introduced by a patch in shadow-utils-20000902. The bug causes a new user’s mail spool to be created with group write/read permissions (mode 660) instead of being owned per the intended policy, enabling other users sharing the same pri...

3.6CVSS6.5AI score0.00373EPSS
CVE
CVE
added 2003/07/25 4:0 a.m.56 views

CVE-2003-0464

CVE-2003-0464 affects the Linux kernel (2.4) where a change in the RPC code sets the reuse flag for newly created sockets. This could allow a local attacker to bind UDP ports that are normally used by privileged services such as nfsd. The connected Red Hat advisory RHSA-2003:238 notes this issue ...

4.6CVSS6.3AI score0.00382EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.55 views

CVE-1999-1182

This CVE (CVE-1999-1182) affects Linux runtime linkers ld.so and ld-linux.so. A buffer overflow occurs when a long argv[0] triggers an error report by ld.so/ld-linux.so, allowing local users to gain privileges when invoking a setuid program. The attack is local with low complexity; impact is to c...

7.2CVSS7.7AI score0.00429EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.55 views

CVE-1999-1327

The CVE concerns linuxconf 1.11r11-rh2 on Red Hat Linux 5.1, where a boundary/buffer overflow triggered by a long LANG environment variable allows local users to gain root privileges. Affected component is linuxconf; root compromise is the stated impact. The description does not provide remediati...

7.2CVSS7.2AI score0.0043EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.55 views

CVE-1999-1346

CVE-1999-1346 affects PAM configuration for rlogin on Red Hat Linux 6.1 and earlier. A less restrictive PAM rule precedes a more restrictive one, allowing users to access the host via rlogin even if /etc/nologin has disabled it. The impact, as described, includes access to the host with potential...

7.5CVSS6.9AI score0.01489EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.55 views

CVE-1999-1347

CVE-1999-1347 affects Red Hat Linux 6.1 and earlier. The vulnerability arises in Xsession, where local users with restricted accounts can bypass execution of the .xsession file by starting a desktop session (KDE, GNOME or similar) from KDM. This bypass allows the user to run with the environmenta...

4.6CVSS6.9AI score0.00451EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.55 views

CVE-1999-1348

Technical details about CVE-1999-1348 are not publicly provided in the supplied documents. Monitor for updates; the available records describe the issue at a high level without specific impact, affected products, or remediation.

2.1CVSS6.7AI score0.00335EPSS
CVE
CVE
added 2000/02/08 5:0 a.m.55 views

CVE-2000-0118

The CVE-2000-0118 entry concerns the Red Hat Linux su program: when the su process is killed before its timeout, failed password guesses aren’t logged, enabling local brute-force password guessing. The affected component is the su utility; the root cause is failure to log failed attempts due to p...

7.2CVSS6.9AI score0.00786EPSS
CVE
CVE
added 2000/04/25 4:0 a.m.55 views

CVE-2000-0184

The vulnerability CVE-2000-0184 affects the Linux printer subsystem via the printtool utility, which incorrectly sets printer configuration files to world-readable. This misconfiguration can allow a local attacker to read printer share passwords stored in those files, leading to potential unautho...

2.1CVSS6.7AI score0.00382EPSS
CVE
CVE
added 2000/05/24 4:0 a.m.55 views

CVE-2000-0358

CVE-2000-0358 affects ORBit and gnome-session in Red Hat Linux 6.1, where remote attackers can cause a crash in a program. The available descriptions consistently state vulnerability to crash without detailing exploit vectors, affected versions beyond Red Hat Linux 6.1, or concrete remediation st...

5CVSS7.1AI score0.01943EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.55 views

CVE-2000-0751

The CVE-2000-0751 issue concerns mopd (Maintenance Operations Protocol loader daemon) that fails to properly cleanse user-supplied format strings, enabling remote attackers to execute arbitrary commands. The vulnerability is described as a format-string vulnerability in mopd, with potential for a...

7.5CVSS7.8AI score0.03811EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.55 views

CVE-2000-0829

The affected software is the tmpwatch utility in Red Hat Linux. The vulnerability arises because it forks a new process for each directory level when scanning /tmp or /var/tmp , enabling a local attacker to create deeply nested directories and trigger a denial of service . Exploitation details ar...

2.1CVSS6.7AI score0.00978EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.54 views

CVE-1999-0318

The CVE-1999-0318 issue affects the xmcd 2.0p12 release and is caused by a buffer overflow triggered via an environment variable, allowing local users to gain access. The PT-1997-1131 entry corroborates local privilege escalation through an environmental variable; it does not provide a product pa...

7.2CVSS7.6AI score0.00613EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.54 views

CVE-1999-0798

CVE-1999-0798 : The vulnerability is a buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux caused by a malformed header type. This year‑old CVE is referenced across multiple feeds (NVD, Red Hat, CVE List) with consistent description. Impact described in sources as a buffer overflow affecting...

10CVSS7.6AI score0.01641EPSS
CVE
CVE
added 2000/03/22 5:0 a.m.54 views

CVE-2000-0031

The CVE-2000-0031 issue affects the initscripts package in Red Hat Linux and is caused by a symlink attack that allows local users to gain privileges. Connected sources (NVD, PT-2000-1038) confirm local privilege escalation via a symlink-related flaw in initscripts; no explicit fix/version detail...

6.2CVSS6.9AI score0.00331EPSS
CVE
CVE
added 2000/05/24 4:0 a.m.54 views

CVE-2000-0364

The CVE-2000-0364 entry concerns Red Hat Linux 6.0 where screen and rxvt fail to properly set tty device modes, enabling a local user to write to other virtual consoles. The vulnerability is localized (attack vector LOCAL) with low complexity and no authentication, and it can impact confidentiali...

4.6CVSS6.7AI score0.00378EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.54 views

CVE-2000-0378

The vulnerability CVE-2000-0378 affects the pam_console PAM module in Linux systems. It arises because the module performs a chown on various devices at user login, and an open file descriptor for those devices can remain open after logout. This allows the user to sniff activity on those devices ...

7.2CVSS6.9AI score0.01085EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.54 views

CVE-2000-0604

CVE-2000-0604 involves the gkermit component on Red Hat Linux installed with the setgid uucp bit, enabling local users to modify files owned by uucp. The underlying issue is an improper installation/permission setup of gkermit, which allows a local attacker to gain partial access to files owned b...

4.6CVSS6.6AI score0.00487EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.54 views

CVE-2001-0140

arpwatch 2.1a4 is vulnerable to a local symlink attack that can allow a local user to overwrite arbitrary files in certain configurations. The connected Mandrake advisory MDKSA-2001:002 notes a temporary file race condition and indicates the fix is included in arpwatch version 2.1a10. Affected pr...

1.2CVSS6.4AI score0.00298EPSS
CVE
CVE
added 2002/06/25 4:0 a.m.54 views

CVE-2001-1002

The CVE-2001-1002 issue affects the DVI print filter (dvips) used by lpd on Red Hat Linux 7.0 and earlier. The default configuration does not run dvips in secure mode when dvips is executed by lpd, which could allow a remote attacker to gain privileges by printing a DVI file containing malicious ...

7.5CVSS6.9AI score0.09324EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.53 views

CVE-1999-1299

CVE-1999-1299 concerns rcp on various Linux systems, including Red Hat 4.0. Root cause: UID 65535 is interpreted as -1 by chown and related system calls, causing ownership changes to fail and potentially allow a nobody or UID 65535 to overwrite arbitrary files. Impact: writable/overwritable files...

10CVSS7.4AI score0.0184EPSS
CVE
CVE
added 2000/04/26 4:0 a.m.53 views

CVE-2000-0286

Technical details about CVE-2000-0286 are not publicly provided in the supplied documents. Monitor for updates from NVD/CVE feeds for affected products, fixes, and remediation guidance.

2.1CVSS6.6AI score0.00696EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.53 views

CVE-2000-0816

CVE-2000-0816 concerns the tmpwatch utility. The vulnerability arises when using the --fuser (or -s) option, where a local attacker can create a filename containing shell metacharacters that leads to execution of arbitrary commands via the system() call invoked by tmpwatch to consult /sbin/fuser....

2.1CVSS7.2AI score0.00911EPSS
CVE
CVE
added 2002/08/31 4:0 a.m.53 views

CVE-2000-1214

The CVE-2000-1214 issue affects the iputils package’s ping utility. Specifically, buffer overflow vulnerabilities exist in the (1) outpack and (2) buf variables within ping on iputils versions prior to the 20001010 release, as distributed on Red Hat Linux 6.2 through 7J and other operating system...

4.6CVSS7AI score0.00415EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.53 views

CVE-2001-1375

CVE-2001-1375 affects tcl/tk (tcltk) 8.3.1, where libraries may be searched in the current working directory before others. This could allow a local user to execute arbitrary code by placing a Trojan library in a user-controlled directory. The Mandrake advisory notes a related issue and indicates...

4.6CVSS7.2AI score0.00411EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.53 views

CVE-2002-0067

Summary: CVE-2002-0067 affects Squid 2.4 STABLE3 and earlier, where the HTCP interface is not properly disabled even when squid.conf sets htcp_port 0, potentially allowing remote attackers to bypass access restrictions. Root cause (as described): HTCP cannot be fully disabled in these releases, e...

7.5CVSS6.7AI score0.03651EPSS
CVE
CVE
added 2003/06/05 4:0 a.m.53 views

CVE-2003-0354

CVE-2003-0354 affects GNU Ghostscript before 7.07. A flaw in how Ghostscript processes PostScript allows a malicious print job to execute arbitrary commands, even when using the -dSAFER option, potentially compromising a system that handles such jobs. The issue is described across multiple source...

7.5CVSS7.2AI score0.0187EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.52 views

CVE-2000-0230

CVE-2000-0230 describes a buffer overflow in the imwheel utility. The vulnerability allows local users to gain root privileges via the imwheel-solo script when a long HOME environment variable is provided. Affected component: imwheel; root privilege escalation as stated. The connected documents c...

7.2CVSS7.2AI score0.00917EPSS
Total number of security vulnerabilities229