11 matches found
CVE-2007-3103
The CVE-2007-3103 issue affects the X.Org X11 xfs font server on Linux, caused by a race in the startup script that handles a temporary file in /tmp/.font-unix. A local user could abuse a symlink to modify file permissions, potentially elevating privileges. Exploitation details are not provided b...
CVE-1999-0297
The CVE-1999-0297 issue is a buffer overflow in the Vixie Cron library up to version 3.0, enabling local users to obtain root access via a long environmental variable. The vulnerability is caused by a buffer overflow in the library's handling of environment data. Impact is local privilege escalat...
CVE-2001-0690
CVE-2001-0690 describes a format-string vulnerability in Exim in batched SMTP mode that can let an unauthenticated remote attacker execute arbitrary code via format strings in SMTP headers. The entry specifies affected Exim versions: 3.22-10 (Red Hat), 3.12 (Debian), and 3.16 (Conectiva). Attack ...
CVE-2000-0017
The CVE-2000-0017 entry describes a buffer overflow in the Linux linuxconf package that allows remote attackers to gain root privileges via a long parameter. This is supported by the NVD entry and corroborated by OpenVAS/PT-Security records referencing linuxconf and the same issue. The available ...
CVE-1999-0037
CVE-1999-0037 describes an arbitrary command execution in the metamail package when a user processes an attacker’s message with malicious content in its headers. The vulnerability stems from how metamail handles message headers during processing, enabling an attacker to execute commands on the af...
CVE-1999-0894
The CVE-1999-0894 issue concerns the Red Hat Linux screen program that does not use Unix98 ptys, enabling local users to write to other terminals. The connected PT-2000-1029 entry reiterates the Red Hat Linux screen issue and notes that no information about a newer version containing a fix is ava...
CVE-2000-0701
The vulnerability CVE-2000-0701 affects the Mailman project’s wrapper program in versions 2.0beta3 and 2.0beta4. The root cause is improper cleansing of untrusted format strings, which permits local privilege escalation. The NVD entry lists local attack vector with low complexity and partial impa...
CVE-2000-1207
CVE-2000-1207 affects the userhelper component in the Red Hat Linux usermode package. It executes non-setuid programs as root, which prevents glibc security measures from activating. This creates a local exposure where vulnerable programs can be exploited via format string weaknesses in glibc, tr...
CVE-1999-0798
CVE-1999-0798 : The vulnerability is a buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux caused by a malformed header type. This year‑old CVE is referenced across multiple feeds (NVD, Red Hat, CVE List) with consistent description. Impact described in sources as a buffer overflow affecting...
CVE-1999-1288
CVE-1999-1288 concerns Samba 1.9.18, which ships with a prototype application wsmbconf installed with incorrect permissions (including setgid). This config allows local users to read/write files and, due to bugs in wsmbconf, may enable privilege elevation. The OpenVAS entry reiterates an elevate-...
CVE-2001-0889
Exim vulnerable to remote command execution when redirecting to a pipe: Exim 3.22 and earlier fail to properly verify the local part of the address, allowing shell metacharacters to run arbitrary commands. Public details from CVE-2001-0889 describe impact as remote command execution with the Exim...