Bash treats any character with a value of 255 as a command separator.
Max CVSS
4.6
EPSS Score
0.04%
Published
1996-10-08
Updated
2022-08-17
Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-03-04
Updated
2008-09-09
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-03-21
Updated
2022-08-17
The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accounts by creating standard user startup scripts such as profiles.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-05-02
Updated
2008-09-10
kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-08-02
Updated
2017-12-19
Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-09-20
Updated
2017-10-10
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.
Max CVSS
4.9
EPSS Score
0.22%
Published
2002-12-31
Updated
2018-10-19
SuSEconfig.javarunt in the javarunt package on SuSE Linux 7.3Pro allows local users to overwrite arbitrary files via a symlink attack on the .java_wrapper temporary file.
Max CVSS
4.6
EPSS Score
0.04%
Published
2003-11-17
Updated
2016-10-18
SuSEconfig.susewm in the susewm package on SuSE Linux 8.2Pro allows local users to overwrite arbitrary files via a symlink attack on the susewm.$$ temporary file.
Max CVSS
4.6
EPSS Score
0.04%
Published
2003-11-17
Updated
2016-10-18
Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and drop javascript: links to a frame or page in another domain.
Max CVSS
4.6
EPSS Score
1.84%
Published
2004-09-14
Updated
2017-10-11
The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.
Max CVSS
4.6
EPSS Score
0.32%
Published
2005-01-21
Updated
2018-10-19
Buffer overflow in liby2util in Yet another Setup Tool (YaST) for SuSE Linux 9.3 allows local users to execute arbitrary code via a long Loc entry.
Max CVSS
4.6
EPSS Score
0.04%
Published
2005-09-21
Updated
2017-07-11
StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be restored with incorrect ownership.
Max CVSS
4.6
EPSS Score
0.07%
Published
2005-10-05
Updated
2008-09-05
chkstat in SuSE Linux 9.0 through 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a world-writable directory, which can cause the link count to drop to 1 when the file is deleted or replaced, which is then modified by chkstat to use weaker permissions.
Max CVSS
4.6
EPSS Score
0.05%
Published
2005-10-27
Updated
2018-10-30
Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks.
Max CVSS
4.6
EPSS Score
0.04%
Published
2006-01-31
Updated
2017-07-20
ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain circumstances when linking binaries, can leave an empty RPATH or RUNPATH, which allows local attackers to execute arbitrary code as other users via by running an ld-linked application from the current directory, which could contain an attacker-controlled library file.
Max CVSS
4.4
EPSS Score
0.04%
Published
2006-02-11
Updated
2008-09-05
Unspecified vulnerability in Linux User Management (novell-lum) on SUSE Linux Enterprise Desktop 10 and Open Enterprise Server 9, under unspecified conditions, allows local users to log in to the console without a password.
Max CVSS
4.1
EPSS Score
0.04%
Published
2006-12-20
Updated
2008-09-05
xfs_fsr in xfsdump creates a .fsr temporary directory with insecure permissions, which allows local users to read or overwrite arbitrary files on xfs filesystems.
Max CVSS
4.4
EPSS Score
0.04%
Published
2007-05-14
Updated
2008-11-13
The installation script for orarun on SUSE Linux before 20070810 places the oracle user into the disk group, which allows the local oracle user to read or write raw disk partitions.
Max CVSS
4.6
EPSS Score
0.05%
Published
2007-08-17
Updated
2008-11-15
Untrusted search path vulnerability in the wrapper scripts for the (1) rug, (2) zen-updater, (3) zen-installer, and (4) zen-remover programs on SUSE Linux 10.1 and Enterprise 10 allows local users to gain privileges via modified (a) LD_LIBRARY_PATH and (b) MONO_GAC_PREFIX environment variables.
Max CVSS
4.6
EPSS Score
0.05%
Published
2007-08-20
Updated
2018-10-30
20 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!