Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-11-23
Updated
2017-12-19
Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-06-01
Updated
2016-10-18
screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-06-01
Updated
2016-10-18
ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program.
Max CVSS
5.0
EPSS Score
0.27%
Published
1999-12-03
Updated
2008-09-10
ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.
Max CVSS
7.5
EPSS Score
1.06%
Published
1999-12-03
Updated
2008-09-10
Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts.
Max CVSS
4.6
EPSS Score
0.05%
Published
1999-10-13
Updated
2008-09-10
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.
Max CVSS
7.5
EPSS Score
1.06%
Published
1999-08-21
Updated
2008-09-10
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-06-09
Updated
2018-10-30
Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter.
Max CVSS
10.0
EPSS Score
4.53%
Published
1999-12-21
Updated
2022-08-17
RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command.
Max CVSS
10.0
EPSS Score
0.99%
Published
1999-10-04
Updated
2017-10-10
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-06-08
Updated
2017-12-19
Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-06-30
Updated
2016-10-18
Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-10-07
Updated
2016-10-18
PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file.
Max CVSS
7.5
EPSS Score
1.06%
Published
1999-10-07
Updated
2016-10-18
snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information.
Max CVSS
6.4
EPSS Score
0.61%
Published
1999-12-31
Updated
2017-10-10
automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded.
Max CVSS
7.5
EPSS Score
3.92%
Published
1999-12-31
Updated
2016-10-18
gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-31
Updated
2016-10-18
netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the interface.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-31
Updated
2008-09-10
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf.
Max CVSS
4.6
EPSS Score
0.06%
Published
1999-12-31
Updated
2016-10-18
Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-12-31
Updated
2008-09-10
linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files and gain root access via a symlink attack.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-12-31
Updated
2016-10-18
Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-12-31
Updated
2016-10-18
wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
Max CVSS
7.5
EPSS Score
12.52%
Published
1999-12-20
Updated
2008-09-05
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
Max CVSS
5.0
EPSS Score
0.04%
Published
1999-12-08
Updated
2008-09-09
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-08-25
Updated
2008-09-09
40 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!