Caldera : Security Vulnerabilities, CVEs, Published In 2000
CVE-2000-0917
Public exploit
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.
Max CVSS
10.0
EPSS Score
95.71%
Published
2000-12-19
Updated
2017-10-10
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
Max CVSS
10.0
EPSS Score
0.48%
Published
2000-11-14
Updated
2018-10-30
BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.
Max CVSS
5.0
EPSS Score
13.68%
Published
2000-07-04
Updated
2017-10-10
makewhatis in Linux man package allows local users to overwrite files via a symlink attack.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-07-03
Updated
2018-05-03
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-05-31
Updated
2017-10-10
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.
Max CVSS
10.0
EPSS Score
7.14%
Published
2000-05-24
Updated
2008-09-10
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-05-22
Updated
2008-09-10
Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-07-12
Updated
2017-10-10
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-02-03
Updated
2008-09-10
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
Max CVSS
5.0
EPSS Score
1.97%
Published
2000-03-05
Updated
2008-09-10
10 vulnerabilities found