Caldera Openlinux
36 CVEs affecting Caldera Openlinux. Latest disclosed: 2002-10-28. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-1999-0043 | Critical | 9.8 | 1996-12-04 | Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others. |
CVE-2002-1199 | | 2002-10-28 | The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal an… | |
CVE-2001-0851 | | 2001-12-06 | Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. | |
CVE-2001-0850 | | 2001-12-06 | A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote… | |
CVE-2000-0892 | | 2001-07-21 | Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers… | |
CVE-2000-1134 | | 2001-01-09 | Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-docu… | |
CVE-2000-0917 | | 2000-12-19 | Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands. | |
CVE-2000-0844 | | 2000-11-14 | Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbit… | |
CVE-2000-0372 | | 2000-07-12 | Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges. | |
CVE-2000-0566 | | 2000-07-03 | makewhatis in Linux man package allows local users to overwrite files via a symlink attack. | |
CVE-2000-0530 | | 2000-05-31 | The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files. | |
CVE-2000-0491 | | 2000-05-24 | Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via… | |
CVE-2000-0438 | | 2000-05-22 | Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter. | |
CVE-2000-0192 | | 2000-03-05 | The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on… | |
CVE-2000-0218 | | 2000-02-03 | Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname. | |
CVE-2000-0531 | | 1999-11-23 | Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets. | |
CVE-2000-0369 | | 1999-10-08 | The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service. | |
CVE-1999-0880 | | 1999-10-01 | Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly. | |
CVE-1999-0879 | | 1999-10-01 | Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file. | |
CVE-1999-0872 | | 1999-08-25 | Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. |