Vulnerabilities (CVE)

Filtered by vendor Caldera Subscribe
Filtered by product Openlinux
Total 36 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-1199 3 Caldera, Sco, Sun 4 Openlinux, Openserver, Solaris and 1 more 2024-11-20 5.0 MEDIUM N/A
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
CVE-2001-0851 3 Caldera, Linux, Suse 7 Openlinux, Openlinux Edesktop, Openlinux Eserver and 4 more 2024-11-20 5.0 MEDIUM N/A
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.
CVE-2001-0850 1 Caldera 1 Openlinux 2024-11-20 10.0 HIGH N/A
A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote users to exploit those functions with a buffer overflow.
CVE-2000-1134 7 Caldera, Conectiva, Hp and 4 more 9 Openlinux, Openlinux Edesktop, Openlinux Eserver and 6 more 2024-11-20 7.2 HIGH N/A
Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.
CVE-2000-0917 3 Caldera, Redhat, Trustix 6 Openlinux, Openlinux Ebuilder, Openlinux Edesktop and 3 more 2024-11-20 10.0 HIGH N/A
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.
CVE-2000-0892 2 Caldera, U Win 2 Openlinux, U Win 2024-11-20 2.6 LOW N/A
Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.
CVE-2000-0844 13 Caldera, Conectiva, Debian and 10 more 16 Openlinux, Openlinux Ebuilder, Openlinux Eserver and 13 more 2024-11-20 10.0 HIGH N/A
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVE-2000-0566 3 Caldera, Mandrakesoft, Redhat 3 Openlinux, Mandrake Linux, Linux 2024-11-20 7.2 HIGH N/A
makewhatis in Linux man package allows local users to overwrite files via a symlink attack.
CVE-2000-0531 2 Caldera, Redhat 3 Openlinux, Openlinux Eserver, Linux 2024-11-20 2.1 LOW N/A
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.
CVE-2000-0530 2 Caldera, Kde 2 Openlinux, Kde 2024-11-20 7.2 HIGH N/A
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
CVE-2000-0491 3 Caldera, Gnome, Suse 3 Openlinux, Gdm, Suse Linux 2024-11-20 10.0 HIGH N/A
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.
CVE-2000-0438 4 Caldera, Slackware, Suse and 1 more 4 Openlinux, Slackware Linux, Suse Linux and 1 more 2024-11-20 7.2 HIGH N/A
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.
CVE-2000-0374 1 Caldera 1 Openlinux 2024-11-20 10.0 HIGH N/A
The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.
CVE-2000-0372 1 Caldera 1 Openlinux 2024-11-20 7.2 HIGH N/A
Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges.
CVE-2000-0370 1 Caldera 1 Openlinux 2024-11-20 10.0 HIGH N/A
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.
CVE-2000-0369 1 Caldera 1 Openlinux 2024-11-20 5.0 MEDIUM N/A
The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service.
CVE-2000-0218 2 Caldera, Suse 2 Openlinux, Suse Linux 2024-11-20 7.2 HIGH N/A
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
CVE-2000-0192 1 Caldera 1 Openlinux 2024-11-20 5.0 MEDIUM N/A
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
CVE-1999-1288 4 Caldera, Redhat, Samba and 1 more 4 Openlinux, Linux, Samba and 1 more 2024-11-20 4.6 MEDIUM N/A
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
CVE-1999-0880 2 Bsdi, Caldera 2 Bsd Os, Openlinux 2024-11-20 5.0 MEDIUM N/A
Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly.