National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Search Type: Search All
  • Keyword (text search): linux
There are 7,469 matching records.
Displaying matches 7441 through 7460.
Vuln ID Summary CVSS Severity
CVE-1999-1381

Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary commands.

Published: October 08, 1998; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-1999-0262

Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.

Published: August 04, 1998; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-1999-1406

dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a denial of service (crash) by redirecting fd 1 (stdout) to the kernel.

Published: July 29, 1998; 12:00:00 AM -04:00
V2: 2.1 LOW
CVE-1999-1434

login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server.

Published: July 13, 1998; 12:00:00 AM -04:00
V2: 7.2 HIGH
CVE-1999-1441

Linux 2.0.34 does not properly prevent users from sending SIGIO signals to arbitrary processes, which allows local users to cause a denial of service by sending SIGIO to processes that do not catch it.

Published: June 30, 1998; 12:00:00 AM -04:00
V2: 2.1 LOW
CVE-1999-1442

Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses outside of segments.

Published: June 22, 1998; 12:00:00 AM -04:00
V2: 7.2 HIGH
CVE-1999-1498

Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.

Published: April 06, 1998; 12:00:00 AM -04:00
V2: 3.6 LOW
CVE-1999-1407

ifdhcpc-done script for configuring DHCP on Red Hat Linux 5 allows local users to append text to arbitrary files via a symlink attack on the dhcplog file.

Published: March 09, 1998; 12:00:00 AM -05:00
V2: 2.1 LOW
CVE-1999-0330

Linux bdash game has a buffer overflow that allows local users to gain root access.

Published: March 01, 1998; 12:00:00 AM -05:00
V2: 7.2 HIGH
CVE-1999-1229

Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file.

Published: February 25, 1998; 12:00:00 AM -05:00
V2: 2.1 LOW
CVE-1999-0341

Buffer overflow in the Linux mail program "deliver" allows local users to gain root access.

Published: January 01, 1998; 12:00:00 AM -05:00
V2: 7.2 HIGH
CVE-1999-0340

Buffer overflow in Linux Slackware crond program allows local users to gain root access.

Published: December 01, 1997; 12:00:00 AM -05:00
V2: 7.2 HIGH
CVE-1999-0216

Denial of service of inetd on Linux through SYN and RST packets.

Published: November 01, 1997; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-1999-0183

Linux implementations of TFTP would allow access to files outside the restricted directory.

Published: September 01, 1997; 12:00:00 AM -04:00
V2: 6.4 MEDIUM
CVE-1999-1225

rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.

Published: August 24, 1997; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-1999-1182

Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error.

Published: July 17, 1997; 12:00:00 AM -04:00
V2: 7.2 HIGH
CVE-1999-1387

Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the Linux 2.0.29 kernel but executed on Linux 2.0.25.

Published: April 02, 1997; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-1999-1489

Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument.

Published: March 04, 1997; 12:00:00 AM -05:00
V2: 7.2 HIGH
CVE-1999-0298

ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.

Published: February 05, 1997; 12:00:00 AM -05:00
V2: 7.5 HIGH
CVE-1999-1299

rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file.

Published: February 03, 1997; 12:00:00 AM -05:00
V2: 10.0 HIGH