Vulnerabilities > Caldera > Openlinux
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-10-28 | CVE-2002-1199 | Local File Disclosure vulnerability in ypxfrd The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. | 5.0 |
| 2001-12-06 | CVE-2001-0851 | Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. | 5.0 |
| 2001-12-06 | CVE-2001-0850 | Remote Security vulnerability in Caldera Openlinux 3.1 A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote users to exploit those functions with a buffer overflow. | 10.0 |
| 2001-07-21 | CVE-2000-0892 | Information Disclosure vulnerability in U Win Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL. | 2.6 |
| 2001-01-09 | CVE-2000-1134 | Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. | 7.2 |
| 2000-12-19 | CVE-2000-0917 | Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands. | 10.0 |
| 2000-11-14 | CVE-2000-0844 | Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | 10.0 |
| 2000-07-12 | CVE-2000-0372 | Unspecified vulnerability in Caldera Openlinux Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges. | 7.2 |
| 2000-07-03 | CVE-2000-0566 | makewhatis in Linux man package allows local users to overwrite files via a symlink attack. | 7.2 |
| 2000-05-31 | CVE-2000-0530 | The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files. | 7.2 |