Vulnerabilities > Mandrakesoft > Mandrake Linux Corporate Server > Low

DATE CVE VULNERABILITY TITLE RISK
2003-08-27 CVE-2003-0462 A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash).
local
high complexity
mandrakesoft linux
1.2
1.2
2001-10-18 CVE-2001-0736 Local Security vulnerability in Linux Mandrake
Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. 		2.1
2.1
2001-03-26 CVE-2001-0169 When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib.
local
low complexity
mandrakesoft redhat trustix turbolinux
2.1
2.1
2001-03-26 CVE-2001-0178 kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.
local
low complexity
conectiva caldera mandrakesoft suse
2.1
2.1
2001-03-12 CVE-2001-0117 sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.
local
high complexity
immunix mandrakesoft redhat trustix
1.2
1.2
2001-03-12 CVE-2001-0125 exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file.
local
high complexity
exmh debian mandrakesoft
1.2
1.2
2001-03-12 CVE-2001-0138 privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.
local
high complexity
immunix debian mandrakesoft redhat
1.2
1.2