Mandrake Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2001-06-27	CVE-2001-0473	Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands. network low complexity immunix mutt conectiva mandrakesoft redhat	7.5
2001-06-27	CVE-2001-0458	Remote Buffer Overflow vulnerability in ePerl Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands. network low complexity ralf-s-engelschall debian mandrakesoft suse	7.5
2001-06-27	CVE-2001-0441	Buffer Overflow vulnerability in SLRN Long Header Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header. network low complexity debian mandrakesoft redhat	7.5
2001-06-27	CVE-2001-0416	sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools. local low complexity debian immunix mandrakesoft	2.1
2001-06-27	CVE-2001-0388	time server daemon timed allows remote attackers to cause a denial of service via malformed packets. network low complexity freebsd mandrakesoft suse critical	10.0
2001-05-03	CVE-2001-0279	Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges. local low complexity debian mandrakesoft	7.2
2001-03-26	CVE-2001-0178	kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges. local low complexity conectiva caldera mandrakesoft suse	2.1
2001-03-26	CVE-2001-0169	When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib. local low complexity mandrakesoft redhat trustix turbolinux	2.1
2001-03-12	CVE-2001-0142	squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations. local high complexity immunix national-science-foundation mandrakesoft redhat trustix	1.2
2001-03-12	CVE-2001-0140	arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations. local high complexity immunix mandrakesoft redhat	1.2