Vulnerabilities > Mandrakesoft > Mandrake Linux > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2004-08-06	CVE-2004-0587	Denial of Service vulnerability in Linux Kernel HbaApiNode Improper File Permissions Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service. local low complexity mandrakesoft redhat suse	2.1
2003-08-27	CVE-2003-0462	A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash). local high complexity mandrakesoft linux	1.2
2002-12-31	CVE-2002-2001	Symbolic Link Attack vulnerability in jmcce Predictable Log File jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. local high complexity jmcce mandrakesoft	1.2
2001-10-18	CVE-2001-0736	Local Security vulnerability in Linux Mandrake Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. local low complexity immunix university-of-washington engardelinux mandrakesoft redhat	2.1
2001-06-27	CVE-2001-0416	sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools. local low complexity debian immunix mandrakesoft	2.1
2001-06-27	CVE-2001-0474	Local Security vulnerability in Linux Mandrake Utah-glx in Mesa before 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/glxmemory file. local low complexity brian-paul mandrakesoft	2.1
2001-03-26	CVE-2001-0169	When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib. local low complexity mandrakesoft redhat trustix turbolinux	2.1
2001-03-26	CVE-2001-0178	kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges. local low complexity conectiva caldera mandrakesoft suse	2.1
2001-03-12	CVE-2001-0116	gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack. local high complexity immunix mandrakesoft redhat	1.2
2001-03-12	CVE-2001-0117	sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack. local high complexity immunix mandrakesoft redhat trustix	1.2