Vulnerabilities > Redhat
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-0857 | Permissions, Privileges, and Access Controls vulnerability in Redhat Enterprise Linux 2.1/3.0 The (1) ipq_read and (2) ipulog_read functions in iptables allow local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface. | 4.6 |
| 2003-12-15 | CVE-2003-0962 | Remote Heap Overflow vulnerability in RSync Daemon Mode Undisclosed Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail. | 7.5 |
| 2003-12-15 | CVE-2003-0859 | The getifaddrs function in GNU libc (glibc) 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface. | 4.9 |
| 2003-10-27 | CVE-2003-1138 | Unspecified vulnerability in Redhat Interchange 2.0.4021.5 The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attackers to list directory contents, even if auto indexing is turned off and there is a default web page configured, via a GET request containing a double slash (//). | 5.0 |
| 2003-10-20 | CVE-2003-0689 | Unspecified vulnerability in Redhat Enterprise Linux 2.1 The getgrouplist function in GNU libc (glibc) 2.2.4 and earlier allows attackers to cause a denial of service (segmentation fault) and execute arbitrary code when a user is a member of a large number of groups, which can cause a buffer overflow. | 7.5 |
| 2003-10-20 | CVE-2003-0688 | The DNS map code in Sendmail 8.12.8 and earlier, when using the "enhdnsbl" feature, does not properly initialize certain data structures, which allows remote attackers to cause a denial of service (process crash) via an invalid DNS response that causes Sendmail to free incorrect data. | 5.0 |
| 2003-10-20 | CVE-2003-0686 | Buffer overflow in PAM SMB module (pam_smb) 1.1.6 and earlier, when authenticating to a remote service, allows remote attackers to execute arbitrary code. | 7.5 |
| 2003-08-27 | CVE-2003-0699 | Remote Security vulnerability in Linux Advanced Work Station The C-Media PCI sound driver in Linux before 2.4.21 does not use the get_user function to access userspace, which crosses security boundaries and may facilitate the exploitation of vulnerabilities, a different vulnerability than CVE-2003-0700. | 7.5 |
| 2003-08-27 | CVE-2003-0552 | Remote Security vulnerability in Redhat Linux 2.4.2 Linux 2.4.x allows remote attackers to spoof the bridge Forwarding table via forged packets whose source addresses are the same as the target. | 5.0 |
| 2003-08-27 | CVE-2003-0551 | Denial-Of-Service vulnerability in Redhat Linux 2.4.2 The STP protocol implementation in Linux 2.4.x does not properly verify certain lengths, which could allow attackers to cause a denial of service. | 5.0 |