Vulnerabilities > Redhat
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-12-06 | CVE-2001-0859 | Unspecified vulnerability in Redhat Linux 7.1 2.4.3-12 kernel in Red Hat Linux 7.1 Korean installation program sets the setting default umask for init to 000, which installs files with world-writeable permissions. | 5.0 |
| 2001-12-06 | CVE-2001-0852 | Denial of Service vulnerability in Redhat Linux 7.2 TUX HTTP server 2.1.0-2 in Red Hat Linux allows remote attackers to cause a denial of service via a long Host: header. | 5.0 |
| 2001-12-04 | CVE-2001-0946 | Denial-Of-Service vulnerability in Redhat Linux 7.2 apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification dates of arbitrary files via a symlink attack on the LOW_POWER temporary file, which could be used to cause a denial of service, e.g. | 3.6 |
| 2001-11-28 | CVE-2001-0868 | Information Disclosure vulnerability in Redhat Stronghold 2.3/3.0 Red Hat Stronghold 2.3 to 3.0 allows remote attackers to retrieve system information via an HTTP GET request to (1) stronghold-info or (2) stronghold-status. | 5.0 |
| 2001-10-25 | CVE-2001-0923 | Unspecified vulnerability in Redhat Package Manager 4.0.271/4.0.272 RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted data in the RPM file when the file is queried. | 7.2 |
| 2001-10-18 | CVE-2001-0787 | Unspecified vulnerability in Redhat Linux 7.0/7.1 LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges. | 4.6 |
| 2001-10-18 | CVE-2001-0736 | Local Security vulnerability in Linux Mandrake Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. | 2.1 |
| 2001-09-26 | CVE-2001-1383 | Unspecified vulnerability in Redhat Linux 7.1 initscript in setserial 2.17-4 and earlier uses predictable temporary file names, which could allow local users to conduct unauthorized operations on files. | 6.2 |
| 2001-09-20 | CVE-2001-0690 | Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers. | 7.5 |
| 2001-09-20 | CVE-2001-0641 | Heap Overflow vulnerability in Man -S Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option. | 4.6 |