Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
1997-02-03 CVE-1999-1299 rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file.
network
low complexity
redhat slackware
critical
 10.0
10
1996-12-12 CVE-1999-0297 Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
local
low complexity
paul-vixie netbsd redhat bsdi freebsd
7.2
7.2
1996-12-04 CVE-1999-0043 Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.
network
low complexity
isc netscape caldera bsdi redhat nec
critical
 10.0
10
1996-11-16 CVE-1999-0130 Local users can start Sendmail in daemon mode and gain root privileges.
local
low complexity
caldera eric-allman bsdi freebsd hp ibm redhat
7.2
7.2
1996-10-08 CVE-1999-0234 Bash treats any character with a value of 255 as a command separator.
local
low complexity
yggdrasil sgi caldera redhat suse
4.6
4.6
1996-09-11 CVE-1999-0131 Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.
local
low complexity
eric-allman bsdi digital freebsd hp ibm redhat sco
7.2
7.2
1996-07-16 CVE-1999-1572 cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.
local
low complexity
debian freebsd mandrakesoft redhat ubuntu
2.1
2.1
1996-02-02 CVE-1999-1491 Unspecified vulnerability in Redhat Linux 2.1
abuse.console in Red Hat 2.1 uses relative pathnames to find and execute the undrv program, which allows local users to execute arbitrary commands via a path that points to a Trojan horse program.
local
low complexity
redhat
7.2
7.2
1996-01-02 CVE-1999-1186 rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter.
local
low complexity
rxvt redhat slackware
7.2
7.2
1994-12-19 CVE-2000-0508 rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request.
network
low complexity
debian mandrakesoft redhat
5.0
5.0