Vulnerabilities > Redhat > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-06-16 | CVE-2003-0354 | Unspecified vulnerability in Redhat Linux Unknown vulnerability in GNU Ghostscript before 7.07 allows attackers to execute arbitrary commands, even when -dSAFER is enabled, via a PostScript file that causes the commands to be executed from a malicious print job. | 7.5 |
| 2003-06-16 | CVE-2002-1155 | Unspecified vulnerability in Redhat Linux Buffer overflow in KON kon2 0.3.9b and earlier allows local users to execute arbitrary code via a long -Coding command line argument. | 7.2 |
| 2003-06-09 | CVE-2003-0188 | lv reads a .lv file from the current working directory, which allows local users to execute arbitrary commands as other lv users by placing malicious .lv files into other directories. | 7.2 |
| 2003-04-11 | CVE-2003-0135 | Unspecified vulnerability in Redhat Linux 9.0 vsftpd FTP daemon in Red Hat Linux 9 is not compiled against TCP wrappers (tcp_wrappers) but is installed as a standalone service, which inadvertently prevents vsftpd from restricting access as intended. | 7.5 |
| 2003-02-19 | CVE-2003-0019 | Unspecified vulnerability in Redhat Linux 8.0 uml_net in the kernel-utils package for Red Hat Linux 8.0 has incorrect setuid root privileges, which allows local users to modify network interfaces, e.g. | 7.2 |
| 2003-02-19 | CVE-2002-1160 | Unspecified vulnerability in Redhat Linux The default configuration of the pam_xauth module forwards MIT-Magic-Cookies to new X sessions, which could allow local users to gain root privileges by stealing the cookies from a temporary .xauth file, which is created with the original user's credentials after root uses su. | 7.2 |
| 2002-12-31 | CVE-2002-2204 | Unspecified vulnerability in Redhat Package Manager The default --checksig setting in RPM Package Manager 4.0.4 checks that a package's signature is valid without listing who signed it, which can allow remote attackers to make it appear that a malicious package comes from a trusted source. | 7.5 |
| 2002-10-28 | CVE-2002-0836 | dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts. | 7.5 |
| 2002-08-12 | CVE-2002-0506 | Buffer Overflow vulnerability in LibNewt Library Buffer overflow in newt.c of newt windowing library (libnewt) 0.50.33 and earlier may allow attackers to cause a denial of service or execute arbitrary code in setuid programs that use libnewt. | 7.2 |
| 2002-08-12 | CVE-2000-1208 | Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote() call. | 7.2 |