Weekly Vulnerabilities Reports > January 14 to 20, 2002
3 new vulnerabilities reported during this period, including 0 critical vulnerabilities and 0 high severity vulnerabilities. This weekly summary report vulnerabilities in 4 products from 4 vendors including Novell, TIN, Oliver Rauch, and Rtin. Vulnerabilities are notably categorized as .
- 2 reported vulnerabilities are remotely exploitables.
- 3 reported vulnerabilities are exploitable by an anonymous user.
- Novell has the most reported vulnerabilities, with 1 reported vulnerabilities.
The following table list reported vulnerabilities for the period covered by this report:
0 Critical Vulnerabilities
0 High Vulnerabilities
2 Medium Vulnerabilities
|2002-01-15||CVE-1999-1091|| Rtin |
|UNIX news readers tin and rtin create the /tmp/.tin_log file with insecure permissions and follow symlinks, which allows attackers to modify the permissions of files writable by the user via a symlink attack.|| |
|2002-01-15||CVE-1999-1081||Novell|| Remote Security vulnerability in Novell web Server 2.0 |
Vulnerability in files.pl script in Novell WebServer Examples Toolkit 2 allows remote attackers to read arbitrary files.
1 Low Vulnerabilities
|2002-01-15||CVE-2001-0887||Oliver Rauch|| Unspecified vulnerability in Oliver Rauch Xsane 0.81 |
xSANE 0.81 and earlier allows local users to modify files of other xSANE users via a symlink attack on temporary files.