* * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:redhat:linux:*:*:*:*:*:*:*:*

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : CVE Number Descending CVE Number Ascending CVSS Score Descending Number Of Exploits Descending

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2007-3103	59		2007-07-15	2018-10-16	6.2	None	Local	High	Not required	Complete	Complete	Complete
The init.d script for the X.Org X11 xfs font server on various Linux distributions might allow local users to change the permissions of arbitrary files via a symlink attack on the /tmp/.font-unix temporary file.
2	CVE-2001-0889		Exec Code	2001-12-19	2017-10-10	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address when redirecting the address to a pipe, which could allow remote attackers to execute arbitrary commands via shell metacharacters.
3	CVE-2001-0886		DoS Exec Code Overflow	2001-12-21	2018-05-03	4.6	None	Local	Low	Not required	Partial	Partial	Partial
Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{" character.
4	CVE-2001-0690		Exec Code	2001-09-20	2017-10-10	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers.
5	CVE-2000-1207			2000-09-30	2016-10-18	7.2	None	Local	Low	Not required	Complete	Complete	Complete
userhelper in the usermode package on Red Hat Linux executes non-setuid programs as root, which does not activate the security measures in glibc and allows the programs to be exploited via format string vulnerabilities in glibc via the LANG or LC_ALL environment variables (CVE-2000-0844).
6	CVE-2000-0701		+Priv	2000-10-20	2008-09-10	4.6	None	Local	Low	Not required	Partial	Partial	Partial
The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges.
7	CVE-2000-0017		Overflow +Priv	1999-12-21	2008-09-10	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter.
8	CVE-1999-1348		DoS	1999-06-30	2016-10-18	2.1	None	Local	Low	Not required	None	None	Partial
Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.
9	CVE-1999-1347		Bypass	1999-10-07	2016-10-18	4.6	None	Local	Low	Not required	Partial	Partial	Partial
Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm.
10	CVE-1999-1346			1999-10-07	2016-10-18	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file.
11	CVE-1999-1335			1999-12-31	2017-10-10	6.4	None	Remote	Low	Not required	Partial	Partial	None
snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information.
12	CVE-1999-1333		Exec Code	1999-12-31	2016-10-18	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded.
13	CVE-1999-1332			1999-12-31	2016-10-18	2.1	None	Local	Low	Not required	None	Partial	None
gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.
14	CVE-1999-1329		Overflow +Priv	1999-12-31	2008-09-10	7.2	None	Local	Low	Not required	Complete	Complete	Complete
Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges.
15	CVE-1999-1288		+Priv	1998-11-19	2017-10-10	4.6	None	Local	Low	Not required	Partial	Partial	Partial
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
16	CVE-1999-0894			2000-01-04	2008-09-05	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals.
17	CVE-1999-0798		Overflow	1998-12-04	2016-10-18	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
18	CVE-1999-0297		Overflow	1996-12-12	2008-09-09	7.2	None	Local	Low	Not required	Complete	Complete	Complete
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
19	CVE-1999-0037		Exec Code	1997-05-21	2008-09-09	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail.

Total number of vulnerabilities : 19 Page : 1 (This Page)