Caldera Openlinux vulnerabilities
28 known vulnerabilities affecting caldera/openlinux.
Total CVEs
28
CISA KEV
0
Public exploits
11
Exploited in wild
0
Severity breakdown
CRITICAL10HIGH8MEDIUM8LOW2
Vulnerabilities
Page 1 of 2
CVE-1999-0368P3CRITICALCVSS 10.0PoCv1.31999-02-09
CVE-1999-0368 [CRITICAL] CVE-1999-0368: Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
nvd
CVE-1999-0002P3CRITICALCVSS 10.0PoCv1.21998-10-12
CVE-1999-0002 [CRITICAL] CWE-119 CVE-1999-0002: Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.
Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.
nvd
CVE-1999-0009P3CRITICALCVSS 10.0PoCv1.01998-04-08
CVE-1999-0009 [CRITICAL] CVE-1999-0009: Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
nvd
CVE-1999-0879P3CRITICALCVSS 10.0PoCv1.01999-10-01
CVE-1999-0879 [CRITICAL] CVE-1999-0879: Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges v
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file.
nvd
CVE-1999-0042P3CRITICALCVSS 10.0PoCv1.01997-04-07
CVE-1999-0042 [CRITICAL] CVE-1999-0042: Buffer overflow in University of Washington's implementation of IMAP and POP servers.
Buffer overflow in University of Washington's implementation of IMAP and POP servers.
nvd
CVE-1999-0043P3CRITICALCVSS 9.8v1.01996-12-04
CVE-1999-0043 [CRITICAL] CWE-78 CVE-1999-0043: Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" contro
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.
nvd
CVE-2000-0218P4HIGHCVSS 7.2PoCv2.32000-02-03
CVE-2000-0218 [HIGH] CVE-2000-0218: Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long rela
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
nvd
CVE-2000-0438P4HIGHCVSS 7.2PoCv7.02000-05-22
CVE-2000-0438 [HIGH] CVE-2000-0438: Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbi
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.
nvd
CVE-2000-0530P4HIGHCVSS 7.2PoCv2.42000-05-31
CVE-2000-0530 [HIGH] CVE-2000-0530: The KApplication class in the KDE 1.1.2 configuration file management capability allows local users
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
nvd
CVE-1999-0769P4HIGHCVSS 7.2PoCv2.21999-08-25
CVE-1999-0769 [HIGH] CVE-1999-0769: Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
nvd
CVE-2000-0192P4MEDIUMCVSS 5.0PoCv2.32000-03-05
CVE-2000-0192 [MEDIUM] CVE-2000-0192: The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows r
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
nvd
CVE-2000-0370P4CRITICALCVSS 10.0v1.0v1.1+2 more1999-01-29
CVE-2000-0370 [CRITICAL] CVE-2000-0370: The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metach
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.
nvd
CVE-2000-0374P4CRITICALCVSS 10.0v2.2v2.31999-08-22
CVE-2000-0374 [CRITICAL] CVE-2000-0374: The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, al
The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.
nvd
CVE-2001-0850P4CRITICALCVSS 10.0v3.12001-12-06
CVE-2001-0850 [CRITICAL] CVE-2001-0850: A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf
A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote users to exploit those functions with a buffer overflow.
nvd
CVE-2000-0531P4LOWCVSS 2.1PoCv2.3v2.41999-11-23
CVE-2000-0531 [LOW] CVE-2000-0531: Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.
nvd
CVE-1999-0047P4CRITICALCVSS 10.0v1.01997-01-28
CVE-1999-0047 [CRITICAL] CVE-1999-0047: MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.
MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.
nvd
CVE-1999-0434P4HIGHCVSS 7.5v1.21999-03-30
CVE-1999-0434 [HIGH] CVE-1999-0434: XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restr
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
nvd
CVE-1999-0017P4HIGHCVSS 7.5v1.21997-12-10
CVE-1999-0017 [HIGH] CVE-1999-0017: FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP clien
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
nvd
CVE-1999-0872P4HIGHCVSS 7.2v2.21999-08-25
CVE-1999-0872 [HIGH] CVE-1999-0872: Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment v
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
nvd
CVE-2001-0851P4MEDIUMCVSS 5.0v2.32001-12-06
CVE-2001-0851 [MEDIUM] CVE-2001-0851: Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rul
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.
nvd
1 / 2Next →