Caldera Openlinux vulnerabilities

CVE-1999-1288 [MEDIUM] CVE-1999-1288: Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incor Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.

CVE-1999-0002 [CRITICAL] CWE-119 CVE-1999-0002: Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems. Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.

CVE-1999-0009 [CRITICAL] CVE-1999-0009: Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

CVE-1999-0104 [MEDIUM] CVE-1999-0104: A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.

CVE-1999-0017 [HIGH] CVE-1999-0017: FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP clien FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

CVE-1999-0042 [CRITICAL] CVE-1999-0042: Buffer overflow in University of Washington's implementation of IMAP and POP servers. Buffer overflow in University of Washington's implementation of IMAP and POP servers.

CVE-1999-0047 [CRITICAL] CVE-1999-0047: MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.

CVE-1999-0043 [CRITICAL] CWE-78 CVE-1999-0043: Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" contro Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.