Mandrakesoft Mandrake Linux vulnerabilities

CVE-2001-0139 [LOW] CVE-2001-0139: inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configuration inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations.

CVE-2001-0120 [LOW] CVE-2001-0120: useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a sym useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack.

CVE-2001-0142 [LOW] CVE-2001-0142: squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some c squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations.

CVE-2001-0116 [LOW] CVE-2001-0116: gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack. gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.

CVE-2001-0140 [LOW] CVE-2001-0140: arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configur arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations.

CVE-2001-0117 [LOW] CVE-2001-0117: sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack. sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.

CVE-2001-0119 [LOW] CVE-2001-0119: getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack. getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack.

CVE-2001-0138 [LOW] CVE-2001-0138: privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a sy privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.

CVE-2001-0125 [LOW] CVE-2001-0125: exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exm exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file.

CVE-2001-0118 [LOW] CVE-2001-0118: rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack. rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack.

CVE-2001-1385 [MEDIUM] CVE-2001-1385: The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.

CVE-2000-1134 [HIGH] CVE-2000-1134: Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.

CVE-2000-1095 [HIGH] CVE-2000-1095: modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary com modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.

CVE-2000-1043 [CRITICAL] CVE-2000-1043: Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux op Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.

CVE-2000-1042 [CRITICAL] CVE-2000-1042: Buffer overflow in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating syst Buffer overflow in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.

CVE-2000-1059 [HIGH] CVE-2000-1059: The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority access control mechanism with an "xhost + localhost" command, which allows local users to sniff X Windows events and gain privileges.

CVE-2000-0844 [CRITICAL] CWE-264 CVE-2000-0844: Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected fo Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

CVE-2000-0867 [HIGH] CVE-2000-0867: Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.

CVE-2000-0883 [MEDIUM] CVE-2000-0883: The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets the /perl/ directory to be browseable, which allows remote attackers to list the contents of that directory.

CVE-2000-0718 [LOW] CVE-2000-0718: A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed.