cbcvebase.

Mandrakesoft Mandrake Linux vulnerabilities

134 known vulnerabilities affecting mandrakesoft/mandrake_linux.

Total CVEs
134
CISA KEV
0
Public exploits
36
Exploited in wild
0
Severity breakdown
CRITICAL12HIGH50MEDIUM38LOW34

Vulnerabilities

Page 7 of 7
CVE-2001-0474P4LOWCVSS 2.1v7.22001-06-27
CVE-2001-0474 [LOW] CVE-2001-0474: Utah-glx in Mesa before 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary files Utah-glx in Mesa before 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/glxmemory file.
nvd
CVE-2001-0140P4LOWCVSS 1.2v6.0v6.1+3 more2001-03-12
CVE-2001-0140 [LOW] CVE-2001-0140: arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configur arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
nvd
CVE-2001-0119P4LOWCVSS 1.2v6.0v6.1+3 more2001-03-12
CVE-2001-0119 [LOW] CVE-2001-0119: getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack. getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack.
nvd
CVE-2001-0118P4LOWCVSS 1.2v6.0v6.1+3 more2001-03-12
CVE-2001-0118 [LOW] CVE-2001-0118: rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack. rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack.
nvd
CVE-1999-1572P4LOWCVSS 2.1v9.2v10.0+3 more1996-07-16
CVE-1999-1572 [LOW] CVE-1999-1572: cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask wh cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.
nvd
CVE-2004-0565P4LOWCVSS 2.1v9.1v9.2+1 more2004-12-06
CVE-2004-0565 [LOW] CVE-2004-0565: Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit b Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit.
nvd
CVE-2004-0975P4LOWCVSS 2.1v9.2v10.0+1 more2005-02-09
CVE-2004-0975 [LOW] CVE-2004-0975: The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operati The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.
nvd
CVE-2004-2394P4LOWCVSS 2.1v8.2v9.0+3 more2004-12-31
CVE-2004-2394 [LOW] CVE-2004-2394: Off-by-one error in passwd 0.68 and earlier, when using the --stdin option, causes passwd to use the Off-by-one error in passwd 0.68 and earlier, when using the --stdin option, causes passwd to use the first 78 characters of a password instead of the first 79, which results in a small reduction of the search space required for brute force attacks.
nvd
CVE-2002-2001P4LOWCVSS 1.2v8.12002-12-31
CVE-2002-2001 [LOW] CVE-2002-2001: jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local use jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.
nvd
CVE-2001-0416P4LOWCVSS 2.1v6.0v6.1+2 more2001-06-27
CVE-2001-0416 [LOW] CVE-2001-0416: sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools.
nvd
CVE-2004-0974P4LOWCVSS 2.1v9.2v10.0+1 more2005-02-09
CVE-2004-0974 [LOW] CVE-2004-0974: The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.
nvd
CVE-2000-0184P4LOWCVSS 2.1v7.02000-03-09
CVE-2000-0184 [LOW] CVE-2000-0184: Linux printtool sets the permissions of printer configuration files to be world-readable, which allo Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.
nvd
CVE-2001-0117P4LOWCVSS 1.2v6.0v6.1+3 more2001-03-12
CVE-2001-0117 [LOW] CVE-2001-0117: sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack. sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.
nvd
CVE-2000-0718P4LOWCVSS 1.2v6.0v6.1+2 more2000-10-20
CVE-2000-0718 [LOW] CVE-2000-0718: A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed.
nvd
Mandrakesoft Mandrake Linux vulnerabilities | cvebase