Redhat Linux vulnerabilities

CVE-1999-0997 [HIGH] CVE-1999-0997: wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.

CVE-1999-0986 [MEDIUM] CVE-1999-0986: The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large pa The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.

CVE-2000-0357 [HIGH] CVE-2000-0357: ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local use ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.

CVE-2000-0358 [MEDIUM] CVE-2000-0358: ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program. ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program.

CVE-2000-0531 [LOW] CVE-2000-0531: Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.

CVE-1999-0832 [CRITICAL] CVE-1999-0832: Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname. Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname.

CVE-2000-0356 [MEDIUM] CVE-2000-0356: Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disable Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts.

CVE-1999-1346 [HIGH] CVE-1999-1346: PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file.

CVE-1999-1347 [MEDIUM] CVE-1999-1347: Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass e Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm.

CVE-1999-1542 [CRITICAL] CVE-1999-1542: RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell meta RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command.

CVE-1999-0704 [CRITICAL] CVE-1999-0704: Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.

CVE-1999-0768 [HIGH] CVE-1999-0768: Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable. Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.

CVE-1999-0769 [HIGH] CVE-1999-0769: Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.

CVE-1999-0872 [HIGH] CVE-1999-0872: Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment v Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.

CVE-2000-0355 [HIGH] CVE-2000-0355: pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files. pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.

CVE-1999-0740 [MEDIUM] CVE-1999-0740: Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.

CVE-1999-0814 [CRITICAL] CVE-1999-0814: Red Hat pump DHCP client allows remote attackers to gain root access in some configurations. Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.

CVE-1999-0710 [HIGH] CVE-1999-0710: The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.

CVE-1999-1348 [LOW] CVE-1999-1348: Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdow Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.

CVE-2000-0118 [HIGH] CVE-2000-0118: The Red Hat Linux su program does not log failed password guesses if the su process is killed before The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.