modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-01-09
Updated
2017-10-10
Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain privileges.
Max CVSS
7.2
EPSS Score
0.06%
Published
2001-01-09
Updated
2017-10-10
gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.07%
Published
2001-03-12
Updated
2017-10-10
rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges.
Max CVSS
7.2
EPSS Score
0.06%
Published
2001-03-12
Updated
2017-10-10
privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
vpop3d program in linuxconf 1.23r and earlier allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
2001-03-26
Updated
2017-10-10
Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands.
Max CVSS
10.0
EPSS Score
4.25%
Published
2001-03-26
Updated
2017-10-10
Buffer overflow in micq client 0.4.6 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Description field.
Max CVSS
10.0
EPSS Score
4.50%
Published
2001-03-26
Updated
2017-10-10
licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
Max CVSS
7.5
EPSS Score
0.89%
Published
2001-07-02
Updated
2017-10-10
Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.
Max CVSS
7.5
EPSS Score
0.76%
Published
2001-06-27
Updated
2017-12-19
Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.
Max CVSS
7.5
EPSS Score
0.31%
Published
2001-06-27
Updated
2017-10-10
Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-09-20
Updated
2017-10-10
Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
2001-10-18
Updated
2017-12-19
LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-10-18
Updated
2017-10-10
Format string vulnerability in the default logging callback function _sasl_syslog in common.c in Cyrus SASL library (cyrus-sasl) may allow remote attackers to execute arbitrary commands.
Max CVSS
7.5
EPSS Score
1.15%
Published
2001-12-21
Updated
2018-05-03
OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.50%
Published
2001-12-21
Updated
2018-05-03
Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{" character.
Max CVSS
4.6
EPSS Score
0.09%
Published
2001-12-21
Updated
2018-05-03