CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Linux » Linux Kernel : Security Vulnerabilities (CVSS score >= 4)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-1999-0061 1997-10-02 2008-09-09
5.1
User Remote High Not required Partial Partial Partial
File creation and deletion, and remote execution, in the BSD line printer daemon (lpd).
2 CVE-1999-0074 1997-07-01 2008-09-09
6.4
None Remote Low Not required Partial Partial None
Listening TCP ports are sequentially allocated, allowing spoofing attacks.
3 CVE-1999-0128 DoS 1996-12-18 2008-09-09
5.0
None Remote Low Not required None None Partial
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
4 CVE-1999-0138 1996-06-26 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.
5 CVE-1999-0165 1997-03-01 2018-10-30
10.0
None Remote Low Not required Complete Complete Complete
NFS cache poisoning.
6 CVE-1999-0183 1997-09-01 2008-09-09
6.4
None Remote Low Not required Partial Partial None
Linux implementations of TFTP would allow access to files outside the restricted directory.
7 CVE-1999-0195 DoS 1997-07-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.
8 CVE-1999-0216 DoS 1997-11-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Denial of service of inetd on Linux through SYN and RST packets.
9 CVE-1999-0245 1995-09-07 2008-09-09
4.6
User Local Low Not required Partial Partial Partial
Some configurations of NIS+ in Linux allowed attackers to log in as the user "+".
10 CVE-1999-0257 DoS 1998-04-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Nestea variation of teardrop IP fragmentation denial of service.
11 CVE-1999-0317 Overflow 1999-11-25 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Linux su command gives root access to local users.
12 CVE-1999-0330 Overflow 1998-03-01 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Linux bdash game has a buffer overflow that allows local users to gain root access.
13 CVE-1999-0335 1996-08-01 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
DEPRECATED. This entry has been deprecated. It is a duplicate of CVE-1999-0032.
14 CVE-1999-0381 Overflow 1999-02-26 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access.
15 CVE-1999-0400 DoS 1999-01-26 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Denial of service in Linux 2.2.0 running the ldd command on a core file.
16 CVE-1999-0414 1999-03-01 2008-09-09
5.0
None Remote Low Not required Partial None None
In Linux before version 2.0.36, remote attackers can spoof a TCP connection and pass data to the application layer before fully establishing the connection.
17 CVE-1999-0431 DoS 1999-03-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Linux 2.2.3 and earlier allow a remote attacker to perform an IP fragmentation attack, causing a denial of service.
18 CVE-1999-0461 1999-01-28 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.
19 CVE-1999-0513 DoS 1998-01-05 2018-10-30
5.0
None Remote Low Not required None None Partial
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
20 CVE-1999-0590 2000-06-01 2008-09-09
10.0
None Remote Low Not required Complete Complete Complete
A system does not present an appropriate legal message or warning to a user who is accessing it.
21 CVE-1999-0628 1997-07-01 2008-09-09
5.0
None Remote Low Not required Partial None None
The rwho/rwhod service is running, which exposes machine status and user information.
22 CVE-1999-0656 16 1999-01-01 2017-07-10
5.0
None Remote Low Not required Partial None None
The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.
23 CVE-1999-0720 1999-08-23 2008-09-09
4.6
User Local Low Not required Partial Partial Partial
The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users.
24 CVE-1999-0780 1998-11-18 2016-10-17
4.6
User Local Low Not required Partial Partial Partial
KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file.
25 CVE-1999-0781 Exec Code 1998-11-18 2016-10-17
7.2
Admin Local Low Not required Complete Complete Complete
KDE allows local users to execute arbitrary commands by setting the KDEDIR environmental variable to modify the search path that KDE uses to locate its executables.
26 CVE-1999-0804 DoS 1999-06-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
27 CVE-1999-0986 DoS 1999-12-08 2008-09-09
5.0
None Remote Low Not required None None Partial
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
28 CVE-1999-1018 Bypass 1999-07-27 2016-10-17
7.5
User Remote Low Not required Partial Partial Partial
IPChains in Linux kernels 2.2.10 and earlier does not reassemble IP fragments before checking the header information, which allows a remote attacker to bypass the filtering rules using several fragments with 0 offsets.
29 CVE-1999-1166 +Priv 1999-07-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel memory.
30 CVE-1999-1225 1997-08-24 2017-12-18
5.0
None Remote Low Not required Partial None None
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
31 CVE-1999-1276 +Priv 1998-12-07 2017-10-09
7.2
Admin Local Low Not required Complete Complete Complete
fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console device.
32 CVE-1999-1339 DoS 1999-12-31 2016-10-17
5.0
None Remote Low Not required None None Partial
Vulnerability when Network Address Translation (NAT) is enabled in Linux 2.2.10 and earlier with ipchains, or FreeBSD 3.2 with ipfw, allows remote attackers to cause a denial of service (kernel panic) via a ping -R (record route) command.
33 CVE-1999-1341 1999-10-22 2018-09-11
4.6
User Local Low Not required Partial Partial Partial
Linux kernel before 2.3.18 or 2.2.13pre15, with SLIP and PPP options, allows local unprivileged users to forge IP packets via the TIOCSETD option on tty devices.
34 CVE-1999-1352 +Priv 1999-09-28 2016-10-17
4.6
None Local Low Not required Partial Partial Partial
mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain privileges.
35 CVE-1999-1442 DoS 1998-06-22 2018-09-11
7.2
None Local Low Not required Complete Complete Complete
Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses outside of segments.
36 CVE-2000-0289 2000-03-27 2008-09-10
5.0
None Remote Low Not required Partial None None
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.
37 CVE-2000-0344 DoS 2000-05-01 2008-09-10
5.0
None Remote Low Not required None None Partial
The knfsd NFS server in Linux kernel 2.2.x allows remote attackers to cause a denial of service via a negative size value.
38 CVE-2000-0506 DoS +Priv 2000-06-09 2008-09-10
10.0
None Remote Low Not required Complete Complete Complete
The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."
39 CVE-2001-0316 +Priv 2001-05-03 2017-10-09
4.6
None Local Low Not required Partial Partial Partial
Linux kernel 2.4 and 2.2 allows local users to read kernel memory and possibly gain privileges via a negative argument to the sysctl call.
40 CVE-2001-0405 Bypass 2001-07-02 2017-10-09
7.5
None Remote Low Not required Partial Partial Partial
ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, which is added to the RELATED table and allowed by the firewall.
41 CVE-2001-0851 Bypass 2001-12-06 2017-10-09
5.0
None Remote Low Not required Partial None None
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.
42 CVE-2001-1056 Bypass 2001-07-30 2018-09-20
7.5
User Remote Low Not required Partial Partial Partial
IRC DCC helper in the ip_masq_irc IP masquerading module 2.2 allows remote attackers to bypass intended firewall restrictions by causing the target system to send a "DCC SEND" request to a malicious server which listens on port 6667, which may cause the module to believe that the traffic is a valid request and allow the connection to the port specified in the DCC SEND request.
43 CVE-2001-1244 DoS 2001-07-07 2018-10-30
5.0
None Remote Low Not required None None Partial
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.
44 CVE-2001-1384 +Priv 2001-10-18 2016-10-17
7.2
Admin Local Low Not required Complete Complete Complete
ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp.
45 CVE-2001-1390 2001-04-17 2016-12-07
6.2
Admin Local High Not required Complete Complete Complete
Unknown vulnerability in binfmt_misc in the Linux kernel before 2.2.19, related to user pages.
46 CVE-2001-1398 2001-04-17 2016-12-07
7.5
User Remote Low Not required Partial Partial Partial
Masquerading code for Linux kernel before 2.2.19 does not fully check packet lengths in certain cases, which may lead to a vulnerability.
47 CVE-2001-1572 Bypass 2001-12-31 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
The MAC module in Netfilter in Linux kernel 2.4.1 through 2.4.11, when configured to filter based on MAC addresses, allows remote attackers to bypass packet filters via small packets.
48 CVE-2002-0046 2002-01-31 2017-10-09
5.0
None Remote Low Not required Partial None None
Linux kernel, and possibly other operating systems, allows remote attackers to read portions of memory via a series of fragmented ICMP packets that generate an ICMP TTL Exceeded response, which includes portions of the memory in the response packet.
49 CVE-2002-0060 Bypass 2002-03-08 2017-10-09
7.5
User Remote Low Not required Partial Partial Partial
IRC connection tracking helper module in the netfilter subsystem for Linux 2.4.18-pre9 and earlier does not properly set the mask for conntrack expectations for incoming DCC connections, which could allow remote attackers to bypass intended firewall restrictions.
50 CVE-2002-0510 2002-08-12 2008-09-05
5.0
None Remote Low Not required Partial None None
The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, which could allow remote attackers to determine that a target system is running Linux.
Total number of vulnerabilities : 1857   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.