Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Suse_linux
(Suse)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 207 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-03-12 | CVE-2001-0109 | rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file. | Suse_linux | N/A | ||
| 2001-01-09 | CVE-2000-1134 | Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. | Openlinux, Openlinux_edesktop, Openlinux_eserver, Linux, Hp\-Ux, Immunix, Mandrake_linux, Linux, Suse_linux | N/A | ||
| 2001-01-09 | CVE-2000-1107 | in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of service via a long request, which causes the server to access a NULL pointer and crash. | Suse_linux | N/A | ||
| 2001-01-09 | CVE-2000-1095 | modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters. | Linux, Immunix, Mandrake_linux, Linux, Suse_linux | N/A | ||
| 2000-12-11 | CVE-2000-1044 | Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges. | Suse_linux | N/A | ||
| 2000-12-11 | CVE-2000-1040 | Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an attacker to cause a denial of service. | Suse_linux | N/A | ||
| 2000-12-11 | CVE-2000-1016 | The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package documentation and obtain system configuration information via an HTTP request for the /doc/packages URL. | Suse_linux | N/A | ||
| 2000-11-14 | CVE-2000-0869 | The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method. | Http_server, Suse_linux | N/A | ||
| 2000-11-14 | CVE-2000-0868 | The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/. | Http_server, Suse_linux | N/A | ||
| 2000-11-14 | CVE-2000-0844 | Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | Openlinux, Openlinux_ebuilder, Openlinux_eserver, Linux, Debian_linux, Aix, Immunix, Mandrake_linux, Linux, Irix, Slackware_linux, Solaris, Sunos, Suse_linux, Secure_linux, Turbolinux | N/A |