Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Suse_linux
(Suse)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 207 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-08-02 | CVE-2001-1130 | Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer (from the HTTP_REFERER variable) to point to the directory that contains the keylist.txt file. | Suse_linux | N/A | ||
| 2001-09-05 | CVE-2001-1012 | Vulnerability in screen before 3.9.10, related to a multi-attach error, allows local users to gain root privileges when there is a subdirectory under /tmp/screens/. | Suse_linux | N/A | ||
| 2001-11-22 | CVE-2001-0918 | Vulnerabilities in CGI scripts in susehelp in SuSE 7.2 and 7.3 allow remote attackers to execute arbitrary commands by not opening files securely. | Suse_linux | N/A | ||
| 2001-11-21 | CVE-2001-0914 | Linux kernel before 2.4.11pre3 in multiple Linux distributions allows local users to cause a denial of service (crash) by starting the core vmlinux kernel, possibly related to poor error checking during ELF loading. | Linux_kernel, Suse_linux | N/A | ||
| 2001-12-21 | CVE-2001-0872 | OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows local users to gain root privileges. | Openssh, Linux, Suse_linux | N/A | ||
| 2001-12-21 | CVE-2001-0869 | Format string vulnerability in the default logging callback function _sasl_syslog in common.c in Cyrus SASL library (cyrus-sasl) may allow remote attackers to execute arbitrary commands. | Openlinux_eserver, Openlinux_workstation, Linux, Linux_powertools, Suse_linux | N/A | ||
| 2001-12-06 | CVE-2001-0851 | Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. | Openlinux, Openlinux_edesktop, Openlinux_eserver, Openlinux_server, Openlinux_workstation, Linux_kernel, Suse_linux | N/A | ||
| 2001-12-06 | CVE-2001-0834 | htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c option to specify an alternate configuration file, which could be used to (1) cause a denial of service (CPU consumption) by specifying a large file such as /dev/zero, or (2) read arbitrary files by uploading an alternate configuration file that specifies the target file. | Linux, Debian_linux, Htdig, Suse_linux | N/A | ||
| 2001-10-18 | CVE-2001-0763 | Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function. | Debian_linux, Suse_linux | N/A | ||
| 2001-09-20 | CVE-2001-0641 | Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option. | Immunix, Linux, Suse_linux | N/A |