Suse: >> Suse Linux >> 10.1 Security Vulnerabilities
Multiple unspecified vulnerabilities in OpenPBS, as used in SUSE Linux 9.2 through 10.1, allow attackers to execute arbitrary code via unspecified vectors.
CVSS Score
10.0
EPSS Score
0.01
Published
2006-10-31
Directory traversal vulnerability in the xsp component in mod_mono in Mono/C# web server, as used in SUSE Open-Enterprise-Server 1 and SUSE Linux 9.2 through 10.0, allows remote attackers to read arbitrary files via a .. (dot dot) sequence in an HTTP request.
CVSS Score
5.0
EPSS Score
0.006
Published
2006-09-12
StoreBackup before 1.19 allows local users to perform unauthorized operations on arbitrary files via a symlink attack on temporary files.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-10-05
StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive information.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-10-05
StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be restored with incorrect ownership.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-10-05
Race condition in SuSE Linux 8.1 through 9.2, when run on SMP systems that have more than 4GB of memory, could allow local users to read unauthorized memory from "foreign memory pages."
CVSS Score
1.2
EPSS Score
0.001
Published
2005-01-10
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
CVSS Score
7.2
EPSS Score
0.002
Published
2000-02-03
The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.
CVSS Score
2.1
EPSS Score
0.001
Published
1999-12-14
Page 2