Suse: >> Suse Linux >> 7.1 Security Vulnerabilities
Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer (from the HTTP_REFERER variable) to point to the directory that contains the keylist.txt file.
CVSS Score
7.5
EPSS Score
0.044
Published
2001-08-02
time server daemon timed allows remote attackers to cause a denial of service via malformed packets.
CVSS Score
10.0
EPSS Score
0.01
Published
2001-06-27
Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands.
CVSS Score
7.5
EPSS Score
0.017
Published
2001-06-27
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
CVSS Score
7.2
EPSS Score
0.002
Published
2000-02-03
The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.
CVSS Score
2.1
EPSS Score
0.001
Published
1999-12-14
Page 4