PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file.
CVSS Score
7.5
EPSS Score
0.005
Published
1999-10-07
Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm.
CVSS Score
4.6
EPSS Score
0.001
Published
1999-10-07
RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command.
CVSS Score
10.0
EPSS Score
0.023
Published
1999-10-04
Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.
CVSS Score
9.3
EPSS Score
0.042
Published
1999-09-16
Buffer overflow in INN inews program.
CVSS Score
7.5
EPSS Score
0.066
Published
1999-09-01
Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.
CVSS Score
7.5
EPSS Score
0.049
Published
1999-08-25
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-08-25
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-08-25
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.
CVSS Score
7.5
EPSS Score
0.005
Published
1999-08-21
Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.
CVSS Score
6.4
EPSS Score
0.007
Published
1999-08-19