Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
CVSS Score
4.6
EPSS Score
0.001
Published
1998-11-19
A Unix account has a default, null, blank, or missing password.
CVSS Score
7.5
EPSS Score
0.423
Published
1998-03-01
Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable.
CVSS Score
10.0
EPSS Score
0.067
Published
1997-10-18
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail.
CVSS Score
7.5
EPSS Score
0.008
Published
1997-05-21
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-03-01
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
1996-12-12
rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request.
CVSS Score
5.0
EPSS Score
0.066
Published
1994-12-19
Page 8