Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
CVSS Score
4.6
EPSS Score
0.005
Published
1998-11-19
A Unix account has a default, null, blank, or missing password.
CVSS Score
7.5
EPSS Score
0.519
Published
1998-03-01
Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable.
CVSS Score
10.0
EPSS Score
0.099
Published
1997-10-18
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail.
CVSS Score
7.5
EPSS Score
0.035
Published
1997-05-21
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
CVSS Score
7.2
EPSS Score
0.006
Published
1997-03-01
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
CVSS Score
7.2
EPSS Score
0.004
Published
1996-12-12
rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request.
CVSS Score
5.0
EPSS Score
0.086
Published
1994-12-19
Page 8