Shodan
Vulnerabilities
Vulnerable Software
Caldera:  >> Openlinux  Security Vulnerabilities
CVE-2002-1199
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
CVSS Score
5.0
EPSS Score
0.021
Published
2002-10-28
CVE-2001-0850
A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote users to exploit those functions with a buffer overflow.
CVSS Score
10.0
EPSS Score
0.007
Published
2001-12-06
CVE-2001-0851
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.
CVSS Score
5.0
EPSS Score
0.006
Published
2001-12-06
CVE-2000-0892
Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.
CVSS Score
2.6
EPSS Score
0.007
Published
2001-07-21
CVE-2000-1134
Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.
CVSS Score
7.2
EPSS Score
0.002
Published
2001-01-09
CVE-2000-0917
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.
CVSS Score
10.0
EPSS Score
0.835
Published
2000-12-19
CVE-2000-0844
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVSS Score
10.0
EPSS Score
0.009
Published
2000-11-14
CVE-2000-0372
Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-07-12
CVE-2000-0566
makewhatis in Linux man package allows local users to overwrite files via a symlink attack.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-07-03
CVE-2000-0530
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-05-31


Products
Pricing
Contact Us

Shodan ® - All rights reserved