Engardelinux: >> Secure Linux >> 1.0.1 Security Vulnerabilities
Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.
CVSS Score
9.8
EPSS Score
0.148
Published
2002-03-15
Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code.
CVSS Score
7.5
EPSS Score
0.053
Published
2002-01-31
Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack.
CVSS Score
2.1
EPSS Score
0.008
Published
2001-10-18
Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges.
CVSS Score
7.2
EPSS Score
0.004
Published
2001-10-18
The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain commands that could be leveraged to gain full root access.
CVSS Score
10.0
EPSS Score
0.018
Published
2001-07-11