| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations. |
| Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges. |
| Red Hat pump DHCP client allows remote attackers to gain root access in some configurations. |
| The Motorola CableRouter allows any remote user to connect to and configure the router on port 1024. |
| Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet. |
| FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands. |
| FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument. |
| Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command. |
| Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument. |
| A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users. |
| The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail. |
| Buffer overflow in FreeBSD angband allows local users to gain privileges. |
| By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing. |
| UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission. |
| Buffer overflow in SCO UnixWare Xsco command via a long argument. |
| Denial of service in Linux syslogd via a large number of connections. |
| Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname. |
| Buffer overflow in BIND 8.2 via NXT records. |
| Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library. |
| Denial of service in BIND named via malformed SIG records. |