5 results (0.128 seconds)

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0

Docview before 1.1-18 in Caldera OpenLinux 3.1.1, SCO Linux 4.0, OpenServer 5.0.7, configures the Apache web server in a way that allows remote attackers to read arbitrary publicly readable files via a certain URL, possibly related to rewrite rules. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2003-0658 •

CVSS: 2.6EPSS: 0%CPEs: 3EXPL: 2

Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters, which are filtered and result in a ".." sequence. Vulnerabilidad de atravesamiento de directorios en UnZip 5.50, permite a atacantes sobreescribir ficheros arbitrarios mediante caracteres no válidos entre dos . (punto), lo cuales son filtrados y resulta una secuencia '..' • https://www.exploit-db.com/exploits/22584 ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-031.0.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000672 http://download.immunix.org/ImmunixOS/7+/Updates/errata/IMNX-2003-7+-017-01 http://marc.info/?l=bugtraq&m=105259038503175&w=2 http://marc.info/?l=bugtraq&m=105786446329347&w=2 http://www.ciac.org/ciac/bulletins/n-111.shtml http://www.debian.org/security/2003/dsa-344 http://www.info •

CVSS: 5.0EPSS: 3%CPEs: 6EXPL: 1

Preboot eXecution Environment (PXE) server allows remote attackers to cause a denial of service (crash) via certain DHCP packets from Voice-Over-IP (VOIP) phones. El servidor Preboot eXecution Environment (PXE) permite a atacantes remotos causar una denegación de servicio (caída) mediante ciertos paquetes DHCP (Dinamic Host Configuraion Protocol) de teléfonos Voz-sobre-IP (VOIP). • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-044.0.txt http://online.securityfocus.com/advisories/4449 http://www.iss.net/security_center/static/10003.php http://www.redhat.com/support/errata/RHSA-2002-162.html http://www.redhat.com/support/errata/RHSA-2002-165.html http://www.securityfocus.com/bid/5596 https://access.redhat.com/security/cve/CVE-2002-0835 https://bugzilla.redhat.com/show_bug.cgi?id=1616818 •

CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0

startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of other users running startkde via Trojan horse libraries. starkde en KDE para Caldera OpenLinux 2.3 a 3.1.1 establece la variable de entorno LD_LIBRARY_PATH incluyendo el directorio actual de trabajo (.) lo que podría permitir a usuarios locales ganar privilegios de otros usuarios locales que ejecuten starkde mediante librerías que sean caballos de troya. • http://www.calderasystems.com/support/security/advisories/CSSA-2002-005.0.txt http://www.iss.net/security_center/static/8737.php http://www.securityfocus.com/bid/4400 •

CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0

Vulnerability in the MIT-SHM extension of the X server on Linux (XFree86) 4.2.1 and earlier allows local users to read and write arbitrary shared memory, possibly to cause a denial of service or gain privileges. Vulnerabilidad en la extensión MIT-SHM del servidor X en Linux permite a usuarios locales leer y escribir arbitrariamente memoria compartida, y posiblemente causar una denegación de servicio o ganar privilegios. • ftp://patches.sgi.com/support/free/security/advisories/20021001-01-P ftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.14/CSSA-2002-SCO.14.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000529 http://marc.info/?l=bugtraq&m=103547625009363&w=2 http://sunsolve.sun.com/search/document.do?assetkey=1-66-228529-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1017429.1-1 http://www.debian.org/security/2003/dsa-380 http://www.linuxsecur •