CVSS: 7.5EPSS: 4%CPEs: 6EXPL: 1CVE-2001-1130 – SuSE 6.3/6.4/7.0 sdb - Arbitrary Command Execution
https://notcve.org/view.php?id=CVE-2001-1130
Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer (from the HTTP_REFERER variable) to point to the directory that contains the keylist.txt file. • https://www.exploit-db.com/exploits/21075 http://www.novell.com/linux/security/advisories/2001_027_sdb_txt.html http://www.securityfocus.com/archive/1/201216 https://exchange.xforce.ibmcloud.com/vulnerabilities/7003 •
CVSS: 10.0EPSS: 0%CPEs: 12EXPL: 0CVE-2001-0388
https://notcve.org/view.php?id=CVE-2001-0388
time server daemon timed allows remote attackers to cause a denial of service via malformed packets. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:28.timed.asc http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-034.php3 http://www.novell.com/linux/security/advisories/2001_007_nkitserv.html https://exchange.xforce.ibmcloud.com/vulnerabilities/6228 •
CVSS: 2.1EPSS: 0%CPEs: 13EXPL: 0CVE-2001-0178
https://notcve.org/view.php?id=CVE-2001-0178
kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges. • http://www.calderasystems.com/support/security/advisories/CSSA-2001-005.0.txt http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-018.php3?dis=7.2 http://www.novell.com/linux/security/advisories/2001_002_kdesu_txt.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5995 •
CVSS: 1.2EPSS: 0%CPEs: 5EXPL: 4CVE-2001-0109 – SuSE 6.x/7.0 - MkDir Error Handling rctab Race Condition
https://notcve.org/view.php?id=CVE-2001-0109
rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file. • https://www.exploit-db.com/exploits/20554 https://www.exploit-db.com/exploits/20555 http://archives.neohapsis.com/archives/bugtraq/2001-01/0226.html http://archives.neohapsis.com/archives/bugtraq/2001-01/0272.html http://www.securityfocus.com/bid/2207 https://exchange.xforce.ibmcloud.com/vulnerabilities/5945 •
CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 1CVE-2000-1107
https://notcve.org/view.php?id=CVE-2000-1107
in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of service via a long request, which causes the server to access a NULL pointer and crash. • http://archives.neohapsis.com/archives/bugtraq/2000-11/0387.html http://www.securityfocus.com/bid/2015 https://exchange.xforce.ibmcloud.com/vulnerabilities/5590 •