CVSS: 10.0EPSS: 0%CPEs: 11EXPL: 0CVE-2003-0041
https://notcve.org/view.php?id=CVE-2003-0041
Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by the client. El cliente de ftp Kerberos permite a sitios FTP remotos ejecutar código arbitrario mediante un carácter de tubería (|) en un nombre de fichero que recupera el cliente • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0047.html http://secunia.com/advisories/7979 http://secunia.com/advisories/8114 http://www.mandriva.com/security/advisories?name=MDKSA-2003:021 http://www.redhat.com/support/errata/RHSA-2003-020.html https://access.redhat.com/security/cve/CVE-2003-0041 https://bugzilla.redhat.com/show_bug.cgi?id=1616943 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 4.9EPSS: 0%CPEs: 77EXPL: 2CVE-2002-2185
https://notcve.org/view.php?id=CVE-2002-2185
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network. • ftp://patches.sgi.com/support/free/security/advisories/20020901-01-A http://online.securityfocus.com/archive/1/276968 http://secunia.com/advisories/18510 http://secunia.com/advisories/18562 http://secunia.com/advisories/18684 http://www.cs.ucsb.edu/~krishna/igmp_dos http://www.redhat.com/support/errata/RHSA-2006-0101.html http://www.redhat.com/support/errata/RHSA-2006-0140.html http://www.redhat.com/support/errata/RHSA-2006-0190.html http://www.redhat.com/support&# •
CVSS: 4.6EPSS: 0%CPEs: 15EXPL: 5CVE-2002-1814 – Mandrake 7/8/9 / RedHat 6.x/7 Bonobo EFSTool - Commandline Argument Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1814
Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments. • https://www.exploit-db.com/exploits/21583 https://www.exploit-db.com/exploits/21584 https://www.exploit-db.com/exploits/21585 http://online.securityfocus.com/archive/1/279676 http://www.iss.net/security_center/static/9451.php http://www.securiteam.com/exploits/5AP0E0K8AO.html http://www.securityfocus.com/bid/5125 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1713
https://notcve.org/view.php?id=CVE-2002-1713
The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home directories with world-readable permissions, which could allow local users to read other user's files. • http://online.securityfocus.com/archive/1/277515 http://www.kb.cert.org/vuls/id/455323 http://www.securityfocus.com/bid/5050 https://exchange.xforce.ibmcloud.com/vulnerabilities/9389 • CWE-276: Incorrect Default Permissions •
CVSS: 1.2EPSS: 0%CPEs: 2EXPL: 0CVE-2002-2001
https://notcve.org/view.php?id=CVE-2002-2001
jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. • http://www.iss.net/security_center/static/7980.php http://www.mandriva.com/security/advisories?name=MDKSA-2002:008 http://www.securityfocus.com/bid/3940 •