Page 2 of 9 results (0.002 seconds)

CVSS: 5.0EPSS: 3%CPEs: 6EXPL: 1

Preboot eXecution Environment (PXE) server allows remote attackers to cause a denial of service (crash) via certain DHCP packets from Voice-Over-IP (VOIP) phones. El servidor Preboot eXecution Environment (PXE) permite a atacantes remotos causar una denegación de servicio (caída) mediante ciertos paquetes DHCP (Dinamic Host Configuraion Protocol) de teléfonos Voz-sobre-IP (VOIP). • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-044.0.txt http://online.securityfocus.com/advisories/4449 http://www.iss.net/security_center/static/10003.php http://www.redhat.com/support/errata/RHSA-2002-162.html http://www.redhat.com/support/errata/RHSA-2002-165.html http://www.securityfocus.com/bid/5596 https://access.redhat.com/security/cve/CVE-2002-0835 https://bugzilla.redhat.com/show_bug.cgi?id=1616818 •

CVSS: 6.2EPSS: 0%CPEs: 29EXPL: 0

setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain privileges via a complex race condition that uses an open file descriptor in utility programs such as chfn and chsh. setpwnam.c en el paquete util-linux, como se incluye en Red Hat Linux 7.3 y antieriores, y en otros sistemas operativos, no bloquea adecuadamente un fichero temporal cuando se modifica /etc/passwd, lo que puede permitir a usuarios locales ganar privilegios mediante una compleja condición de carrera que usa un descriptor de fichero abierto en utilidades como chfn y chsh. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-043.0.txt http://archives.neohapsis.com/archives/bugtraq/2002-07/0357.html http://archives.neohapsis.com/archives/bugtraq/2002-07/0396.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000523 http://marc.info/?l=bugtraq&m=102795787713996&w=2 http://online.securityfocus.com/advisories/4320 http://rhn.redhat.com/errata/RHSA-2002-132.html http://www.iss.net/security_center/static/9709.php http://www.kb&# •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

Unknown vulnerability in Tomcat 3.2.1 running on HP Secure OS for Linux 1.0 allows attackers to access servlet resources. NOTE: due to the vagueness of the vendor advisory, it is not clear whether this issue is already covered by other CVE identifiers. • http://archives.neohapsis.com/archives/hp/2001-q4/0062.html https://exchange.xforce.ibmcloud.com/vulnerabilities/42892 •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

Unknown vulnerability in the file system protection subsystem in HP Secure OS Software for Linux 1.0 allows additional user privileges on some files beyond what is specified in the file system protection rules, which allows local users to conduct unauthorized operations on restricted files. • http://online.securityfocus.com/advisories/3618 http://www.securityfocus.com/bid/3468 https://exchange.xforce.ibmcloud.com/vulnerabilities/7342 •