Page 2 of 10 results (0.011 seconds)

CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0

The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other users. • http://marc.info/?l=bugtraq&m=91540043023167&w=2 http://www.securityfocus.com/bid/211 •

CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 1

login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server. • https://www.exploit-db.com/exploits/19122 http://marc.info/?l=bugtraq&m=90221104525951&w=2 http://www.securityfocus.com/bid/155 •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 3

Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument. • https://www.exploit-db.com/exploits/19283 http://www.securityfocus.com/archive/1/6384 http://www.securityfocus.com/bid/364 •

CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 2

Buffer overflow in NLS (Natural Language Service). • https://www.exploit-db.com/exploits/19551 https://www.exploit-db.com/exploits/19552 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0041 •

CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0

rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file. • http://marc.info/?l=bugtraq&m=87602167420509&w=2 •