Page 3 of 50 results (0.006 seconds)

CVSS: 2.6EPSS: 0%CPEs: 2EXPL: 1

Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL. • http://www.kb.cert.org/vuls/id/22404 https://exchange.xforce.ibmcloud.com/vulnerabilities/6644 •

CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0

Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0362.html http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-031-01 http://www.calderasystems.com/support/security/advisories/CSSA-2001-029.0.txt http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-066.php3 http://www.redhat.com/support/errata/RHSA-2001-097.html http://www.securityfocus.com/archive/1/197727 https://exchange.xforce.ibmcloud.com/vulnerabilities/6862 •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

docview before 1.0-15 allows remote attackers to execute arbitrary commands via shell metacharacters that are processed when converting a man page to a web page. • http://www.calderasystems.com/support/security/advisories/CSSA-2001-026.0.txt http://www.securityfocus.com/bid/3052 https://exchange.xforce.ibmcloud.com/vulnerabilities/6854 •

CVSS: 2.1EPSS: 0%CPEs: 13EXPL: 0

kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges. • http://www.calderasystems.com/support/security/advisories/CSSA-2001-005.0.txt http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-018.php3?dis=7.2 http://www.novell.com/linux/security/advisories/2001_002_kdesu_txt.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5995 •

CVSS: 1.2EPSS: 0%CPEs: 15EXPL: 0

inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations. • http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.calderasystems.com/support/security/advisories/CSSA-2001-001.0.txt http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-010.php3 http://www.securityfocus.com/bid/2190 https://exchange.xforce.ibmcloud.com/vulnerabilities/5916 •