Page 3 of 12 results (0.029 seconds)

CVSS: 7.5EPSS: 1%CPEs: 5EXPL: 0

ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack. • http://www.nai.com/nai_labs/asp_set/advisory/06_ypbindsetme_adv.asp •

CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0

rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter. • http://marc.info/?l=bugtraq&m=87602167418966&w=2 •