Page 633 of 3165 results (0.012 seconds)

CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 0

automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded. • http://marc.info/?l=bugtraq&m=89042322924057&w=2 http://www.iss.net/security_center/static/7240.php http://www.osvdb.org/6111 http://www.redhat.com/support/errata/rh50-errata-general.html#ncftp •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges. • http://www.iss.net/security_center/static/7250.php http://www.redhat.com/support/errata/rh50-errata-general.html#SysVinit •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file. • http://marc.info/?l=bugtraq&m=93942774609925&w=2 •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm. • http://marc.info/?l=bugtraq&m=93942774609925&w=2 •

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service. • http://marc.info/?l=bugtraq&m=93220073515880&w=2 •