CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 4CVE-2001-0109 – SuSE 6.x/7.0 - MkDir Error Handling rctab Race Condition
https://notcve.org/view.php?id=CVE-2001-0109
12 Mar 2001 — rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file. • https://www.exploit-db.com/exploits/20554 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 2CVE-2000-1095 – Linux modutils 2.3.9 - 'modprobe' Arbitrary Command Execution
https://notcve.org/view.php?id=CVE-2000-1095
09 Jan 2001 — modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters. • https://www.exploit-db.com/exploits/20402 •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2000-1107
https://notcve.org/view.php?id=CVE-2000-1107
09 Jan 2001 — in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of service via a long request, which causes the server to access a NULL pointer and crash. • http://archives.neohapsis.com/archives/bugtraq/2000-11/0387.html •
CVSS: 7.2EPSS: 0%CPEs: 22EXPL: 3CVE-2000-1134 – UUCP - File Creation/Overwriting Symlinks
https://notcve.org/view.php?id=CVE-2000-1134
19 Dec 2000 — Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. • https://www.exploit-db.com/exploits/217 •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2000-1044
https://notcve.org/view.php?id=CVE-2000-1044
11 Dec 2000 — Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges. • http://archives.neohapsis.com/archives/linux/suse/2000-q4/0262.html •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2000-1040
https://notcve.org/view.php?id=CVE-2000-1040
11 Dec 2000 — Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an attacker to cause a denial of service. • http://archives.neohapsis.com/archives/bugtraq/2000-10/0356.html •
CVSS: 9.1EPSS: 1%CPEs: 12EXPL: 2CVE-2000-0869 – Apache 1.3.12 - WebDAV Directory Listings
https://notcve.org/view.php?id=CVE-2000-0869
14 Nov 2000 — The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method. • https://www.exploit-db.com/exploits/20210 •
CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 0%CPEs: 9EXPL: 0CVE-2000-0800
https://notcve.org/view.php?id=CVE-2000-0800
21 Sep 2000 — String parsing error in rpc.kstatd in the linuxnfs or knfsd packages in SuSE and possibly other Linux systems allows remote attackers to gain root privileges. • http://www.novell.com/linux/security/advisories/suse_security_announce_58.html •
CVSS: 10.0EPSS: 37%CPEs: 32EXPL: 5CVE-2000-0666 – Conectiva 4.x/5.x / Debian 2.x / RedHat 6.x / S.u.S.E 6.x/7.0 / Trustix 1.x - rpc.statd Remote Format String
https://notcve.org/view.php?id=CVE-2000-0666
16 Jul 2000 — rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges. • https://www.exploit-db.com/exploits/20075 •