CVSS: 7.2EPSS: 0%CPEs: 24EXPL: 3CVE-2000-0438 – S.u.S.E Linux 4.x/5.x/6.x/7.0 / Slackware 3.x/4.0 / Turbolinux 6 / OpenLinux 7.0 - 'fdmount' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0438
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter. • https://www.exploit-db.com/exploits/19952 https://www.exploit-db.com/exploits/19953 https://www.exploit-db.com/exploits/19954 http://archives.neohapsis.com/archives/bugtraq/2000-05/0245.html http://www.securityfocus.com/bid/1239 •
CVSS: 2.1EPSS: 0%CPEs: 15EXPL: 1CVE-2000-0336 – OpenLDAP 1.2.7/1.2.8/1.2.9/1.2.10 - '/usr/tmp/' Symlink
https://notcve.org/view.php?id=CVE-2000-0336
Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack. • https://www.exploit-db.com/exploits/19946 ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-009.0.txt http://www.redhat.com/support/errata/RHSA-2000-012.html http://www.securityfocus.com/bid/1232 http://www.turbolinux.com/pipermail/tl-security-announce/2000-May/000009.html •
CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 1CVE-2000-0172 – Matt Kimball and Roger Wolff mtr 0.28/0.41 / Turbolinux 3.5 b2/4.2/4.4/6.0 - mtr
https://notcve.org/view.php?id=CVE-2000-0172
The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges. • https://www.exploit-db.com/exploits/19796 http://www.securityfocus.com/bid/1038 •
CVSS: 7.2EPSS: 0%CPEs: 11EXPL: 0CVE-2000-0186
https://notcve.org/view.php?id=CVE-2000-0186
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument. • http://www.redhat.com/support/errata/RHSA-2000-100.html http://www.securityfocus.com/bid/1020 •
CVSS: 7.5EPSS: 0%CPEs: 14EXPL: 0CVE-2000-0196
https://notcve.org/view.php?id=CVE-2000-0196
Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message. • http://www.redhat.com/support/errata/RHSA-2000-006.html http://www.securityfocus.com/bid/1018 •