CVSS: 5.5EPSS: 2%CPEs: 9EXPL: 0CVE-2002-1199
https://notcve.org/view.php?id=CVE-2002-1199
28 Oct 2002 — The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. El procedimiento getdbm en ypxfrd permite a usuarios locales leer ficheros arbitrarios, y a atacantes remotos leer bases de datos fuera de /var/yp, mediante ataques de atravesamiento de directorios y de enlaces simbólicos en los argumentos de dominio y mapa. • ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40 •
CVSS: 7.8EPSS: 0%CPEs: 46EXPL: 2CVE-2002-0004 – AT 3.1.8 - Formatted Time Heap Overflow
https://notcve.org/view.php?id=CVE-2002-0004
27 Feb 2002 — Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice. Corrupción de memoria en el comando "at" permite que usuarios locales ejecuten código arbitrario haciendo uso de un tiempo de ejecución mal escrito (lo que provoca que at libere la misma memoria dos veces). • https://www.exploit-db.com/exploits/21229 •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0CVE-2001-0139
https://notcve.org/view.php?id=CVE-2001-0139
12 Mar 2001 — inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations. • http://marc.info/?l=bugtraq&m=97916374410647&w=2 •
CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-1999-0872
https://notcve.org/view.php?id=CVE-1999-0872
25 Aug 1999 — Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. • http://www.securityfocus.com/bid/611 •
CVSS: 7.2EPSS: 0%CPEs: 11EXPL: 1CVE-1999-0769 – Caldera OpenLinux 2.2 / Debian 2.1/2.2 / RedHat 6.0 - Vixie Cron MAILTO Sendmail
https://notcve.org/view.php?id=CVE-1999-0769
25 Aug 1999 — Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable. • https://www.exploit-db.com/exploits/19474 •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2000-0374
https://notcve.org/view.php?id=CVE-2000-0374
22 Aug 1999 — The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions. • ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-021.0.txt •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0731
https://notcve.org/view.php?id=CVE-1999-0731
23 Jun 1999 — The KDE klock program allows local users to unlock a session using malformed input. • http://www.securityfocus.com/bid/489 •
CVSS: 9.1EPSS: 0%CPEs: 4EXPL: 0CVE-1999-0712
https://notcve.org/view.php?id=CVE-1999-0712
27 Apr 1999 — A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0712 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-1999-1182
https://notcve.org/view.php?id=CVE-1999-1182
17 Jul 1997 — Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error. • http://marc.info/?l=bugtraq&m=87602661419318&w=2 •