CVSS: 5.5EPSS: 2%CPEs: 9EXPL: 0CVE-2002-1199
https://notcve.org/view.php?id=CVE-2002-1199
28 Oct 2002 — The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. El procedimiento getdbm en ypxfrd permite a usuarios locales leer ficheros arbitrarios, y a atacantes remotos leer bases de datos fuera de /var/yp, mediante ataques de atravesamiento de directorios y de enlaces simbólicos en los argumentos de dominio y mapa. • ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40 •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2001-0851
https://notcve.org/view.php?id=CVE-2001-0851
06 Dec 2001 — Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000432 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2000-1195
https://notcve.org/view.php?id=CVE-2000-1195
31 Aug 2001 — telnet daemon (telnetd) from the Linux netkit package before netkit-telnet-0.16 allows remote attackers to bypass authentication when telnetd is running with the -L command line option. • http://www.caldera.com/support/security/advisories/CSSA-2000-008.0.txt •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0CVE-2001-0139
https://notcve.org/view.php?id=CVE-2001-0139
12 Mar 2001 — inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations. • http://marc.info/?l=bugtraq&m=97916374410647&w=2 •
CVSS: 10.0EPSS: 2%CPEs: 3EXPL: 0CVE-2001-0181
https://notcve.org/view.php?id=CVE-2001-0181
09 Mar 2001 — Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execute arbitrary commands. • http://www.calderasystems.com/support/security/advisories/CSSA-2001-003.0.txt •
CVSS: 10.0EPSS: 83%CPEs: 7EXPL: 5CVE-2000-0917 – LPRng (RedHat 7.0) - 'lpd' Format String
https://notcve.org/view.php?id=CVE-2000-0917
19 Dec 2000 — Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands. • https://www.exploit-db.com/exploits/227 •
CVSS: 7.2EPSS: 0%CPEs: 22EXPL: 3CVE-2000-1134 – UUCP - File Creation/Overwriting Symlinks
https://notcve.org/view.php?id=CVE-2000-1134
19 Dec 2000 — Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. • https://www.exploit-db.com/exploits/217 •
CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 12%CPEs: 7EXPL: 1CVE-2000-0594 – BitchX IRC Client 75p1/75p3/1.0 c16 - '/INVITE' Format String
https://notcve.org/view.php?id=CVE-2000-0594
04 Jul 2000 — BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters. • https://www.exploit-db.com/exploits/20060 •
CVSS: 7.2EPSS: 0%CPEs: 18EXPL: 0CVE-2000-0566
https://notcve.org/view.php?id=CVE-2000-0566
03 Jul 2000 — makewhatis in Linux man package allows local users to overwrite files via a symlink attack. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-021.0.txt •