CVSS: 9.8EPSS: 2%CPEs: 9EXPL: 0CVE-2001-0869
https://notcve.org/view.php?id=CVE-2001-0869
21 Dec 2001 — Format string vulnerability in the default logging callback function _sasl_syslog in common.c in Cyrus SASL library (cyrus-sasl) may allow remote attackers to execute arbitrary commands. Vulnerabilidad de cadena de formato en la función de retrollamada (callback) en common.c en la librería Cyrus SASL (cyrus-sasl) podría permitr a atacantes remotos ejecutar comandos de su elección. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:15.cyrus-sasl.asc •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2001-0851
https://notcve.org/view.php?id=CVE-2001-0851
06 Dec 2001 — Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000432 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2000-1195
https://notcve.org/view.php?id=CVE-2000-1195
31 Aug 2001 — telnet daemon (telnetd) from the Linux netkit package before netkit-telnet-0.16 allows remote attackers to bypass authentication when telnetd is running with the -L command line option. • http://www.caldera.com/support/security/advisories/CSSA-2000-008.0.txt •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0CVE-2001-0139
https://notcve.org/view.php?id=CVE-2001-0139
12 Mar 2001 — inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations. • http://marc.info/?l=bugtraq&m=97916374410647&w=2 •
CVSS: 10.0EPSS: 2%CPEs: 3EXPL: 0CVE-2001-0181
https://notcve.org/view.php?id=CVE-2001-0181
09 Mar 2001 — Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execute arbitrary commands. • http://www.calderasystems.com/support/security/advisories/CSSA-2001-003.0.txt •
CVSS: 10.0EPSS: 83%CPEs: 7EXPL: 5CVE-2000-0917 – LPRng (RedHat 7.0) - 'lpd' Format String
https://notcve.org/view.php?id=CVE-2000-0917
19 Dec 2000 — Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands. • https://www.exploit-db.com/exploits/227 •
CVSS: 7.2EPSS: 0%CPEs: 22EXPL: 3CVE-2000-1134 – UUCP - File Creation/Overwriting Symlinks
https://notcve.org/view.php?id=CVE-2000-1134
19 Dec 2000 — Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. • https://www.exploit-db.com/exploits/217 •
CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 12%CPEs: 7EXPL: 1CVE-2000-0594 – BitchX IRC Client 75p1/75p3/1.0 c16 - '/INVITE' Format String
https://notcve.org/view.php?id=CVE-2000-0594
04 Jul 2000 — BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters. • https://www.exploit-db.com/exploits/20060 •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 2CVE-2000-0531 – OpenLinux 2.3/2.4 / RedHat 6.0/6.1 / SCO eServer 2.3 - Denial of Service
https://notcve.org/view.php?id=CVE-2000-0531
23 Nov 1999 — Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets. • https://www.exploit-db.com/exploits/20026 •