CVE-2001-0889
- EPSS 6.35%
- Veröffentlicht 19.12.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:55:09
Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address when redirecting the address to a pipe, which could allow remote attackers to execute arbitrary commands via shell metacharacters.
- EPSS 8.65%
- Veröffentlicht 06.12.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:55:06
TUX HTTP server 2.1.0-2 in Red Hat Linux allows remote attackers to cause a denial of service via a long Host: header.
- EPSS 1.83%
- Veröffentlicht 06.12.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:55:06
2.4.3-12 kernel in Red Hat Linux 7.1 Korean installation program sets the setting default umask for init to 000, which installs files with world-writeable permissions.
CVE-2001-0946
- EPSS 0.41%
- Veröffentlicht 04.12.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:55:16
apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification dates of arbitrary files via a symlink attack on the LOW_POWER temporary file, which could be used to cause a denial of service, e.g. by creating /etc/n...
CVE-2001-0736
- EPSS 0.82%
- Veröffentlicht 18.10.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:51
Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0787
- EPSS 0.72%
- Veröffentlicht 18.10.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:57
LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges.
CVE-2001-1383
- EPSS 0.32%
- Veröffentlicht 26.09.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:09
initscript in setserial 2.17-4 and earlier uses predictable temporary file names, which could allow local users to conduct unauthorized operations on files.
CVE-2001-0641
- EPSS 1.26%
- Veröffentlicht 20.09.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:40
Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option.
CVE-2001-0690
- EPSS 11.89%
- Veröffentlicht 20.09.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:46
Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers.
- EPSS 65.56%
- Veröffentlicht 12.09.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:55:24
Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid u...