- EPSS 7.57%
- Veröffentlicht 11.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:58
The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package documentation and obtain system configuration information via an HTTP request for the /doc/packag...
- EPSS 2.52%
- Veröffentlicht 11.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:01
Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an attacker to cause a denial of service.
- EPSS 2.45%
- Veröffentlicht 11.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:02
Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges.
- EPSS 15.35%
- Veröffentlicht 14.11.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:35
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
- EPSS 44.72%
- Veröffentlicht 14.11.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:38
The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.
- EPSS 50.95%
- Veröffentlicht 14.11.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:38
The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method.
- EPSS 3.21%
- Veröffentlicht 20.10.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:30
String parsing error in rpc.kstatd in the linuxnfs or knfsd packages in SuSE and possibly other Linux systems allows remote attackers to gain root privileges.
- EPSS 26.32%
- Veröffentlicht 16.07.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:13
rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges.
- EPSS 3.74%
- Veröffentlicht 10.07.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:06
Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output.
- EPSS 17.78%
- Veröffentlicht 24.05.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:51:50
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.