Trustix

Secure Linux

65 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2000-1009

Exploit
  • EPSS 0.13%
  • Published 11.12.2000 05:00:00
  • Last modified 03.04.2025 01:03:51

dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.

7.2

CVE-2000-0867

  • EPSS 0.07%
  • Published 14.11.2000 05:00:00
  • Last modified 03.04.2025 01:03:51

Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.

10

CVE-2000-0844

Exploit
  • EPSS 0.89%
  • Published 14.11.2000 05:00:00
  • Last modified 03.04.2025 01:03:51

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

4.6

CVE-2000-0791

  • EPSS 0.04%
  • Published 20.10.2000 04:00:00
  • Last modified 03.04.2025 01:03:51

Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse.

10

CVE-2000-0666

Exploit
  • EPSS 34.57%
  • Published 16.07.2000 04:00:00
  • Last modified 03.04.2025 01:03:51

rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges.