CVEs (36)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional...Show more |
The KDE klock program allows local users to unlock a session using malformed input. |
A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable. |
Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration file. |
5Caldera DebianNetbsd+2 more5Debian Linux LinuxNetbsd+2 moreApr 16, 2026 Mar 30, 1999 N/A· v4 N/A· v3 7.5 HIGH· v2 XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. |
7Caldera DebianProftpd Project+4 more8Debian Linux LinuxOpenlinux+5 moreApr 16, 2026 Feb 9, 1999 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto. |
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command. |
4Caldera RedhatSamba+1 more4Linux OpenlinuxSamba+1 moreApr 16, 2026 Nov 19, 1998 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges...Show more |
3Bsdi CalderaRedhat3Bsd Os LinuxOpenlinuxApr 16, 2026 Oct 12, 1998 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems. |
11Bsdi CalderaData General+8 more13Aix Asl Ux 4800Bind+10 moreApr 16, 2026 Apr 8, 1998 N/A· v4 N/A· v3 10.0 HIGH· v2 Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. |
4Caldera HpMicrosoft+1 more5Hp Ux OpenlinuxSunos+2 moreApr 16, 2026 Dec 16, 1997 N/A· v4 N/A· v3 5.0 MEDIUM· v2 A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. |
9Caldera FreebsdGnu+6 more11Aix FreebsdInet+8 moreApr 16, 2026 Dec 10, 1997 N/A· v4 N/A· v3 7.5 HIGH· v2 FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. |
5Bsdi CalderaIbm+2 more6Aix Bsd OsImap+3 moreApr 16, 2026 Apr 7, 1997 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in University of Washington's implementation of IMAP and POP servers. |
3Bsdi CalderaEric Allman3Bsd Os OpenlinuxSendmailApr 16, 2026 Jan 28, 1997 N/A· v4 N/A· v3 10.0 HIGH· v2 MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. |
6Bsdi CalderaIsc+3 more7Bsd Os Goah IntrasvGoah Networksv+4 moreApr 16, 2026 Dec 4, 1996 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others. |
5Caldera RedhatSgi+2 more5Irix LinuxLinux+2 moreApr 16, 2026 Oct 8, 1996 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Bash treats any character with a value of 255 as a command separator. |