Mandrake Linux Corporate Server

mandrake_linux_corporate_server

Vendor: Mandrakesoft • 54 CVEs

CVEs (54)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2002-0638 3Hp MandrakesoftRedhat 5Linux Mandrake LinuxMandrake Linux Corporate Server+2 more Apr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 6.2 MEDIUM· v2 setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain pri...Show more setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain privileges via a complex race condition that uses an open file descriptor in utility programs such as chfn and chsh.Show less
CVE-2002-0083 9Conectiva EngardelinuxImmunix+6 more 11Immunix LinuxLinux+8 more Apr 16, 2026 Mar 15, 2002 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.
CVE-2001-1449 2Apache Mandrakesoft 4Http Server Mandrake LinuxMandrake Linux Corporate Server+1 more Apr 16, 2026 Nov 28, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.
CVE-2001-0736 5Engardelinux ImmunixMandrakesoft+2 more 6Immunix LinuxMandrake Linux+3 more Apr 16, 2026 Oct 18, 2001 N/A· v4 N/A· v3 2.1 LOW· v2 Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack.
CVE-2001-1030 6Caldera ImmunixMandrakesoft+3 more 8Immunix LinuxMandrake Linux+5 more Apr 16, 2026 Jul 18, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduc...Show more Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.Show less
CVE-2001-0977 4Debian MandrakesoftOpenldap+1 more 6Debian Linux LinuxMandrake Linux+3 more Apr 16, 2026 Jul 16, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
CVE-2001-0439 5Conectiva FreebsdLicq+2 more 6Freebsd LicqLinux+3 more Apr 16, 2026 Jul 2, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
CVE-2001-0441 3Debian MandrakesoftRedhat 4Debian Linux LinuxMandrake Linux+1 more Apr 16, 2026 Jun 27, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.
CVE-2001-0279 2Debian Mandrakesoft 3Debian Linux Mandrake LinuxMandrake Linux Corporate Server Apr 16, 2026 May 3, 2001 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.
CVE-2001-0178 4Caldera ConectivaMandrakesoft+1 more 5Linux Mandrake LinuxMandrake Linux Corporate Server+2 more Apr 16, 2026 Mar 26, 2001 N/A· v4 N/A· v3 2.1 LOW· v2 kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.
CVE-2001-0169 4Mandrakesoft RedhatTrustix+1 more 5Linux Mandrake LinuxMandrake Linux Corporate Server+2 more Apr 16, 2026 Mar 26, 2001 N/A· v4 N/A· v3 2.1 LOW· v2 When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary...Show more When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib.Show less
CVE-2001-0138 4Debian ImmunixMandrakesoft+1 more 5Debian Linux ImmunixLinux+2 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0125 3Debian ExmhMandrakesoft 4Debian Linux ExmhMandrake Linux+1 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file.
CVE-2001-0117 4Immunix MandrakesoftRedhat+1 more 5Immunix LinuxMandrake Linux+2 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.

Previous 1 23