Mandrake Linux

mandrake_linux

Vendor: Mandrakesoft • 134 CVEs

CVEs (134)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2001-0138 4Debian ImmunixMandrakesoft+1 more 5Debian Linux ImmunixLinux+2 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0136 4Conectiva DebianMandrakesoft+1 more 4Debian Linux LinuxMandrake Linux+1 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.
CVE-2001-0128 6Conectiva DebianFreebsd+3 more 7Debian Linux FreebsdLinux+4 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 7.2 HIGH· v2 Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges.
CVE-2001-0125 3Debian ExmhMandrakesoft 4Debian Linux ExmhMandrake Linux+1 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file.
CVE-2001-0120 3Immunix MandrakesoftRedhat 3Immunix LinuxMandrake Linux Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0119 3Immunix MandrakesoftRedhat 3Immunix LinuxMandrake Linux Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0118 3Immunix MandrakesoftRedhat 3Immunix LinuxMandrake Linux Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0117 4Immunix MandrakesoftRedhat+1 more 5Immunix LinuxMandrake Linux+2 more Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.
CVE-2001-0116 3Immunix MandrakesoftRedhat 3Immunix LinuxMandrake Linux Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0108 2Mandrakesoft Php 2Mandrake Linux Php Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 PHP Apache module 4.0.4 and earlier allows remote attackers to bypass .htaccess access restrictions via a malformed HTTP request on an unrestricted page that causes PHP to use those access controls on the next page that...Show more PHP Apache module 4.0.4 and earlier allows remote attackers to bypass .htaccess access restrictions via a malformed HTTP request on an unrestricted page that causes PHP to use those access controls on the next page that is requested.Show less
CVE-2001-1385 2Mandrakesoft Php 2Mandrake Linux Php Apr 16, 2026 Jan 12, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP script...Show more The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.Show less
CVE-2000-1134 7Caldera ConectivaHp+4 more 9Hp Ux ImmunixLinux+6 more Apr 16, 2026 Jan 9, 2001 N/A· v4 N/A· v3 7.2 HIGH· v2 Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to over...Show more Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.Show less
CVE-2000-1095 5Conectiva ImmunixMandrakesoft+2 more 5Immunix LinuxLinux+2 more Apr 16, 2026 Jan 9, 2001 N/A· v4 N/A· v3 7.2 HIGH· v2 modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.
CVE-2000-1059 1Mandrakesoft 1Mandrake Linux Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority access control mechanism with an "xhost + localhost" command, which allows local users to sniff X Windows events and ga...Show more The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority access control mechanism with an "xhost + localhost" command, which allows local users to sniff X Windows events and gain privileges.Show less
CVE-2000-1043 1Mandrakesoft 1Mandrake Linux Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
CVE-2000-1042 1Mandrakesoft 1Mandrake Linux Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
CVE-2000-0883 1Mandrakesoft 1Mandrake Linux Apr 16, 2026 Nov 14, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets the /perl/ directory to be browseable, which allows remote attackers to list the contents of that directory.
CVE-2000-0867 5Debian MandrakesoftRedhat+2 more 5Debian Linux LinuxMandrake Linux+2 more Apr 16, 2026 Nov 14, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
CVE-2000-0844 13Caldera ConectivaDebian+10 more 16Aix Debian LinuxImmunix+13 more Apr 16, 2026 Nov 14, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVE-2000-0718 1Mandrakesoft 1Mandrake Linux Apr 16, 2026 Oct 20, 2000 N/A· v4 N/A· v3 1.2 LOW· v2 A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed.

Previous 1 2 3 4 567 Next