CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
3Hp MandrakesoftRedhat5Linux Mandrake LinuxMandrake Linux Corporate Server+2 moreApr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 6.2 MEDIUM· v2 setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain pri...Show more |
9Conectiva EngardelinuxImmunix+6 more11Immunix LinuxLinux+8 moreApr 16, 2026 Mar 15, 2002 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges. |
2Apache Mandrakesoft4Http Server Mandrake LinuxMandrake Linux Corporate Server+1 moreApr 16, 2026 Nov 28, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories. |
6Caldera ImmunixMandrakesoft+3 more8Immunix LinuxMandrake Linux+5 moreApr 16, 2026 Jul 18, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduc...Show more |
4Debian MandrakesoftOpenldap+1 more6Debian Linux LinuxMandrake Linux+3 moreApr 16, 2026 Jul 16, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field. |