Redhat
redhat
5,653 CVEs • 533 products
Products (533)
Click to collapseToggle
Products (533)
Click to collapse
CVEs (5,653)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
3Mandrakesoft MitRedhat4Kerberos Ftp Client LinuxMandrake Linux+1 moreApr 16, 2026 Feb 19, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by the client. |
uml_net in the kernel-utils package for Red Hat Linux 8.0 has incorrect setuid root privileges, which allows local users to modify network interfaces, e.g. by modifying ARP entries or placing interfaces into promiscuous...Show more |
The default configuration of the pam_xauth module forwards MIT-Magic-Cookies to new X sessions, which could allow local users to gain root privileges by stealing the cookies from a temporary .xauth file, which is created...Show more |
The default --checksig setting in RPM Package Manager 4.0.4 checks that a package's signature is valid without listing who signed it, which can allow remote attackers to make it appear that a malicious package comes from...Show more |
6Debian MandrakesoftMicrosoft+3 more11Debian Linux Enterprise LinuxEnterprise Linux Desktop+8 moreApr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 4.9 MEDIUM· v2 The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target t...Show more |
rhmask 1.0-9 in Red Hat Linux 7.1 allows local users to overwrite arbitrary files via a symlink attack on the mask file. |
4Gnome MandrakesoftRedhat+1 more4Bonobo LinuxMandrake Linux+1 moreApr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments. |
5Redhat Safe.pmSco+2 more9Enterprise Linux IrixLinux+6 moreApr 16, 2026 Dec 11, 2002 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successi...Show more |
3Debian HpRedhat3Debian Linux LinuxSecure OsApr 16, 2026 Nov 4, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Memory leak in ypdb_open in yp_db.c for ypserv before 2.5 in the NIS package 3.9 and earlier allows remote attackers to cause a denial of service (memory consumption) via a large number of requests for a map that does no...Show more |
3Hp MandrakesoftRedhat3Linux Mandrake LinuxSecure OsApr 16, 2026 Oct 28, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts. |
3Caldera HpRedhat4Openlinux Server Openlinux WorkstationPre Execution Environment+1 moreApr 16, 2026 Oct 4, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Preboot eXecution Environment (PXE) server allows remote attackers to cause a denial of service (crash) via certain DHCP packets from Voice-Over-IP (VOIP) phones. |
Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files. |
3Hp MandrakesoftRedhat5Linux Mandrake LinuxMandrake Linux Corporate Server+2 moreApr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 6.2 MEDIUM· v2 setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain pri...Show more |
Buffer overflow in newt.c of newt windowing library (libnewt) 0.50.33 and earlier may allow attackers to cause a denial of service or execute arbitrary code in setuid programs that use libnewt. |
4Immunix NetbsdOpenbsd+1 more4Immunix LinuxNetbsd+1 moreApr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote() call...Show more |
1Redhat 2Docbook Stylesheets Docbook UtilsApr 16, 2026 May 29, 2002 N/A· v4 N/A· v3 4.6 MEDIUM· v2 The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which could allow users to overwrite files outside of the current directory from an untrusted document by...Show more |
9Conectiva EngardelinuxImmunix+6 more11Immunix LinuxLinux+8 moreApr 16, 2026 Mar 15, 2002 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges. |
rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be...Show more |
Memory leak in SNMP in Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service. |
Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer wh...Show more |