本页列出影响 caldera openlinux 的已公开 CVE 漏洞(通过 NVD CPE 关联)。每行包含严重程度评分、摘要与发布日期,便于识别与分析安全问题。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2002-1199 | The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. | [email protected] | 5.0 | 8.38% | 2002-10-28 | 2026-04-16 |
| CVE-2001-0851 | Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. | [email protected] | 5.0 | 0.62% | 2001-12-06 | 2026-04-16 |
| CVE-2001-0850 | A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote users to exploit those functions with a buffer overflow. | [email protected] | 10.0 | 0.74% | 2001-12-06 | 2026-04-16 |
| CVE-2000-0892 | Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL. | [email protected] | 2.6 | 0.49% | 2001-07-21 | 2026-04-16 |
| CVE-2000-1134 | Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. | [email protected] | 7.2 | 0.17% | 2001-01-09 | 2026-04-16 |
| CVE-2000-0917 | Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands. | [email protected] | 10.0 | 86.09% | 2000-12-19 | 2026-04-16 |
| CVE-2000-0844 | Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | [email protected] | 10.0 | 0.89% | 2000-11-14 | 2026-04-16 |
| CVE-2000-0372 | Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges. | [email protected] | 7.2 | 0.05% | 2000-07-12 | 2026-04-16 |
| CVE-2000-0566 | makewhatis in Linux man package allows local users to overwrite files via a symlink attack. | [email protected] | 7.2 | 0.08% | 2000-07-03 | 2026-04-16 |
| CVE-2000-0530 | The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files. | [email protected] | 7.2 | 0.27% | 2000-05-31 | 2026-04-16 |
| CVE-2000-0491 | Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request. | [email protected] | 10.0 | 6.92% | 2000-05-24 | 2026-04-16 |
| CVE-2000-0438 | Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter. | [email protected] | 7.2 | 0.38% | 2000-05-22 | 2026-04-16 |
| CVE-2000-0192 | The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system. | [email protected] | 5.0 | 3.62% | 2000-03-05 | 2026-04-16 |
| CVE-2000-0218 | Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname. | [email protected] | 7.2 | 0.15% | 2000-02-03 | 2026-04-16 |
| CVE-2000-0531 | Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets. | [email protected] | 2.1 | 0.45% | 1999-11-23 | 2026-04-16 |
| CVE-2000-0369 | The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service. | [email protected] | 5.0 | 0.66% | 1999-10-08 | 2026-04-16 |
| CVE-1999-0880 | Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly. | [email protected] | 5.0 | 0.50% | 1999-10-01 | 2026-04-16 |
| CVE-1999-0879 | Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file. | [email protected] | 10.0 | 4.57% | 1999-10-01 | 2026-04-16 |
| CVE-1999-0872 | Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. | [email protected] | 7.2 | 0.06% | 1999-08-25 | 2026-04-16 |
| CVE-1999-0769 | Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable. | [email protected] | 7.2 | 0.38% | 1999-08-25 | 2026-04-16 |