Filtered by vendor Gnu
Subscriptions
Total
1074 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-1999-1383 | 2 Gnu, Tcsh | 2 Bash, Tcsh | 2024-11-20 | N/A |
(1) bash before 1.14.7, and (2) tcsh 6.05 allow local users to gain privileges via directory names that contain shell metacharacters (` back-tick), which can cause the commands enclosed in the directory name to be executed when the shell expands filenames using the \w option in the PS1 variable. | ||||
CVE-1999-1165 | 1 Gnu | 1 Fingerd | 2024-11-20 | N/A |
GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to (1) gain root privileges via a malicious program in the .fingerrc file, or (2) read arbitrary files via symbolic links from .plan, .forward, or .project files. | ||||
CVE-1999-0719 | 1 Gnu | 1 Gnumeric | 2024-11-20 | N/A |
The Guile plugin for the Gnumeric spreadsheet package allows attackers to execute arbitrary code. | ||||
CVE-1999-0612 | 2 Gnu, Microsoft | 4 Finger Service, Fingerd, Windows 2000 and 1 more | 2024-11-20 | N/A |
A version of finger is running that exposes valid user information to any entity on the network. | ||||
CVE-1999-0491 | 1 Gnu | 1 Bash | 2024-11-20 | N/A |
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute. | ||||
CVE-1999-0402 | 1 Gnu | 1 Wget | 2024-11-20 | N/A |
wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself. | ||||
CVE-1999-0216 | 3 Gnu, Hp, Linux | 3 Inet, Hp-ux, Linux Kernel | 2024-11-20 | N/A |
Denial of service of inetd on Linux through SYN and RST packets. | ||||
CVE-1999-0199 | 1 Gnu | 1 Glibc | 2024-11-20 | 9.8 Critical |
manual/search.texi in the GNU C Library (aka glibc) before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaware of a documentation update from 1999. | ||||
CVE-1999-0150 | 1 Gnu | 1 Fingerd | 2024-11-20 | N/A |
The Perl fingerd program allows arbitrary command execution from remote users. | ||||
CVE-1999-0041 | 5 Cray, Gnu, Ibm and 2 more | 6 Unicos, Unicos Max, Libc and 3 more | 2024-11-20 | N/A |
Buffer overflow in NLS (Natural Language Service). | ||||
CVE-1999-0035 | 2 Gnu, Sgi | 2 Inet, Irix | 2024-11-20 | N/A |
Race condition in signal handling routine in ftpd, allowing read/write arbitrary files. | ||||
CVE-1999-0017 | 9 Caldera, Freebsd, Gnu and 6 more | 11 Openlinux, Freebsd, Inet and 8 more | 2024-11-20 | N/A |
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. | ||||
CVE-1999-0016 | 6 Cisco, Gnu, Hp and 3 more | 8 Ios, Inet, Hp-ux and 5 more | 2024-11-20 | N/A |
Land IP denial of service. | ||||
CVE-2024-50610 | 1 Gnu | 1 Gnu Scientific Library | 2024-10-30 | 3.6 Low |
GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many in siman/siman.c. When params.n_tries is negative, incorrect memory allocation occurs. |