Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
caldera vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2000-0566
makewhatis in Linux man package allows local users to overwrite files via a symlink attack.
Redhat Linux 6.1
Redhat Linux 5.2
Redhat Linux 6.2
Mandrakesoft Mandrake Linux 7.0
Redhat Linux 6.0
Caldera Openlinux 2.4
Mandrakesoft Mandrake Linux 7.1
Mandrakesoft Mandrake Linux 6.0
Mandrakesoft Mandrake Linux 6.1
Caldera Openlinux 2.3
641
VMScore
CVE-1999-0872
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
Paul Vixie Vixie Cron 3.0 Pl1
Redhat Linux 5.1
Debian Debian Linux 2.2
Debian Debian Linux 2.1
Redhat Linux 5.2
Caldera Openlinux 2.2
Redhat Linux 6.0
Redhat Linux 5.0
Redhat Linux 4.1
Redhat Linux 4.0
Redhat Linux 4.2
641
VMScore
CVE-1999-1182
Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error.
Delix Dld 5.2
Lst Lst Power Linux 2.2
Debian Debian Linux 4.0
Suse Suse Linux 5.0
Redhat Linux 4.1
Caldera Openlinux Lite 1.1
Redhat Linux 4.0
Redhat Linux 4.2
580
VMScore
CVE-2021-42559
An issue exists in CALDERA 2.8.1. It contains multiple startup "requirements" that execute commands when starting the server. Because these commands can be changed via the REST API, an authenticated user can insert arbitrary commands that will execute when the server is...
Mitre Caldera
2 Github repositories
578
VMScore
CVE-2021-42560
An issue exists in CALDERA 2.9.0. The Debrief plugin receives base64 encoded "SVG" parameters when generating a PDF document. These SVG documents are parsed in an unsafe manner and can be leveraged for XXE attacks (e.g., File Exfiltration, Server Side Request Forgery, O...
Mitre Caldera 2.9.0
1 Github repository
578
VMScore
CVE-2020-19907
A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and previous versions allows authenticated malicious users to execute any command or service.
Mitre Caldera
505
VMScore
CVE-2000-0594
BitchX IRC client does not properly cleanse an untrusted format string, which allows remote malicious users to cause a denial of service via an invite to a channel whose name includes special formatting characters.
Caldera Openlinux Desktop 2.3
Caldera Openlinux Ebuilder 2.3
Caldera Openlinux Eserver 2.3
Mandrakesoft Mandrake Linux 2007
Caldera Openlinux Edesktop 2.4
Freebsd Freebsd 4.0
Freebsd Freebsd 3.5
1 EDB exploit
505
VMScore
CVE-2000-0192
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote malicious users to determine what packages are installed on the system.
Caldera Openlinux 2.3
1 EDB exploit
490
VMScore
CVE-2021-42562
An issue exists in CALDERA 2.8.1. It does not properly segregate user privileges, resulting in non-admin users having access to read and modify configuration or other components that should only be accessible by admin users.
Mitre Caldera
1 Github repository
465
VMScore
CVE-1999-0735
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.
Kde K-mail
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »