Vulmon Recent Vulnerabilities Trends About Contact

debian linux vulnerabilities and exploits

(subscribe to this query)

7.5
CVSSv2
CVE-2001-0690
Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers....
University Of CambridgeEximConectivaLinuxDebianDebian LinuxRedhat
4.6
CVSSv2
CVE-1999-1048
Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that...
DebianDebian LinuxRedhatLinux
4.6
CVSSv2
CVE-1999-1330
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf....
DebianDebian LinuxRedhatLinux
10
CVSSv2
CVE-1999-0832
Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname....
DebianDebian LinuxRedhatLinux
4.6
CVSSv2
CVE-2001-0886
Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{" character....
DebianDebian LinuxRedhatLinux
2.1
CVSSv2
CVE-2001-0170
glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files....
ImmunixConectivaLinuxDebianDebian LinuxRedhat
2.1
CVSSv2
CVE-1999-1496
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist....
Todd MillerSudoDebianDebian LinuxRedhatLinux
2.1
CVSSv2
CVE-2004-1336
The xdvizilla script in tetex-bin 2.0.2 creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack....
DebianTetex-binGentooLinux
3.6
CVSSv2
CVE-2002-0044
GNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript user via a symlink attack on temporary files....
GnuEnscriptDebianDebian LinuxRedhatLinux
5
CVSSv2
CVE-2000-0508
rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request....
DebianDebian LinuxMandrakesoftMandrake LinuxRedhatLinux
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injectCVE-2020-0796clientlearndashCVE-2020-11463uiCVE-2020-7617unifi videoCVE-2019-17026command injectionCVE-2020-11467CVE-2020-7630NULL pointer dereference