Vulmon
Recent Vulnerabilities
Trends
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
debian vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2007-3912
checkrestart in debian-goodies before 0.34 allows local users to gain privileges via shell metacharacters in the name of the executable file for a running process....
Debian
Debian-goodies
1.2
CVSSv2
CVE-2001-1331
mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via the command line options (1) -u or (2) -c, which do not drop privileges and follow symlinks....
Debian
Debian Linux
Progeny
7.5
CVSSv2
CVE-2001-0456
postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended....
Debian
Debian Linux
4.6
CVSSv2
CVE-2006-1564
Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the (1) mod_authz_svn.so and (2) mod_dav_svn.so modules, which might allow local users to gain privileges by installing...
Debian
Debian Linux
6.4
CVSSv2
CVE-2018-7556
LimeSurvey 2.6.x before 2.6.7, 2.7x.x before 2.73.1, and 3.x before 3.4.2 mishandles application/controller/InstallerController.php after installation, which allows remote attackers to access the configuration file....
Debian
Debian Linux
5
CVSSv2
CVE-2000-0511
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a CGI POST request....
Debian
Debian Linux
7.5
CVSSv2
CVE-2003-1022
Directory traversal vulnerability in fsp before 2.81.b18 allows remote users to access files outside the FSP root directory....
Debian
Fsp
6.4
CVSSv2
CVE-2014-3227
dpkg 1.15.9, 1.16.x before 1.16.14, and 1.17.x before 1.17.9 expect the patch program to be compliant with a need for the "C-style encoded filenames" feature, but is supported in environments with noncompliant patch programs, which triggers an interaction error that...
Debian
Dpkg
6.9
CVSSv2
CVE-2008-5140
trend-autoupdate.new in mailscanner 4.55.10 and other versions before 4.74.16-1 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/opr.ini.##### or (2) /tmp/lpt*.zip temporary file....
Debian
Mailscanner
6.8
CVSSv2
CVE-2017-8823
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, there is a use-after-free in onion service v2 during intro-point expiration because the expiring list is mismanaged in certain error cases, aka...
Debian
Debian Linux
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
trendmicro
CVE-2020-4226
CVE-2020-13425
verbb
CVE-2020-0096
CVE-2019-7192
qemu
firefox
SQL injection
CVE-2020-4378
CVE-2020-11079
privilege escalation
1
2
3
4
5
NEXT »
Vulmon