linux
by Debian
Source repositories
CVEs (3,007)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0289 | 0.00 | — | 0.03 | Mar 27, 2000 | IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection. | |||
| CVE-2000-0145 | 0.00 | — | 0.02 | Feb 5, 2000 | The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions. | |||
| CVE-2000-0112 | 0.00 | — | 0.00 | Feb 2, 2000 | The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation. | |||
| CVE-1999-1330 | 0.00 | — | 0.00 | Dec 31, 1999 | The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf. | |||
| CVE-2000-0076 | 0.00 | — | 0.00 | Dec 30, 1999 | nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover. | |||
| CVE-1999-0978 | 0.00 | — | 0.02 | Dec 9, 1999 | htdig allows remote attackers to execute commands via filenames with shell metacharacters. | |||
| CVE-2000-0366 | 0.00 | — | 0.00 | Dec 2, 1999 | dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files. | |||
| CVE-1999-0831 | 0.00 | — | 0.01 | Nov 19, 1999 | Denial of service in Linux syslogd via a large number of connections. | |||
| CVE-1999-0832 | 0.00 | — | 0.03 | Nov 9, 1999 | Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname. | |||
| CVE-1999-0939 | 0.00 | — | 0.01 | Aug 26, 1999 | Denial of service in Debian IRC Epic/epic4 client via a long string. | |||
| CVE-1999-0872 | 0.00 | — | 0.00 | Aug 25, 1999 | Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. | |||
| CVE-1999-1565 | 0.00 | — | 0.00 | Aug 20, 1999 | Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | |||
| CVE-1999-0743 | 0.00 | — | 0.00 | Aug 20, 1999 | Trn allows local users to overwrite other users' files via symlinks. | |||
| CVE-1999-0732 | 0.00 | — | 0.00 | Aug 19, 1999 | The logging facility of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links. | |||
| CVE-1999-0742 | 0.00 | — | 0.01 | Jun 22, 1999 | The Debian mailman package uses weak authentication, which allows attackers to gain privileges. | |||
| CVE-1999-1496 | 0.00 | — | 0.01 | Jun 8, 1999 | Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist. | |||
| CVE-1999-0434 | 0.00 | — | 0.01 | Mar 30, 1999 | XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | |||
| CVE-1999-0374 | 0.00 | — | 0.00 | Feb 16, 1999 | Debian GNU/Linux cfengine package is susceptible to a symlink attack. | |||
| CVE-1999-0373 | 0.00 | — | 0.00 | Feb 1, 1999 | Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root. | |||
| CVE-1999-0457 | 0.00 | — | 0.00 | Jan 17, 1999 | Linux ftpwatch program allows local users to gain root privileges. |
- CVE-2000-0289Mar 27, 2000risk 0.00cvss —epss 0.03
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.
- CVE-2000-0145Feb 5, 2000risk 0.00cvss —epss 0.02
The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions.
- CVE-2000-0112Feb 2, 2000risk 0.00cvss —epss 0.00
The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation.
- CVE-1999-1330Dec 31, 1999risk 0.00cvss —epss 0.00
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf.
- CVE-2000-0076Dec 30, 1999risk 0.00cvss —epss 0.00
nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.
- CVE-1999-0978Dec 9, 1999risk 0.00cvss —epss 0.02
htdig allows remote attackers to execute commands via filenames with shell metacharacters.
- CVE-2000-0366Dec 2, 1999risk 0.00cvss —epss 0.00
dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files.
- CVE-1999-0831Nov 19, 1999risk 0.00cvss —epss 0.01
Denial of service in Linux syslogd via a large number of connections.
- CVE-1999-0832Nov 9, 1999risk 0.00cvss —epss 0.03
Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname.
- CVE-1999-0939Aug 26, 1999risk 0.00cvss —epss 0.01
Denial of service in Debian IRC Epic/epic4 client via a long string.
- CVE-1999-0872Aug 25, 1999risk 0.00cvss —epss 0.00
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
- CVE-1999-1565Aug 20, 1999risk 0.00cvss —epss 0.00
Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
- CVE-1999-0743Aug 20, 1999risk 0.00cvss —epss 0.00
Trn allows local users to overwrite other users' files via symlinks.
- CVE-1999-0732Aug 19, 1999risk 0.00cvss —epss 0.00
The logging facility of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links.
- CVE-1999-0742Jun 22, 1999risk 0.00cvss —epss 0.01
The Debian mailman package uses weak authentication, which allows attackers to gain privileges.
- CVE-1999-1496Jun 8, 1999risk 0.00cvss —epss 0.01
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
- CVE-1999-0434Mar 30, 1999risk 0.00cvss —epss 0.01
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
- CVE-1999-0374Feb 16, 1999risk 0.00cvss —epss 0.00
Debian GNU/Linux cfengine package is susceptible to a symlink attack.
- CVE-1999-0373Feb 1, 1999risk 0.00cvss —epss 0.00
Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root.
- CVE-1999-0457Jan 17, 1999risk 0.00cvss —epss 0.00
Linux ftpwatch program allows local users to gain root privileges.
Page 150 of 151