VYPR

Vendor CVEs

Debian

All CVEs

3,362 total · sorted by risk
  • CVE-2015-3202Jul 2, 2015
    risk 0.03cvss epss 0.01

    fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT_MTAB environment variable that is used by mount's debugging feature.

  • CVE-2015-3145Apr 24, 2015
    risk 0.03cvss epss 0.38

    The sanitize_cookie_path function in cURL and libcurl 7.31.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds write and crash) or possibly have other unspecified impact via a cookie path containing…

  • CVE-2014-0118Jul 20, 2014
    risk 0.03cvss epss 0.37

    The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service (resource consumption) via crafted request data that decompresses…

  • CVE-2014-1512Mar 19, 2014
    risk 0.03cvss epss 0.31

    Use-after-free vulnerability in the TypeObject class in the JavaScript engine in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to execute arbitrary code by triggering extensive memory…

  • CVE-2011-4613Feb 5, 2014
    risk 0.03cvss epss 0.01

    The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY.

  • CVE-2012-1586Aug 27, 2012
    risk 0.03cvss epss 0.01

    mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message.

  • CVE-2012-0031Jan 18, 2012
    risk 0.03cvss epss 0.03

    scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow local users to cause a denial of service (daemon crash during shutdown) or possibly have unspecified other impact by modifying a certain type field within a scoreboard shared memory segment, leading to an…

  • CVE-2011-2201Sep 14, 2011
    risk 0.03cvss epss 0.06

    The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input.

  • CVE-2011-2749Aug 15, 2011
    risk 0.03cvss epss 0.39

    The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted BOOTP packet.

  • CVE-2011-2748Aug 15, 2011
    risk 0.03cvss epss 0.39

    The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.

  • CVE-2010-3850Dec 30, 2010
    risk 0.03cvss epss 0.01

    The ec_dev_ioctl function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2 does not require the CAP_NET_ADMIN capability, which allows local users to bypass intended access restrictions and configure econet addresses via an SIOCSIFADDR ioctl call.

  • CVE-2010-3849Dec 30, 2010
    risk 0.03cvss epss 0.01

    The econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2, when an econet address is configured, allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a sendmsg call that specifies a NULL value for the remote…

  • CVE-2010-3848Dec 30, 2010
    risk 0.03cvss epss 0.01

    Stack-based buffer overflow in the econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2, when an econet address is configured, allows local users to gain privileges by providing a large number of iovec structures.

  • CVE-2010-3858Nov 30, 2010
    risk 0.03cvss epss 0.01

    The setup_arg_pages function in fs/exec.c in the Linux kernel before 2.6.36, when CONFIG_STACK_GROWSDOWN is used, does not properly restrict the stack memory consumption of the (1) arguments and (2) environment for a 32-bit application on a 64-bit platform, which allows local…

  • CVE-2010-4073Nov 29, 2010
    risk 0.03cvss epss 0.02

    The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the (1) compat_sys_semctl, (2) compat_sys_msgctl, and (3)…

  • CVE-2010-2963Nov 26, 2010
    risk 0.03cvss epss 0.01

    drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, which allows local users to write to arbitrary kernel memory locations, and…

  • CVE-2010-3437Oct 4, 2010
    risk 0.03cvss epss 0.02

    Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) via…

  • CVE-2010-2959Sep 8, 2010
    risk 0.03cvss epss 0.04

    Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows attackers to execute arbitrary code or cause a denial of service…

  • CVE-2010-0307Feb 17, 2010
    risk 0.03cvss epss 0.01

    The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensure that the ELF interpreter is available before a call to the SET_PERSONALITY macro, which allows local users to cause a denial of service (system crash) via a…

  • CVE-2008-5394Dec 9, 2008
    risk 0.03cvss epss 0.01

    /bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably other Linux distributions, allows local users in the utmp group to overwrite arbitrary files via a symlink attack on a temporary file referenced in a line (aka ut_line) field in a utmp entry.

  • CVE-2008-4192Sep 29, 2008
    risk 0.03cvss epss 0.01

    The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.

  • CVE-2007-6211Dec 4, 2007
    risk 0.03cvss epss 0.01

    Send ICMP Nasty Garbage (sing) on Debian GNU/Linux allows local users to append to arbitrary files and gain privileges via the -L (output log file) option. NOTE: this issue is only a vulnerability in limited environments, since sing is not installed setuid, and the…

  • CVE-2007-5837Nov 5, 2007
    risk 0.03cvss epss 0.06

    GUI.pm in yarssr 0.2.2, when Gnome default URL handling is disabled, allows remote attackers to execute arbitrary commands via shell metacharacters in a link element in a feed.

  • CVE-2007-2839Jul 5, 2007
    risk 0.03cvss epss 0.01

    gfax 0.4.2 and probably other versions creates temporary files insecurely, which allows local users to execute arbitrary commands via unknown vectors.

  • CVE-2006-4250Apr 10, 2007
    risk 0.03cvss epss 0.01

    Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.

  • CVE-2006-7098Mar 3, 2007
    risk 0.03cvss epss 0.01

    The Debian GNU/Linux 033_-F_NO_SETSID patch for the Apache HTTP Server 1.3.34-4 does not properly disassociate httpd from a controlling tty when httpd is started interactively, which allows local users to gain privileges to that tty via a CGI program that calls the TIOCSTI ioctl.

  • CVE-2006-6942Jan 19, 2007
    risk 0.03cvss epss 0.03

    Multiple cross-site scripting (XSS) vulnerabilities in PhpMyAdmin before 2.9.1.1 allow remote attackers to inject arbitrary HTML or web script via (1) a comment for a table name, as exploited through (a) db_operations.php, (2) the db parameter to (b) db_create.php, (3) the…

  • CVE-2004-0996Jan 10, 2005
    risk 0.03cvss epss 0.01

    main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

  • CVE-2003-0649Aug 27, 2003
    risk 0.03cvss epss 0.01

    Buffer overflow in xpcd-svga for xpcd 2.08 and earlier allows local users to execute arbitrary code via a long HOME environment variable.

  • CVE-2003-0385Jul 2, 2003
    risk 0.03cvss epss 0.01

    Buffer overflow in xaos 3.0-23 and earlier, when running setuid, allows local users to gain root privileges via a long -language option.

  • CVE-2003-0358Jun 9, 2003
    risk 0.03cvss epss 0.01

    Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.

  • CVE-2003-0262May 27, 2003
    risk 0.03cvss epss 0.01

    leksbot 1.2.3 in Debian GNU/Linux installs the KATAXWR as setuid root, which allows local users to gain root privileges by exploiting unknown vulnerabilities related to the escalated privileges, which KATAXWR is not designed to have.

  • CVE-2002-0875Sep 5, 2002
    risk 0.03cvss epss 0.01

    Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group.

  • CVE-2002-0004Feb 27, 2002
    risk 0.03cvss epss 0.01

    Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.

  • CVE-2001-1561Dec 31, 2001
    risk 0.03cvss epss 0.01

    Buffer overflow in Xvt 2.1 in Debian Linux 2.2 allows local users to execute arbitrary code via long (1) -name and (2) -T arguments.

  • CVE-2001-0623Aug 2, 2001
    risk 0.03cvss epss 0.01

    sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does not properly drop privileges when sending notification emails, which allows local attackers to gain privileges.

  • CVE-2001-0193May 3, 2001
    risk 0.03cvss epss 0.01

    Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.

  • CVE-2001-0279May 3, 2001
    risk 0.03cvss epss 0.01

    Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.

  • CVE-2001-0170Mar 26, 2001
    risk 0.03cvss epss 0.01

    glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.

  • CVE-2001-0111Mar 12, 2001
    risk 0.03cvss epss 0.01

    Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument.

  • CVE-2001-0112Mar 12, 2001
    risk 0.03cvss epss 0.01

    Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands.

  • CVE-2000-0584Jul 2, 2000
    risk 0.03cvss epss 0.06

    Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name.

  • CVE-2000-0607Jun 21, 2000
    risk 0.03cvss epss 0.01

    Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings.

  • CVE-2000-0229Mar 22, 2000
    risk 0.03cvss epss 0.01

    gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.

  • CVE-2000-0107Feb 1, 2000
    risk 0.03cvss epss 0.01

    Linux apcd program allows local attackers to modify arbitrary files via a symlink attack.

  • CVE-1999-0986Dec 8, 1999
    risk 0.03cvss epss 0.04

    The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.

  • CVE-1999-0769Aug 25, 1999
    risk 0.03cvss epss 0.01

    Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.

  • CVE-1999-0730Jun 12, 1999
    risk 0.03cvss epss 0.04

    The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack.

  • CVE-1999-0804Jun 1, 1999
    risk 0.03cvss epss 0.06

    Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.

  • CVE-1999-0381Feb 26, 1999
    risk 0.03cvss epss 0.01

    super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access.

Page 41 of 68