Debian

Debian Linux

9140 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2005-0004

  • EPSS 0.04%
  • Published 14.04.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.

7.5

CVE-2004-0986

  • EPSS 1.27%
  • Published 01.03.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Iptables before 1.2.11, under certain conditions, does not properly load the required modules at system startup, which causes the firewall rules to fail to load and protect the system from remote attackers.

5

CVE-2004-1027

  • EPSS 6.28%
  • Published 01.03.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Directory traversal vulnerability in the -x (extract) command line option in unarj allows remote attackers to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences.

7.2

CVE-2004-1051

  • EPSS 0.11%
  • Published 01.03.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname.

10

CVE-2004-1052

  • EPSS 1.47%
  • Published 01.03.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.

10

CVE-2004-0964

Exploit
  • EPSS 85.7%
  • Published 09.02.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.

10

CVE-2004-0980

  • EPSS 1.58%
  • Published 09.02.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Format string vulnerability in ez-ipupdate.c for ez-ipupdate 3.0.10 through 3.0.11b8, when running in daemon mode with certain service types in use, allows remote servers to execute arbitrary code.

10

CVE-2004-0981

  • EPSS 7.22%
  • Published 09.02.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a certain image file.

10

CVE-2004-0888

  • EPSS 4.44%
  • Published 27.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabili...

10

CVE-2004-0889

  • EPSS 3.39%
  • Published 27.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by C...