Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.22%
  • Veröffentlicht 13.04.2016 16:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple cross-site scripting (XSS) vulnerabilities in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow (1) remote Xymon clients to inject arbitrary web script or HTML via a status-message, which is not properly handled in the "detailed status" page...

  • EPSS 0.47%
  • Veröffentlicht 13.04.2016 16:59:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

lib/xymond_ipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions (666) for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue.

  • EPSS 54.51%
  • Veröffentlicht 13.04.2016 16:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote authenticated users to execute arbitrary commands via shell metacharacters in the adduser_name argument in (1) web/useradm.c or (2) web/chpasswd.c.

  • EPSS 17.85%
  • Veröffentlicht 13.04.2016 16:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to read arbitrary files in the configuration directory via a "config" command.

  • EPSS 5.63%
  • Veröffentlicht 13.04.2016 16:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple buffer overflows in xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a long filename, involving handling a "config" comm...

  • EPSS 2.69%
  • Veröffentlicht 13.04.2016 16:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.

  • EPSS 2.36%
  • Veröffentlicht 13.04.2016 16:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.

Exploit
  • EPSS 2.06%
  • Veröffentlicht 13.04.2016 16:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Cross-site scripting (XSS) vulnerability in the _renderVarInput_number function in horde/framework/Core/lib/Horde/Core/Ui/VarRenderer/Html.php in Horde Groupware before 5.2.12 and Horde Groupware Webmail Edition before 5.2.12 allows remote attackers ...

  • EPSS 0.45%
  • Veröffentlicht 13.04.2016 15:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service (disk consumption)...

  • EPSS 0.45%
  • Veröffentlicht 13.04.2016 15:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit BUG conditions and cause a denial of service (NULL pointer dereference and host OS crash) ...