Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.13%
  • Veröffentlicht 15.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:07:07

Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sa...

Exploit
  • EPSS 7.64%
  • Veröffentlicht 06.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:59:35

Directory traversal vulnerability in nph-mr.cgi in Mailreader.com 2.3.20 through 2.3.31 allows remote attackers to view arbitrary files via .. (dot dot) sequences and a null byte (%00) in the configLanguage parameter.

  • EPSS 4.39%
  • Veröffentlicht 06.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:39

Multiple format string vulnerabilities in the (1) logquit, (2) logerr, or (3) loginfo functions in Software Upgrade Protocol (SUP) allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog.

  • EPSS 0.52%
  • Veröffentlicht 06.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:40

Buffer overflow in cgi.c in www-sql before 0.5.7 allows local users to execute arbitrary code via a web page that is processed by www-sql.

  • EPSS 2.92%
  • Veröffentlicht 06.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:40

Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header.

Exploit
  • EPSS 22.35%
  • Veröffentlicht 03.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:29

MySQL 3.x before 3.23.59, 4.x before 4.0.19, 4.1.x before 4.1.2, and 5.x before 5.0.1, checks the CREATE/INSERT rights of the original table instead of the target table in an ALTER TABLE RENAME operation, which could allow attackers to conduct unauth...

Exploit
  • EPSS 9.8%
  • Veröffentlicht 03.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:29

Buffer overflow in the mysql_real_connect function in MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length...

Exploit
  • EPSS 4.9%
  • Veröffentlicht 03.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:29

MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service (crash or hang) via multiple threads that simultaneously alter MERGE table UNIONs.

  • EPSS 6.99%
  • Veröffentlicht 20.10.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:20

Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.

  • EPSS 3.21%
  • Veröffentlicht 28.09.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:40

mah-jong before 1.6.2 allows remote attackers to cause a denial of service (server crash) via a missing argument, which triggers a null pointer dereference.