Debian : Security Vulnerabilities, CVEs, Published In 2004 CVSS score >= 8
Buffer overflow in the mysql_real_connect function in MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length).
Max CVSS
10.0
EPSS Score
0.87%
Published
2004-11-03
Updated
2019-12-17
Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.
Max CVSS
9.8
EPSS Score
19.35%
Published
2004-10-20
Updated
2024-02-02
Gallery 1.4.3 and earlier allows remote attackers to bypass authentication and obtain Gallery administrator privileges.
Max CVSS
10.0
EPSS Score
0.37%
Published
2004-08-06
Updated
2017-07-11
Multiple format string vulnerabilities in the (1) logquit, (2) logerr, or (3) loginfo functions in Software Upgrade Protocol (SUP) allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog.
Max CVSS
10.0
EPSS Score
1.33%
Published
2004-12-06
Updated
2017-07-11
k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow.
Max CVSS
10.0
EPSS Score
5.93%
Published
2004-07-07
Updated
2024-02-02
Multiple buffer overflows in vfte, based on FTE, before 0.50, allow local users to execute arbitrary code.
Max CVSS
10.0
EPSS Score
0.23%
Published
2004-05-04
Updated
2017-07-11
6 vulnerabilities found