Conectiva : Security Vulnerabilities, CVEs, Published In 2001 (Code Execution) CVSS score >= 2
tcl/tk package (tcltk) 8.3.1 searches for its libraries in the current working directory before other directories, which could allow local users to execute arbitrary code via a Trojan horse library that is under a user-controlled directory.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-07-19
Updated
2008-09-05
Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers.
Max CVSS
7.5
EPSS Score
19.61%
Published
2001-09-20
Updated
2017-10-10
2 vulnerabilities found