dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-02
Updated
2008-09-10
nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-30
Updated
2016-10-18
Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
Max CVSS
4.6
EPSS Score
0.05%
Published
1999-08-20
Updated
2008-09-05
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-06-08
Updated
2017-12-19
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf.
Max CVSS
4.6
EPSS Score
0.06%
Published
1999-12-31
Updated
2016-10-18
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
Max CVSS
5.0
EPSS Score
0.04%
Published
1999-12-08
Updated
2008-09-09
htdig allows remote attackers to execute commands via filenames with shell metacharacters.
Max CVSS
7.5
EPSS Score
0.59%
Published
1999-12-09
Updated
2008-09-09
Denial of service in Debian IRC Epic/epic4 client via a long string.
Max CVSS
5.0
EPSS Score
3.35%
Published
1999-08-26
Updated
2008-09-09
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-01-03
Updated
2008-09-09
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-08-25
Updated
2008-09-09
Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname.
Max CVSS
10.0
EPSS Score
0.60%
Published
1999-11-09
Updated
2008-09-09
Denial of service in Linux syslogd via a large number of connections.
Max CVSS
5.0
EPSS Score
0.17%
Published
1999-11-19
Updated
2008-09-09
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
Max CVSS
5.0
EPSS Score
0.18%
Published
1999-06-01
Updated
2008-09-09
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-08-25
Updated
2008-09-09
Trn allows local users to overwrite other users' files via symlinks.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-08-20
Updated
2018-05-03
The Debian mailman package uses weak authentication, which allows attackers to gain privileges.
Max CVSS
5.0
EPSS Score
0.70%
Published
1999-06-22
Updated
2008-09-09
The logging facility of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-08-19
Updated
2022-08-17
The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack.
Max CVSS
10.0
EPSS Score
0.82%
Published
1999-06-12
Updated
2022-08-17
Linux ftpwatch program allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-01-17
Updated
2008-09-09
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
Max CVSS
7.5
EPSS Score
0.33%
Published
1999-03-30
Updated
2008-09-09
A buffer overflow in lsof allows local users to obtain root privilege.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-02-18
Updated
2008-09-09
Buffer overflow in the bootp server in the Debian Linux netstd package.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-01-03
Updated
2008-09-09
super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-02-26
Updated
2008-09-09
Debian GNU/Linux cfengine package is susceptible to a symlink attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-02-16
Updated
2022-08-17
Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-02-01
Updated
2022-08-17
26 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!