Debian : Security Vulnerabilities, CVEs, Published In 1999
dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-02
Updated
2008-09-10
nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-30
Updated
2016-10-18
Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
Max CVSS
4.6
EPSS Score
0.05%
Published
1999-08-20
Updated
2008-09-05
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-06-08
Updated
2017-12-19
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf.
Max CVSS
4.6
EPSS Score
0.06%
Published
1999-12-31
Updated
2016-10-18
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
Max CVSS
5.0
EPSS Score
0.04%
Published
1999-12-08
Updated
2008-09-09
htdig allows remote attackers to execute commands via filenames with shell metacharacters.
Max CVSS
7.5
EPSS Score
0.59%
Published
1999-12-09
Updated
2008-09-09
Denial of service in Debian IRC Epic/epic4 client via a long string.
Max CVSS
5.0
EPSS Score
3.35%
Published
1999-08-26
Updated
2008-09-09
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-01-03
Updated
2008-09-09
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-08-25
Updated
2008-09-09
Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname.
Max CVSS
10.0
EPSS Score
0.60%
Published
1999-11-09
Updated
2008-09-09
Denial of service in Linux syslogd via a large number of connections.
Max CVSS
5.0
EPSS Score
0.17%
Published
1999-11-19
Updated
2008-09-09
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
Max CVSS
5.0
EPSS Score
0.18%
Published
1999-06-01
Updated
2008-09-09
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-08-25
Updated
2008-09-09
Trn allows local users to overwrite other users' files via symlinks.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-08-20
Updated
2018-05-03
The Debian mailman package uses weak authentication, which allows attackers to gain privileges.
Max CVSS
5.0
EPSS Score
0.70%
Published
1999-06-22
Updated
2008-09-09
The logging facility of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-08-19
Updated
2022-08-17
The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack.
Max CVSS
10.0
EPSS Score
0.82%
Published
1999-06-12
Updated
2022-08-17
Linux ftpwatch program allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-01-17
Updated
2008-09-09
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
Max CVSS
7.5
EPSS Score
0.33%
Published
1999-03-30
Updated
2008-09-09
A buffer overflow in lsof allows local users to obtain root privilege.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-02-18
Updated
2008-09-09
Buffer overflow in the bootp server in the Debian Linux netstd package.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-01-03
Updated
2008-09-09
super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-02-26
Updated
2008-09-09
Debian GNU/Linux cfengine package is susceptible to a symlink attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-02-16
Updated
2022-08-17
Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-02-01
Updated
2022-08-17