Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.
Max CVSS
7.5
EPSS Score
1.17%
Published
2001-11-18
Updated
2008-09-10
Mailman 2.0.x before 2.0.6 allows remote attackers to gain access to list administrative pages when there is an empty site or list password, which is not properly handled during the call to the crypt function during authentication.
Max CVSS
7.5
EPSS Score
1.22%
Published
2001-09-05
Updated
2017-10-10
GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-08-31
Updated
2017-10-10
Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.
Max CVSS
7.5
EPSS Score
1.54%
Published
2001-07-26
Updated
2017-10-10
Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an attacker to gain privileges via format strings in the original filename that is stored in an encrypted file.
Max CVSS
7.5
EPSS Score
1.81%
Published
2001-08-14
Updated
2018-05-03
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!