Debian : Security Vulnerabilities, CVEs, Published In 2001
Buffer overflow in Xvt 2.1 in Debian Linux 2.2 allows local users to execute arbitrary code via long (1) -name and (2) -T arguments.
Max CVSS
7.2
EPSS Score
0.09%
Published
2001-12-31
Updated
2008-09-05
mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via the command line options (1) -u or (2) -c, which do not drop privileges and follow symlinks.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-05-03
Updated
2008-09-10
slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
Max CVSS
5.0
EPSS Score
2.42%
Published
2001-07-16
Updated
2017-10-10
The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2) mod_dir, or (3) mod_autoindex.
Max CVSS
5.0
EPSS Score
94.79%
Published
2001-03-12
Updated
2021-07-06
Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{" character.
Max CVSS
4.6
EPSS Score
0.09%
Published
2001-12-21
Updated
2018-05-03
htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c option to specify an alternate configuration file, which could be used to (1) cause a denial of service (CPU consumption) by specifying a large file such as /dev/zero, or (2) read arbitrary files by uploading an alternate configuration file that specifies the target file.
Max CVSS
6.4
EPSS Score
1.56%
Published
2001-12-06
Updated
2017-10-10
Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function.
Max CVSS
7.5
EPSS Score
31.91%
Published
2001-10-18
Updated
2018-05-03
Buffer overflow in ftp daemon (ftpd) 6.2 in Debian GNU/Linux allows attackers to cause a denial of service and possibly execute arbitrary code via a long SITE command.
Max CVSS
7.5
EPSS Score
0.67%
Published
2001-10-18
Updated
2008-09-05
LogLine function in klogd in sysklogd 1.3 in various Linux distributions allows an attacker to cause a denial of service (hang) by causing null bytes to be placed in log messages.
Max CVSS
5.0
EPSS Score
0.53%
Published
2001-10-18
Updated
2017-10-10
Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers.
Max CVSS
7.5
EPSS Score
19.61%
Published
2001-09-20
Updated
2017-10-10
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
Max CVSS
10.0
EPSS Score
0.92%
Published
2001-08-14
Updated
2022-01-21
Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands.
Max CVSS
7.5
EPSS Score
0.73%
Published
2001-06-27
Updated
2017-12-19
man2html before 1.5-22 allows remote attackers to cause a denial of service (memory exhaustion).
Max CVSS
5.0
EPSS Score
0.70%
Published
2001-06-27
Updated
2017-10-10
postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended.
Max CVSS
7.5
EPSS Score
2.89%
Published
2001-06-27
Updated
2017-10-10
Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.
Max CVSS
7.5
EPSS Score
0.76%
Published
2001-06-27
Updated
2017-12-19
Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files.
Max CVSS
3.6
EPSS Score
0.05%
Published
2001-07-02
Updated
2017-10-10
sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools.
Max CVSS
2.1
EPSS Score
0.05%
Published
2001-06-27
Updated
2017-10-10
Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-05-03
Updated
2008-09-05
Vulnerability in crontab allows local users to read crontab files of other users by replacing the temporary file that is being edited while crontab is running.
Max CVSS
2.1
EPSS Score
0.04%
Published
2001-03-26
Updated
2017-10-10
Buffer overflow in micq client 0.4.6 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Description field.
Max CVSS
10.0
EPSS Score
4.50%
Published
2001-03-26
Updated
2017-10-10
sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world-readable and could allow local users to gain privileges via password cracking.
Max CVSS
7.8
EPSS Score
0.05%
Published
2001-03-26
Updated
2024-01-25
Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-05-03
Updated
2017-10-10
glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
2001-03-26
Updated
2017-10-10
inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10
privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2017-10-10