Debian Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2001-03-12	CVE-2001-0125	exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file. local high complexity exmh debian mandrakesoft	1.2
2001-03-12	CVE-2001-0112	Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands. local low complexity sam-lantinga debian	7.2
2001-03-12	CVE-2001-0111	Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument. local low complexity sam-lantinga debian	7.2
2001-03-12	CVE-2000-0315	traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks. network low complexity debian digital netbsd redhat slackware	5.0
2001-03-12	CVE-2000-0314	traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero. network low complexity debian digital netbsd redhat slackware	5.0
2001-02-12	CVE-2001-0069	Unspecified vulnerability in Debian Linux 2.2 dialog before 0.9a-20000118-3bis in Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack. local low complexity debian	2.1
2001-01-09	CVE-2000-1135	Unspecified vulnerability in Debian Linux 2.1/2.2 fshd (fsh daemon) in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack. local low complexity debian	4.6
2000-12-19	CVE-2000-0888	named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by sending an SRV record to the server, aka the "srv bug." network low complexity isc debian	5.0
2000-11-14	CVE-2000-0867	Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages. local low complexity debian mandrakesoft redhat slackware trustix	7.2
2000-11-14	CVE-2000-0844	Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. network low complexity caldera immunix conectiva sgi debian ibm mandrakesoft redhat slackware sun suse trustix turbolinux CWE-264 critical	10.0