Vulnerabilities > Debian > Dpkg DEV > Medium

DATE CVE VULNERABILITY TITLE RISK
2014-05-30 CVE-2014-3865 Path Traversal vulnerability in Debian Dpkg-Dev 1.3.0
Multiple directory traversal vulnerabilities in dpkg-source in dpkg-dev 1.3.0 allow remote attackers to modify files outside of the intended directories via a source package with a crafted Index: pseudo-header in conjunction with (1) missing --- and +++ header lines or (2) a +++ header line with a blank pathname.
network
low complexity
debian CWE-22
6.4
2014-05-30 CVE-2014-3864 Path Traversal vulnerability in Debian Dpkg-Dev 1.3.0
Directory traversal vulnerability in dpkg-source in dpkg-dev 1.3.0 allows remote attackers to modify files outside of the intended directories via a crafted source package that lacks a --- header line.
network
low complexity
debian CWE-22
6.4