Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2006-04-18 CVE-2006-1753 Unspecified vulnerability in Debian Linux 3.1
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
local
low complexity
debian
3.6
2006-04-14 CVE-2006-1724 Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to DHTML.
network
low complexity
mozilla debian
7.5
2006-04-14 CVE-2006-1531 Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML.
network
low complexity
mozilla debian
7.5
2006-04-14 CVE-2006-1530 Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML.
network
low complexity
mozilla debian
7.5
2006-04-13 CVE-2006-1772 Local Database Administrator Password Disclosure vulnerability in Debian Linux 3.1
debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the cleartext database administrator password in the mnogosearch-common/database_admin_pass record, which allows local users to view the password.
local
low complexity
debian
7.2
2006-03-31 CVE-2006-1566 Packages Insecure RUNPATH vulnerability in Debian Linux 3.1
Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory.
local
low complexity
debian
4.6
2006-03-31 CVE-2006-1565 Packages Insecure RUNPATH vulnerability in Debian Linux 3.1
Untrusted search path vulnerability in libgpib-perl 3.2.06-2 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the LinuxGpib.so module, which might allow local users to gain privileges by installing malicious libraries in that directory.
local
low complexity
debian
4.6
2006-03-31 CVE-2006-1564 Packages Insecure RUNPATH vulnerability in Debian Linux 3.1
Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the (1) mod_authz_svn.so and (2) mod_dav_svn.so modules, which might allow local users to gain privileges by installing malicious libraries in that directory.
local
low complexity
debian
4.6
2006-03-24 CVE-2006-1376 Denial-Of-Service vulnerability in Debian Linux 3.1
The installation of Debian GNU/Linux 3.1r1 from the network install CD creates /var/log/debian-installer/cdebconf with world writable permissions, which allows local users to cause a denial of service (disk consumption).
local
low complexity
debian
2.1
2006-03-23 CVE-2006-0050 Unspecified vulnerability in Debian Linux 3.0/3.1
snmptrapfmt in Debian 3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary log file.
local
high complexity
debian
1.2