Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2004-08-06 CVE-2004-0583 Multiple Unspecified vulnerability in Webmin
The account lockout functionality in (1) Webmin 1.140 and (2) Usermin 1.070 does not parse certain character strings, which allows remote attackers to conduct a brute force attack to guess user IDs and passwords.
network
low complexity
usermin webmin debian
5.0
2004-08-06 CVE-2004-0579 Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root.
local
low complexity
william-deich debian
7.2
2004-08-06 CVE-2004-0522 Authentication Bypass vulnerability in Gallery Project and Debian
Gallery 1.4.3 and earlier allows remote attackers to bypass authentication and obtain Gallery administrator privileges.
network
low complexity
gallery-project debian
critical
10.0
2004-07-07 CVE-2004-0434 Incorrect Calculation of Buffer Size vulnerability in multiple products
k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow.
network
low complexity
heimdal-project debian CWE-131
critical
9.8
2004-05-04 CVE-2003-0648 Local Unspecified Buffer Overflow vulnerability in FTE
Multiple buffer overflows in vfte, based on FTE, before 0.50, allow local users to execute arbitrary code.
network
low complexity
fte debian
critical
10.0
2004-05-04 CVE-2003-0618 Information Disclosure vulnerability in Suidperl
Multiple vulnerabilities in suidperl 5.6.1 and earlier allow a local user to obtain sensitive information about files for which the user does not have appropriate permissions.
local
low complexity
perl debian
2.1
2004-02-16 CVE-2004-1180 Unknown vulnerability in the rwho daemon (rwhod) before 0.17, on little endian architectures, allows remote attackers to cause a denial of service (application crash).
network
low complexity
sun debian mandrakesoft
5.0
2004-01-20 CVE-2004-0011 Unspecified vulnerability in Debian FSP 2.81.B18
Buffer overflow in fsp before 2.81.b18 allows remote users to execute arbitrary code.
network
low complexity
debian
7.5
2004-01-20 CVE-2003-1022 Unspecified vulnerability in Debian FSP 2.81.B18
Directory traversal vulnerability in fsp before 2.81.b18 allows remote users to access files outside the FSP root directory.
network
low complexity
debian
7.5
2004-01-10 CVE-2004-1000 Unspecified vulnerability in Debian Lintian 1.20.17.1
lintian 1.23 and earlier removes the working directory even if it was not created by lintian, which may allow local users to delete arbitrary files or directories via a symlink attack.
local
low complexity
debian
2.1