Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2003-08-27 CVE-2003-0615 Cross-Site Scripting vulnerability in CGI.pm Start_Form
Cross-site scripting (XSS) vulnerability in start_form() of CGI.pm allows remote attackers to insert web script via a URL that is fed into the form's action parameter.
4.3
2003-08-18 CVE-2003-0440 The (1) semi MIME library 1.14.5 and earlier, and (2) wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
local
low complexity
semi debian
4.6
2003-07-02 CVE-2003-0385 Local Security vulnerability in Linux 3.0.18/3.0.23
Buffer overflow in xaos 3.0-23 and earlier, when running setuid, allows local users to gain root privileges via a long -language option.
local
low complexity
debian
7.2
2003-07-02 CVE-2003-0382 Buffer Overflow vulnerability in Eterm PATH_ENV
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable.
local
low complexity
michael-jennings debian
4.6
2003-07-02 CVE-2003-0367 Improper Input Validation vulnerability in multiple products
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on temporary files.
local
low complexity
gnu debian CWE-20
2.1
2003-06-09 CVE-2003-0362 Denial-Of-Service vulnerability in Linux
Buffer overflow in gPS before 0.10.2 may allow local users to cause a denial of service (SIGSEGV) in rgpsp via long command lines.
network
low complexity
debian
5.0
2003-06-09 CVE-2003-0361 Remote Security vulnerability in Linux
gPS before 1.1.0 does not properly follow the rgpsp connection source acceptation policy as specified in the rgpsp.conf file, which could allow unauthorized remote attackers to connect to rgpsp.
network
low complexity
debian
7.5
2003-06-09 CVE-2003-0360 Denial-Of-Service vulnerability in Linux
Multiple buffer overflows in gPS before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code.
network
low complexity
debian
7.5
2003-06-09 CVE-2003-0358 Classic Buffer Overflow vulnerability in multiple products
Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.
local
low complexity
falconseye-project nethack debian CWE-120
4.6
2003-05-15 CVE-2003-0308 Local Security vulnerability in Sendmail
The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via (1) expn, (2) checksendmail, or (3) doublebounce.pl.
local
low complexity
sendmail debian
7.2