Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
1999-01-03 CVE-1999-0914 Unspecified vulnerability in Debian Linux
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.
local
low complexity
debian
7.2
7.2
1999-01-03 CVE-1999-0389 Unspecified vulnerability in Debian Linux
Buffer overflow in the bootp server in the Debian Linux netstd package.
local
low complexity
debian
7.2
7.2
1998-12-07 CVE-1999-1276 fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console device.
local
low complexity
debian linux
7.2
7.2
1998-11-26 CVE-1999-1411 Unspecified vulnerability in Debian Linux 2.0
The installation of the fsp package 2.71-10 in Debian GNU/Linux 2.0 adds the anonymous FTP user without notifying the administrator, which could automatically enable anonymous FTP on some servers such as wu-ftp.
network
low complexity
debian
7.5
7.5
1998-09-05 CVE-1999-1048 Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that directory.
local
low complexity
debian redhat
4.6
4.6
1998-04-28 CVE-1999-1390 Unspecified vulnerability in Debian Linux 2.0
suidexec in suidmanager 0.18 on Debian 2.0 allows local users to gain root privileges by specifying a malicious program on the command line.
local
low complexity
debian
7.2
7.2
1998-01-01 CVE-1999-0341 Buffer overflow in the Linux mail program "deliver" allows local users to gain root access.
local
low complexity
debian slackware
7.2
7.2
1997-07-17 CVE-1999-1182 Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error.
local
low complexity
delix caldera debian lst redhat suse
7.2
7.2
1997-01-27 CVE-1999-0048 Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.
network
low complexity
debian ibm nec
critical
 10.0
10
1996-07-16 CVE-1999-1572 cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.
local
low complexity
debian freebsd mandrakesoft redhat ubuntu
2.1
2.1