Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2001-06-27 CVE-2001-0458 Remote Buffer Overflow vulnerability in ePerl
Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands.
network
low complexity
ralf-s-engelschall debian mandrakesoft suse
7.5
7.5
2001-06-27 CVE-2001-0456 Denial-Of-Service vulnerability in Debian Linux 2.2
postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended.
network
low complexity
debian
7.5
7.5
2001-06-27 CVE-2001-0441 Buffer Overflow vulnerability in SLRN Long Header
Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.
network
low complexity
debian mandrakesoft redhat
7.5
7.5
2001-05-03 CVE-2001-0279 Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.
local
low complexity
debian mandrakesoft
7.2
7.2
2001-05-03 CVE-2001-0193 Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.
local
low complexity
debian suse
7.2
7.2
2001-03-26 CVE-2001-0195 Improper Preservation of Permissions vulnerability in Debian Linux 2.2
sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world-readable and could allow local users to gain privileges via password cracking.
local
low complexity
debian CWE-281
7.8
7.8
2001-03-12 CVE-2001-0128 Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges. 7.2
7.2
2001-03-12 CVE-2001-0112 Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands.
local
low complexity
sam-lantinga debian
7.2
7.2
2001-03-12 CVE-2001-0111 Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument.
local
low complexity
sam-lantinga debian
7.2
7.2
2000-11-14 CVE-2000-0867 Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
local
low complexity
debian mandrakesoft redhat slackware trustix
7.2
7.2