Vulnerabilities > Debian > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-10-05 | CVE-2005-2960 | cfengine 1.6.5 and 2.1.16 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by vicf.in, a different vulnerability than CVE-2005-3137. | 2.1 |
| 2005-09-30 | CVE-2005-3111 | Unspecified vulnerability in Debian Backupninja 0.8 The handler code for backupninja 0.8 and earlier creates temporary files with predictable filenames, which allows local users to modify arbitrary files via a symlink attack. | 2.1 |
| 2005-09-26 | CVE-2005-3055 | Improper Input Validation vulnerability in multiple products Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service (kernel OOPS) via a userspace process that issues a USB Request Block (URB) to a USB device and terminates before the URB is finished, which leads to a stale pointer reference. | 2.1 |
| 2005-08-30 | CVE-2005-1855 | Backup Manager (backup-manager) before 0.5.8 creates backup files with world-readable default permissions, which allows local users to obtain sensitive information. | 2.1 |
| 2005-05-25 | CVE-2005-1152 | Unspecified vulnerability in Debian Qpopper 4.0.4/4.0.5 popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions. | 2.1 |
| 2005-05-02 | CVE-2005-0077 | Insecure Temporary File Creation vulnerability in Libdbi-perl The DBI library (libdbi-perl) for Perl allows local users to overwrite arbitrary files via a symlink attack on a temporary PID file. | 2.1 |
| 2005-02-28 | CVE-2005-0625 | Information Disclosure vulnerability in Debian Reportbug 2.60/2.61/3.2 reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd. | 2.1 |
| 2005-02-28 | CVE-2005-0624 | Local Security vulnerability in Debian Reportbug 2.60/2.61 reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords. | 2.1 |
| 2005-01-26 | CVE-2004-1340 | Unspecified vulnerability in Debian Linux 3.0 Debian GNU/Linux 3.0 installs the libpam-radius-auth package with the pam_radius_auth.conf set to be world-readable, which allows local users to obtain sensitive information. | 2.1 |
| 2005-01-10 | CVE-2004-0996 | main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack. | 2.1 |