Debian: >> Debian Linux >> 1.2 Security Vulnerabilities
The default configuration for twiki 4.1.2 on Debian GNU/Linux, and possibly other operating systems, specifies the work area directory (cfg{RCS}{WorkAreaDir}) under the web document root, which might allow remote attackers to obtain sensitive information when .htaccess restrictions are not applied.
CVSS Score
5.0
EPSS Score
0.002
Published
2007-10-04
xterm, including 192-7.el4 in Red Hat Enterprise Linux and 208-3.1 in Debian GNU/Linux, sets the wrong group ownership of tty devices, which allows local users to write data to other users' terminals.
CVSS Score
2.1
EPSS Score
0.001
Published
2007-08-27
Multiple stack-based buffer overflows in (1) CCE_pinyin.c and (2) xl_pinyin.c in ImmModules/cce/ in unicon-imc2 3.0.4, as used by zhcon and other applications, allow local users to gain privileges via a long HOME environment variable.
CVSS Score
6.8
EPSS Score
0.001
Published
2007-07-03
Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function.
CVSS Score
7.5
EPSS Score
0.254
Published
2001-10-18
Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files.
CVSS Score
3.6
EPSS Score
0.003
Published
2001-07-02
Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.
CVSS Score
7.5
EPSS Score
0.014
Published
2001-06-27
Buffer overflow in the bootp server in the Debian Linux netstd package.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-01-03
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.
CVSS Score
7.2
EPSS Score
0.004
Published
1999-01-03
Buffer overflow in xlock program allows local users to execute commands as root.
CVSS Score
8.4
EPSS Score
0.001
Published
1997-04-26
Page 4