Shodan
Vulnerabilities
Vulnerable Software
Debian:  >> Debian Linux  Security Vulnerabilities
CVE-2019-18849
In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorized_keys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup.
CVSS Score
5.5
EPSS Score
0.008
Published
2019-11-11
CVE-2009-3614
liboping 1.3.2 allows users reading arbitrary files upon the local system.
CVSS Score
3.3
EPSS Score
0.001
Published
2019-11-09
CVE-2019-14824
A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. In some configurations, this could allow an authenticated attacker to view private attributes, such as password hashes.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-11-08
CVE-2008-7291
gri before 2.12.18 generates temporary files in an insecure way.
CVSS Score
9.8
EPSS Score
0.004
Published
2019-11-08
CVE-2007-6745
clamav 0.91.2 suffers from a floating point exception when using ScanOLE2.
CVSS Score
9.8
EPSS Score
0.007
Published
2019-11-07
CVE-2013-1809
Gambas before 3.4.0 allows remote attackers to move or manipulate directory contents or perform symlink attacks due to the creation of insecure temporary directories.
CVSS Score
7.5
EPSS Score
0.017
Published
2019-11-07
CVE-2013-1811
An access control issue in MantisBT before 1.2.13 allows users with "Reporter" permissions to change any issue to "New".
CVSS Score
4.3
EPSS Score
0.003
Published
2019-11-07
CVE-2007-5743
viewvc 1.0.3 allows improper access control to files in a repository when using the "forbidden" configuration option.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-11-07
CVE-2013-1429
Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks.
CVSS Score
6.3
EPSS Score
0.008
Published
2019-11-07
CVE-2010-2450
The keygen.sh script in Shibboleth SP 2.0 (located in /usr/local/etc/shibboleth by default) uses OpenSSL to create a DES private key which is placed in sp-key.pm. It relies on the root umask (default 22) instead of chmoding the resulting file itself, so the generated private key is world readable by default.
CVSS Score
7.5
EPSS Score
0.002
Published
2019-11-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved