Buffer overflow in Xvt 2.1 in Debian Linux 2.2 allows local users to execute arbitrary code via long (1) -name and (2) -T...
7.6AI Score
0.001EPSS
Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{"...
7.9AI Score
0.001EPSS
htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c option to specify an alternate configuration file, which could be used to (1) cause a denial of service (CPU consumption) by specifying a large file such as /dev/zero, or (2) read arbitrary files by...
7AI Score
0.016EPSS
Buffer overflow in ftp daemon (ftpd) 6.2 in Debian GNU/Linux allows attackers to cause a denial of service and possibly execute arbitrary code via a long SITE...
8.6AI Score
0.007EPSS
LogLine function in klogd in sysklogd 1.3 in various Linux distributions allows an attacker to cause a denial of service (hang) by causing null bytes to be placed in log...
6.7AI Score
0.005EPSS
Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint...
8AI Score
0.319EPSS
Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail...
7.7AI Score
0.196EPSS
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv...
7.5AI Score
0.009EPSS
slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length...
6.8AI Score
0.024EPSS
6.7AI Score
0.001EPSS
Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary...
7.5AI Score
0.007EPSS
Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message...
8AI Score
0.008EPSS
postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than...
6.7AI Score
0.029EPSS
man2html before 1.5-22 allows remote attackers to cause a denial of service (memory...
6.8AI Score
0.007EPSS
7AI Score
0.0004EPSS
mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via the command line options (1) -u or (2) -c, which do not drop privileges and follow...
6.7AI Score
0.0004EPSS
Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l...
6.6AI Score
0.0004EPSS
Vulnerability in crontab allows local users to read crontab files of other users by replacing the temporary file that is being edited while crontab is...
6.2AI Score
0.0004EPSS
glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary...
7.2AI Score
0.0004EPSS
sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world-readable and could allow local users to gain privileges via password...
7.8CVSS
6.8AI Score
0.0004EPSS
Buffer overflow in micq client 0.4.6 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Description...
7.9AI Score
0.045EPSS
traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing...
7AI Score
0.003EPSS
inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some...
6.5AI Score
0.0004EPSS
exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary...
6.5AI Score
0.0004EPSS
Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly...
7.1AI Score
0.042EPSS
Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain...
6.9AI Score
0.001EPSS
privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink...
6.5AI Score
0.0004EPSS
htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink...
6AI Score
0.0004EPSS
traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to...
7.1AI Score
0.003EPSS
Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line...
7.4AI Score
0.0004EPSS
Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary...
7.3AI Score
0.0004EPSS
The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2) mod_dir, or (3)...
6.9AI Score
0.948EPSS
dialog before 0.9a-20000118-3bis in Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink...
7.1AI Score
0.0004EPSS
fshd (fsh daemon) in Debian GNU/Linux allows local users to overwrite files of other users via a symlink...
7AI Score
0.0004EPSS
named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by sending an SRV record to the server, aka the "srv...
6.8AI Score
0.013EPSS
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and...
7.4AI Score
0.005EPSS
Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel...
6.8AI Score
0.002EPSS
rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root...
7AI Score
0.081EPSS
Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group...
8.2AI Score
0.084EPSS
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a malformed IPP...
7.5AI Score
0.007EPSS
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a CGI POST...
7.5AI Score
0.007EPSS
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service by authenticating with a user name that does not exist or does not have a shadow...
7.5AI Score
0.008EPSS
Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING...
7.7AI Score
0.0004EPSS
Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage...
7.6AI Score
0.0004EPSS
CUPS (Common Unix Printing System) 1.04 and earlier does not properly delete request files, which allows a remote attacker to cause a denial of...
7.4AI Score
0.007EPSS
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established...
7AI Score
0.003EPSS
gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from...
6.7AI Score
0.0004EPSS
The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable...
7.4AI Score
0.005EPSS
The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the...
7.1AI Score
0.0004EPSS
Linux apcd program allows local attackers to modify arbitrary files via a symlink...
7.2AI Score
0.0004EPSS