{"url":"http://public2.vulnerablecode.io/api/packages/44303?format=json","purl":"pkg:deb/debian/gopher@3.0.18?distro=trixie","type":"deb","namespace":"debian","name":"gopher","version":"3.0.18","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"3.0.19+nmu1","latest_non_vulnerable_version":"3.0.19+nmu1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199710?format=json","vulnerability_id":"VCID-aa9a-1ygc-j3bw","summary":"Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0561","reference_id":"","reference_type":"","scores":[{"value":"0.01965","scoring_system":"epss","scoring_elements":"0.83904","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0561"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44300?format=json","purl":"pkg:deb/debian/gopher@3.0.6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44301?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44299?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44303?format=json","purl":"pkg:deb/debian/gopher@3.0.18?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.18%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44302?format=json","purl":"pkg:deb/debian/gopher@3.0.19%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.19%252Bnmu1%3Fdistro=trixie"}],"aliases":["CVE-2004-0561"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aa9a-1ygc-j3bw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200182?format=json","vulnerability_id":"VCID-gzwf-gxu2-zycn","summary":"Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via (1) a long \"+VIEWS:\" reply, which is not properly handled in the VIfromLine function, and (2) certain arguments when launching third party programs such as a web browser from a web link, which is not properly handled in the FIOgetargv function.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2772","reference_id":"","reference_type":"","scores":[{"value":"0.33134","scoring_system":"epss","scoring_elements":"0.97014","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2772"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2772","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2772"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=327722","reference_id":"327722","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=327722"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1187.c","reference_id":"OSVDB-19082;CVE-2005-2772","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1187.c"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44305?format=json","purl":"pkg:deb/debian/gopher@3.0.11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44301?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44299?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44303?format=json","purl":"pkg:deb/debian/gopher@3.0.18?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.18%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44302?format=json","purl":"pkg:deb/debian/gopher@3.0.19%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.19%252Bnmu1%3Fdistro=trixie"}],"aliases":["CVE-2005-2772"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gzwf-gxu2-zycn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199611?format=json","vulnerability_id":"VCID-k8ae-qte2-augr","summary":"Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0805","reference_id":"","reference_type":"","scores":[{"value":"0.0728","scoring_system":"epss","scoring_elements":"0.91847","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0805"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0805","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0805"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22893.c","reference_id":"CVE-2003-0805;OSVDB-10193","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22893.c"},{"reference_url":"https://www.securityfocus.com/bid/8167/info","reference_id":"CVE-2003-0805;OSVDB-10193","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/8167/info"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22894.c","reference_id":"CVE-2003-0805;OSVDB-10194","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22894.c"},{"reference_url":"https://www.securityfocus.com/bid/8168/info","reference_id":"CVE-2003-0805;OSVDB-10194","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/8168/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44300?format=json","purl":"pkg:deb/debian/gopher@3.0.6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44301?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44299?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44303?format=json","purl":"pkg:deb/debian/gopher@3.0.18?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.18%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44302?format=json","purl":"pkg:deb/debian/gopher@3.0.19%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.19%252Bnmu1%3Fdistro=trixie"}],"aliases":["CVE-2003-0805"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k8ae-qte2-augr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199709?format=json","vulnerability_id":"VCID-vqy1-fe4w-yydt","summary":"Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted content of a certain size that triggers the overflow.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0560","reference_id":"","reference_type":"","scores":[{"value":"0.01965","scoring_system":"epss","scoring_elements":"0.83904","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0560"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0560","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0560"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44300?format=json","purl":"pkg:deb/debian/gopher@3.0.6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44301?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44299?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44303?format=json","purl":"pkg:deb/debian/gopher@3.0.18?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.18%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44302?format=json","purl":"pkg:deb/debian/gopher@3.0.19%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.19%252Bnmu1%3Fdistro=trixie"}],"aliases":["CVE-2004-0560"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vqy1-fe4w-yydt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200105?format=json","vulnerability_id":"VCID-whyu-n8da-pbdc","summary":"gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1853","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14703","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1853"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1853","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1853"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44304?format=json","purl":"pkg:deb/debian/gopher@3.0.8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44301?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44299?format=json","purl":"pkg:deb/debian/gopher@3.0.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44303?format=json","purl":"pkg:deb/debian/gopher@3.0.18?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.18%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44302?format=json","purl":"pkg:deb/debian/gopher@3.0.19%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.19%252Bnmu1%3Fdistro=trixie"}],"aliases":["CVE-2005-1853"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-whyu-n8da-pbdc"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gopher@3.0.18%3Fdistro=trixie"}