Lucene search
K

10 matches found

UbuntuCve
UbuntuCve
added 2015/02/02 4:59 p.m.45 views

CVE-2014-8612

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

4.6CVSS6AI score0.00896EPSS
Exploits5References2
NVD
NVD
added 2014/08/21 10:55 p.m.26 views

CVE-2014-3951

The HZ module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service NULL pointer dereference via a crafted argument to the iconvopen function. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types...

5CVSS6.2AI score0.01752EPSS
Exploits0References3
Prion
Prion
added 2014/08/21 10:55 p.m.26 views

Out-of-bounds

The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service out-of-bounds array access via a crafted argument to the iconvopen function. NOTE: this issue was SPLIT from CVE-2014-3951 per ADT2 due to different...

5CVSS6.5AI score0.01768EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2014/08/21 10:55 p.m.24 views

Null pointer dereference

The HZ module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service NULL pointer dereference via a crafted argument to the iconvopen function. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types...

5CVSS6.5AI score0.01768EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/08/21 10:0 p.m.53 views

CVE-2014-5384

The CVE-2014-5384 entry concerns the VIQR module in the iconv implementation of FreeBSD 10.0 prior to p6 and NetBSD. The vulnerability is an out-of-bounds array access in the VIQR module of iconv_open, allowing context-dependent attackers to cause a denial of service. Affected environment is Free...

5CVSS6.3AI score0.01768EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2014/08/21 10:0 p.m.32 views

CVE-2014-5384

The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service out-of-bounds array access via a crafted argument to the iconvopen function. NOTE: this issue was SPLIT from CVE-2014-3951 per ADT2 due to different...

6.1AI score0.01768EPSS
Exploits0References3
FreeBSD Advisory
FreeBSD Advisory
added 2014/06/03 12:0 a.m.11 views

FreeBSD-SA-14:13.pam

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:13.pam Security Advisory The FreeBSD Project Topic: Incorrect error handling in PAM policy parser Category: contrib Module: pam Announced: 2014-06-03 Credits...

9.8CVSS7.2AI score0.02698EPSS
Exploits0
CVE
CVE
added 2014/05/02 2:0 p.m.51 views

CVE-2014-3001

FreeBSD devfs: For FreeBSD 10.0 up to patch p2, default devfs rulesets are not loaded on boot, causing device nodes to be created in jails with normal default permissions. This enables jailed processes to access restricted host devices and could lead to information leakage or privilege escalation...

5.8CVSS6.4AI score0.0102EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/05/02 2:0 p.m.29 views

CVE-2014-3000

The TCP reassembly function in the inet module in FreeBSD 8.3 before p16, 8.4 before p9, 9.1 before p12, 9.2 before p5, and 10.0 before p2 allows remote attackers to cause a denial of service undefined memory access and system crash or possibly read system memory via multiple crafted packets,...

6.7AI score0.12824EPSS
Exploits0References6
Cvelist
Cvelist
added 2014/05/02 2:0 p.m.22 views

CVE-2014-3001

The device file system aka devfs in FreeBSD 10.0 before p2 does not load default rulesets when booting, which allows context-dependent attackers to bypass intended restrictions by leveraging a jailed device node process...

6.3AI score0.0102EPSS
Exploits0References3
Rows per page
Query Builder