Lucene search
K

4 matches found

CVE
CVE
added 2009/10/06 10:0 p.m.52 views

CVE-2009-3527

CVE-2009-3527: Concrete details exist in connected docs. A race condition in FreeBSD 6.3/6.4’s Pipe (IPC) close function can lead to a use-after-free via kqueues, causing local denial of service (crash) or privilege gain through NULL pointer dereference/memory corruption. Affected software: FreeB...

6.9CVSS6.4AI score0.00554EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2008/03/09 2:44 a.m.18 views

Stack overflow

Stack-based buffer overflow in the commandExpandInterpret function in command.c in ppp aka user-ppp, as distributed in FreeBSD 6.3 and 7.0, OpenBSD 4.1 and 4.2, and the net/userppp package for NetBSD, allows local users to gain privileges via long commands containing "" characters...

4.6CVSS7.8AI score0.00791EPSS
Exploits1References9Affected Software2
securityvulns
securityvulns
added 2008/03/04 12:0 a.m.39 views

*BSD user-ppp local root (when conditions permit)

// / pppx.conf - Point to Point Protocol a.k.a. user-ppp exploit by sipher / / 2003 / 12 /23 - PRIVATE CODE / / Program terminated with signal 11, Segmentation fault. / / 0 0xbeefdead in ?? / // I just tested this on FreeBSD 6.3. This bug was discovered on NetBSD. It also works on OpenBSD...

1AI score
Exploits0
Prion
Prion
added 2007/11/30 1:46 a.m.15 views

Design/Logic Flaw

The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accessed random values, which could be leveraged to bypass protection mechanisms that rely on secrecy of those values...

2.1CVSS7AI score0.00328EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder