Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NCSC
NCSCadded 2021/07/15 12:0 a.m.2 views

Vulnerability fixed in NetBSD

The developers of NetBSD have fixed a vulnerability in kernfs. The vulnerability allows an authenticated malicious person to able to read any files on the file system, including files both system and userspace for which the malicious party is not originally authorized. No CVE ID has been disclose...

6.3AI score
Exploits0
seebug.org
seebug.orgadded 2009/07/30 12:0 a.m.9 views

NetBSD SHA2实现存在缓冲区溢出漏洞

Bugraq ID: 35853 NetBSD是一款基于BSD的操作系统。 NetBSD SHA2实现存在边界错误,本地攻击者可以利用漏洞触发缓冲区溢出,可能以应用程序权限执行任意指令。 程序使用sys/sha2.h中的SHA2实现,链接libcrypto库可被4或者8个字节的固定内容溢出。溢出发生于HASH INIT函数调用过程中如SHA256Init,init函数传递错误的上下文大小作为memset参数,可在之后的拷贝过程中覆盖缓冲区之后的4 字节内容。 NetBSD NetBSD 4.0.2 NetBSD NetBSD 4.0.1 NetBSD NetBSD 5.0 NetBSD...

7AI score
Exploits0
seebug.org
seebug.orgadded 2008/08/27 12:0 a.m.15 views

NetBSD PPPoE发现脚本远程拒绝服务漏洞

BUGTRAQ ID:30838 CNCAN ID:CNCAN-2008082706 NetBSD是一款基于BSD的操作系统。 NetBSD包含的pppoe4代码处理恶意报文存在问题,远程攻击者可以利用漏洞触发内核访问越界内容而导致内核崩溃,造成拒绝服务攻击。 在客户端和访问集中器之间的会话连接之前,处理PPPoE连接的早期状态的关键代码存在问题。在"discovery"阶段的报文由多个可变长度"tags"装载同一个PPPoE报文中,每个标签将被检查,而且针对全部报文大小的长度进行了验证。不过在长度检查过程中存在一个缺陷,允许把下一个TAG的指针越界移动到报文后最多4字节的位置。...

7.1AI score
Exploits0
Prion
Prionadded 2007/03/10 8:19 p.m.13 views

Integer overflow

Integer overflow in the ktruser function in NetBSD-current before 20061022, NetBSD 3 and 3-0 before 20061024, and NetBSD 2 before 20070209, when the kernel is built with the COMPATFREEBSD or COMPATDARWIN option, allows local users to cause a denial of service and possibly gain privileges...

6.9CVSS7.3AI score0.00052EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2006/04/18 10:0 a.m.42 views

CVE-2006-1797

The CVE-2006-1797 entry describes a local denial-of-service in NetBSD-current kernels released before 28 September 2005. A local attacker can trigger a NULL pointer dereference by issuing the SIOCGIFALIAS ioctl to query information about a non-existent network alias, causing a system crash. The a...

4.9CVSS6AI score0.00064EPSS
Exploits0References6Affected Software1
securityvulns
securityvulnsadded 2004/08/22 12:0 a.m.28 views

NetBSD Security Advisory 2004-009: ftpd root escalation

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2004-009 ================================= Topic: ftpd root escalation Version: NetBSD-current: source prior to Aug 10, 2004 NetBSD 2.0 branch: source prior to Aug 15, 2004 NetBSD 1.6.2: affected NetBSD 1.6.1: affected NetBSD 1.6: affect...

7.7AI score
Exploits0
securityvulns
securityvulnsadded 2002/09/18 12:0 a.m.104 views

NetBSD Security Advisory 2002-018: Multiple security isses with kfd daemon

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-018 ================================= Topic: Multiple security isses with kfd daemon Version: NetBSD-current: source prior to September 10, 2002 NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affected NetBSD-1.5.1: affect...

0.4AI score
Exploits0
securityvulns
securityvulnsadded 2002/09/18 12:0 a.m.44 views

NetBSD Security Advisory 2002-012: buffer overrun in setlocale

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-012 ================================= Topic: buffer overrun in setlocale Severity: local root exploit if X11 xterm is installed. Version: NetBSD-current: source prior to August 8, 2002 NetBSD-1.6 beta:source prior to August 8, 2002...

7.5AI score
Exploits0
Rows per page
Query Builder