28 matches found
CVE-1999-0466
The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device...
EUVD-2005-4776
Malware in sbrugna...
EUVD-2004-0257
Malware in sbrugna...
EUVD-2007-1270
Malware in sbrugna...
EUVD-2005-4734
Malware in sbrugna...
EUVD-2007-6710
Malware in sbrugna...
EUVD-2010-3016
Malware in sbrugna...
EUVD-2009-2477
Malware in sbrugna...
EUVD-2006-6713
Malware in sbrugna...
EUVD-2007-3638
Malware in sbrugna...
CVE-2006-1587
NetBSD 1.6 up to 3.0, when a user has "set record" in .mailrc with the default umask set, creates the record file with 0644 permissions, which allows local users to read the record file...
NetBSD Security Advisory 2006-002: settimeofday() time wrap
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NetBSD Security Advisory 2006-002 ================================= Topic: settimeofday time wrap Version: NetBSD-current: source prior to December 5, 2005 NetBSD 3.0: not affected NetBSD 2.1: affected NetBSD 2.0.3: affected NetBSD 1.6.2: affected...
CVE-2002-1490
NetBSD 1.4 through 1.6 beta allows local users to cause a denial of service kernel panic via a series of calls to the TIOCSCTTY ioctl, which causes an integer overflow in a structure counter and sets the counter to zero, which frees memory that is still in use by other processes...
NetBSD Security Advisory 2002-016: Insufficient length check in ESP authentication data
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-016 ================================= Topic: Insufficient length check in ESP authentication data Version: NetBSD-current: source prior to August 23, 2002 NetBSD-1.6 beta: source prior to August 23, 2002 NetBSD-1.5.3: affected...
Multiple NetBSD Security Advisories Released/Updated
-----BEGIN PGP SIGNED MESSAGE----- With the release of NetBSD 1.6, the NetBSD project is publishing a batch of Security Advisories some of which are updates, as follows: 2002-006 buffer overrun in libc/libresolv DNS resolver x 2002-007 Repeated TIOCSCTTY ioctl can corrupt session hold counts x...
CVE-1999-1409
The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbitrary files by submitting the file to at with the -f argument, which generates error messages that at sends to the user via e-mail...
Security Advisory 2001-009: Race condition between sugid-exec and ptrace(2)
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2001-009 ================================= Topic: Race condition between sugid-exec and ptrace2 Version: All official releases up to and including 1.5 Severity: Local user may gain superuser privileges Fixed: NetBSD-current: June 15, 200...
NetBSD Security Advisory 2001-008: Processes can gain "Supervisor" privileges on sh3.
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2001-008 ================================= Topic: Processes can gain "Supervisor" privileges on sh3. Version: All versions of NetBSD, on the sh3 platform only. Severity: Local users may execute code with supervisor privileges. Fixed:...
CVE-2001-0268
The i386setldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USERLDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the Local Descriptor Table LDT with a target that...
CVE-2000-0952
global.cgi CGI program in Global 3.55 and earlier on NetBSD allows remote attackers to execute arbitrary commands via shell metacharacters...