CVE-2009-0687

The pftestrule function in OpenBSD Packet Filter PF, as used in OpenBSD 4.2 through 4.5, NetBSD 5.0 before RC3, MirOS 10 and earlier, and MidnightBSD 0.3-current allows remote attackers to cause a denial of service panic via crafted IP packets that trigger a NULL pointer dereference during...

Stack overflow

Stack-based buffer overflow in the commandExpandInterpret function in command.c in ppp aka user-ppp, as distributed in FreeBSD 6.3 and 7.0, OpenBSD 4.1 and 4.2, and the net/userppp package for NetBSD, allows local users to gain privileges via long commands containing "" characters...

*BSD user-ppp local root (when conditions permit)

// / pppx.conf - Point to Point Protocol a.k.a. user-ppp exploit by sipher / / 2003 / 12 /23 - PRIVATE CODE / / Program terminated with signal 11, Segmentation fault. / / 0 0xbeefdead in ?? / // I just tested this on FreeBSD 6.3. This bug was discovered on NetBSD. It also works on OpenBSD...

CVE-2008-1057

The ip6checkrh0hdr function in netinet6/ip6input.c in OpenBSD 4.2 allows attackers to cause a denial of service panic via malformed IPv6 routing headers...

[DSECRG-08-007] OpenBSD BGPD daemon Web Interface XSS.

DSECRG-08-007 Digital Security Research Group DSecRG Advisory Application: OpenBSD BGPD daemon Versions Affected: OpenBSD 4.1 Vendor URL: http://openbsd.org Bugs: XSS Exploits: YES Reported: 10.10.2007 Vendor response: 10.10.2007 Date of Public Advisory: 31.01.2008 Authors: Alexandr Polyakov, Ant...

Null pointer dereference

OpenBSD 4.2 allows local users to cause a denial of service kernel panic by calling the SIOCGIFRTLABEL IOCTL on an interface that does not have a route label, which triggers a NULL pointer dereference when the return value from the rtlabelid2name function is not checked...

openbsd-deref.txt

/ OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $ uname -mrsv OpenBSD 4.2 GENERIC375 i386 $ id uid=1000hunger gid=1000hunger...

OpenBSD 4.2 - rtlabel_id2name() Local Null Pointer Dereference Denial of Service

OpenBSD 4.2 - rtlabelid2name Local Null Pointer Dereference Denial of Service / OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $...

OpenBSD 4.2 rtlabel_id2name() Local Null Pointer Dereference DoS

No description provided by source. / OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger [email protected] Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $ uname -mrsv OpenBSD 4.2...

OpenBSD 4.2 rtlabel_id2name() Local Null Pointer Dereference DoS

Exploit for bsd platform in category dos / poc ================================================================ OpenBSD 4.2 rtlabelid2name Local Null Pointer Dereference DoS ================================================================ / OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null...

OpenBSD 4.2 - 'rtlabel_id2name()' Local Null Pointer Dereference Denial of Service

/ OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $ uname -mrsv OpenBSD 4.2 GENERIC375 i386 $ id uid=1000hunger gid=1000hunger...