Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2014/09/23 12:0 a.m.•39 views

libvncserver -- multiple security vulnerabilities

Nicolas Ruff reports: Integer overflow in MallocFrameBuffer on client side. Lack of malloc return value checking on client side. Server crash on a very large ClientCutText message. Server crash when scaling factor is set to zero. Multiple stack overflows in File Transfer feature...

7.5CVSS8.9AI score0.08272EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2014/08/06 12:0 a.m.•39 views

subversion -- several vulnerabilities

Subversion Project reports: Using the Serf RA layer of Subversion for HTTPS uses the aprfnmatch API to handle matching wildcards in certificate Common Names and Subject Alternate Names. However, aprfnmatch is not designed for this purpose. Instead it is designed to behave like common shell...

4CVSS8.3AI score0.07495EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2014/07/22 12:0 a.m.•39 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2014-66 IFRAME sandbox same-origin access through redirect MFSA 2014-65 Certificate parsing broken by non-standard character encoding MFSA 2014-64 Crash in Skia library when scaling high quality images MFSA 2014-63 Use-after-free while when manipulating...

10CVSS10AI score0.06109EPSS
Exploits0References12
FreeBSD
FreeBSD
•added 2014/05/23 12:0 a.m.•39 views

tomcat -- multiple vulnerabilities

Tomcat Security Team reports: Tomcat does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference,...

8.3AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2014/01/14 12:0 a.m.•39 views

Python -- buffer overflow in socket.recvfrom_into()

Vincent Danen via Red Hat Issue Tracker reports: A vulnerability was reported in Python's socket module, due to a boundary error within the sockrecvfrominto function, which could be exploited to cause a buffer overflow. This could be used to crash a Python application that uses the...

7.5CVSS8.6AI score0.28319EPSS
Exploits7References3
FreeBSD
FreeBSD
•added 2013/12/20 12:0 a.m.•39 views

file -- out-of-bounds access in search rules with offsets from input file

Aaron Reffett reports: softmagic.c in file ... and libmagic allows context-dependent attackers to cause a denial of service out-of-bounds memory access and crash via crafted offsets in the softmagic of a PE executable...

4.3CVSS7.3AI score0.04318EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2013/12/17 12:0 a.m.•39 views

cURL library -- cert name check ignore with GnuTLS

cURL project reports: libcurl is vulnerable to a case of missing out the checking of the certificate CN or SAN name field when the digital signature verification is turned off. libcurl offers two separate and independent options for verifying a server's TLS certificate. CURLOPTSSLVERIFYPEER and...

4CVSS9.2AI score0.02761EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/03/07 12:0 a.m.•39 views

privoxy -- malicious server spoofing as proxy vulnerability

Privoxy Developers reports: Proxy authentication headers are removed unless the new directive enable-proxy-authentication-forwarding is used. Forwarding the headers potentially allows malicious sites to trick the user into providing them with login information. Reported by Chris John Riley...

5.8CVSS6.6AI score0.04632EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2013/03/04 12:0 a.m.•39 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 176882 High CVE-2013-0902: Use-after-free in frame loader. Credit to Chamal de Silva. 176252 High CVE-2013-0903: Use-after-free in browser navigation handling. Credit to "chromium.khalil". 172926 172331 High CVE-2013-0904: Memory corruption in Web Audio. Credit to...

7.5CVSS0.8AI score0.01336EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2013/02/27 12:0 a.m.•39 views

net/openafs -- buffer overflow

Nickolai Zeldovich reports: An attacker with the ability to manipulate AFS directory ACLs may crash the fileserver hosting that volume. In addition, once a corrupt ACL is placed on a fileserver, its existence may crash client utilities manipulating ACLs on that server...

6.5CVSS6.3AI score0.03383EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/02/06 12:0 a.m.•39 views

piwigo -- CSRF/Path Traversal

High-Tech Bridge Security Research Lab reports: The CSRF vulnerability exists due to insufficient verification of the HTTP request origin in "/admin.php" script. A remote attacker can trick a logged-in administrator to visit a specially crafted webpage and create arbitrary PHP file on the remote...

6.6AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2012/12/04 12:0 a.m.•39 views

tomcat -- denial of service

The Apache Software Foundation reports: When using the NIO connector with sendfile and HTTPS enabled, if a client breaks the connection while reading the response an infinite loop is entered leading to a denial of service...

2.6CVSS9AI score0.07452EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2012/11/13 12:0 a.m.•39 views

bugzilla -- multiple vulnerabilities

A Bugzilla Security Advisory reports: The following security issues have been discovered in Bugzilla: Information Leak If the visibility of a custom field is controlled by a product or a component of a product you cannot see, their names are disclosed in the JavaScript code generated for this...

5CVSS8.6AI score0.02454EPSS
Exploits5References6
FreeBSD
FreeBSD
•added 2012/05/14 12:0 a.m.•39 views

sympa -- Multiple Security Bypass Vulnerabilities

Secunia team reports: Multiple vulnerabilities have been reported in Sympa, which can be exploited by malicious people to bypass certain security restrictions. The vulnerabilities are caused due to the application allowing access to archive functions without checking credentials. This can be...

7.5CVSS6.8AI score0.03207EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/05/03 12:0 a.m.•39 views

FreeBSD -- OpenSSL multiple vulnerabilities

Problem description: OpenSSL fails to clear the bytes used as block cipher padding in SSL 3.0 records when operating as a client or a server that accept SSL 3.0 handshakes. As a result, in each record, up to 15 bytes of uninitialized memory may be sent, encrypted, to the SSL peer. This could...

9.3CVSS8.6AI score0.48298EPSS
Exploits8
FreeBSD
FreeBSD
•added 2012/04/26 12:0 a.m.•39 views

net-snmp -- Remote DoS

The Red Hat Security Response Team reports: An array index error, leading to out-of heap-based buffer read flaw was found in the way the net-snmp agent performed lookups in the extension table. When certain MIB subtrees were handled by the extend directive, a remote attacker having read privilege...

3.5CVSS6.4AI score0.02167EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2012/03/21 12:0 a.m.•39 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 113902 High CVE-2011-3050: Use-after-free with first-letter handling. Credit to miaubiz. 116162 High CVE-2011-3045: libpng integer issue from upstream. Credit to Glenn Randers-Pehrson of the libpng project. 116461 High CVE-2011-3051: Use-after-free in CSS cross-fad...

8.8CVSS1.9AI score0.03567EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2012/03/08 12:0 a.m.•39 views

freetype -- multiple vulnerabilities

The Freetype project reports: Multiple vulnerabilities exist in freetype that can result in application crashes and remote code execution. Please review the details in each of the CVEs for additional information...

10CVSS7.4AI score0.05637EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2012/01/31 12:0 a.m.•39 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2012-01 Miscellaneous memory safety hazards rv:10.0/ rv:1.9.2.26 MFSA 2012-02 Overly permissive IPv6 literal syntax MFSA 2012-03 iframe element exposed across domains via name attribute MFSA 2012-04 Child nodes from nsDOMAttribute still accessible after removal o...

10CVSS9.6AI score0.36511EPSS
Exploits10References9
FreeBSD
FreeBSD
•added 2011/09/28 12:0 a.m.•39 views

FreeBSD -- errors handling corrupt compress file in compress(1) and gzip(1)

Problem Description: The code used to decompress a file created by compress1 does not do sufficient boundary checks on compressed code words, allowing reference beyond the decompression table, which may result in a stack overflow or an infinite loop when the decompressor encounters a corrupted fi...

9.3CVSS7.8AI score0.08355EPSS
Exploits0
FreeBSD
FreeBSD
•added 2011/01/20 12:0 a.m.•39 views

linux-flashplugin -- multiple vulnerabilities

Adobe Product Security Incident Response Team reports: Critical vulnerabilities have been identified in Adobe Flash Player 10.2.159.1 and earlier versions Adobe Flash Player 10.2.154.28 and earlier for Chrome users for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.2.157.51 and...

9.3CVSS3.4AI score0.05066EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/12/09 12:0 a.m.•39 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2010-74 Miscellaneous memory safety hazards rv:1.9.2.13/ 1.9.1.16 MFSA 2010-75 Buffer overflow while line breaking after document.write with long string MFSA 2010-76 Chrome privilege escalation with window.open and isindex element MFSA 2010-77 Crash and remote co...

9.3CVSS10.3AI score0.08669EPSS
Exploits1References11
FreeBSD
FreeBSD
•added 2010/06/09 12:0 a.m.•39 views

wget -- multiple HTTP client download filename vulnerability

GNU Wget version 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a 3xx redirect to a URL with a .wgetrc filename followed by a 3xx redirect to a...

6.8CVSS7.2AI score0.04214EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2010/03/30 12:0 a.m.•39 views

png -- libpng decompression buffer overflow

The PNG project describes the problem in an advisory: Several versions of libpng through 1.4.2 and through 1.2.43 in the older series contain a bug whereby progressive applications such as web browsers or the rpng2 demo app included in libpng could receive an extra row of image data beyond the...

9.8CVSS9.5AI score0.43382EPSS
Exploits7References1
FreeBSD
FreeBSD
•added 2010/03/24 12:0 a.m.•39 views

gtar -- buffer overflow in rmt client

Jakob Lell reports: The rmt client implementation of GNU Tar/Cpio contains a heap-based buffer overflow which possibly allows arbitrary code execution. The problem can be exploited when using an untrusted/compromised rmt server...

6.8CVSS8.2AI score0.04747EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2009/11/14 12:0 a.m.•39 views

PEAR -- Net_Ping and Net_Traceroute remote arbitrary command injection

PEAR Security Advisory reports: Multiple remote arbitrary command injections have been found in the NetPing and NetTraceroute. When input from forms are used directly, the attacker could pass variables that would allow him to execute remote arbitrary command injections...

6.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2009/08/06 12:0 a.m.•39 views

fetchmail -- improper SSL certificate subject verification

Matthias Andree reports: Moxie Marlinspike demonstrated in July 2009 that some CAs would sign certificates that contain embedded NUL characters in the Common Name or subjectAltName fields of ITU-T X.509 certificates. Applications that would treat such X.509 strings as NUL-terminated C strings...

6.4CVSS6.4AI score0.01503EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/07/14 12:0 a.m.•39 views

isc-dhcp-client -- Stack overflow vulnerability

US-CERT reports: The ISC DHCP dhclient application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code with root privileges...

10CVSS5.2AI score0.2578EPSS
Exploits9References3
FreeBSD
FreeBSD
•added 2009/05/06 12:0 a.m.•39 views

ntp -- stack-based buffer overflow

US-CERT reports: ntpd contains a stack buffer overflow which may allow a remote unauthenticated attacker to execute arbitrary code on a vulnerable system or create a denial of service...

6.7AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2009/01/21 12:0 a.m.•39 views

moinmoin -- multiple cross site scripting vulnerabilities

Secunia reports: Input passed to multiple parameters in action/AttachFile.py is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in the context of an affected site. Certain input passed to...

4.3CVSS0.2AI score0.05435EPSS
Exploits1References4
FreeBSD
FreeBSD
•added 2008/11/18 12:0 a.m.•39 views

dovecot-managesieve -- Script Name Directory Traversal Vulnerability

Secunia reports: The security issue is caused due to an input validation error when processing script names. This can be exploited to read or modify arbitrary files having ".sieve" extensions via directory traversal attacks, with the privileges of the attacker's user id...

6.4CVSS6.4AI score0.01829EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2008/11/18 12:0 a.m.•39 views

libxml2 -- multiple vulnerabilities

Secunia reports: Two vulnerabilities have been reported in Libxml2, which can be exploited by malicious people to cause a DoS Denial of Service or to potentially compromise an application using the library. 1 An integer overflow error in the "xmlSAX2Characters" function can be exploited to trigge...

7.6AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2008/10/15 12:0 a.m.•39 views

linux-flashplugin -- multiple vulnerabilities

Adobe Product Security Incident Response Team reports: Potential vulnerabilities have been identified in Adobe Flash Player 9.0.124.0 and earlier that could allow an attacker who successfully exploits these potential vulnerabilities to bypass Flash Player security controls. Adobe recommends users...

10CVSS6.7AI score0.08467EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2008/08/22 12:0 a.m.•39 views

libxml2 -- two vulnerabilities

Secunia reports: Two vulnerabilities have been reported in Libxml2, which can be exploited by malicious people to cause a DoS Denial of Service or potentially compromise an application using the library. 1 A recursion error exists when processing certain XML content. This can be exploited to e.g...

7.2AI score
Exploits0
FreeBSD
FreeBSD
•added 2008/08/08 12:0 a.m.•39 views

ruby -- multiple vulnerabilities in safe level

The official ruby site reports: Several vulnerabilities in safe level have been discovereds:. untracevar is permitted at safe level 4; $PROGRAMNAME may be modified at safe level 4; insecure methods may be called at safe level 1-3; syslog operations are permitted at safe level 4; dl doesn't check...

7.5CVSS7AI score0.14085EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2008/06/17 12:0 a.m.•39 views

php -- input validation error in safe_mode

According to Maksymilian Arciemowicz research, it is possible to bypass security restrictions of safemode in various functions via directory traversal vulnerability. The attacker can use this attack to gain access to sensitive information. Functions utilizing expandfilepath may be affected. It...

6.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2007/11/24 12:0 a.m.•39 views

rubygem-rails -- session-fixation vulnerability

Rails core team reports: The rails core team has released ruby on rails 1.2.6 to address a bug in the fix for session fixation attacks CVE-2007-5380. The CVE Identifier for this new issue is CVE-2007-6077...

6.8CVSS6.4AI score0.03576EPSS
Exploits0
FreeBSD
FreeBSD
•added 2007/07/19 12:0 a.m.•39 views

opera -- multiple vulnerabilities

Opera Software ASA reports of multiple security fixes in Opera, including an arbitrary code execute vulnerability: Opera for Linux, FreeBSD, and Solaris has a flaw in the createPattern function that leaves old data that was in the memory before Opera allocated it in the new pattern. The pattern c...

6.9AI score
Exploits0References6
FreeBSD
FreeBSD
•added 2007/05/09 12:0 a.m.•39 views

squirrelmail -- Cross site scripting in HTML filter

The SquirrelMail developers report: Multiple cross-site scripting XSS vulnerabilities in the HTML filter in SquirrelMail 1.4.0 through 1.4.9a allow remote attackers to inject arbitrary web script or HTML via the 1 data: URI in an HTML e-mail attachment or 2 various non-ASCII character sets that a...

4.3CVSS5.6AI score0.0253EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2007/03/20 12:0 a.m.•39 views

Squid -- TRACE method handling denial of service

Squid advisory 2007:1 notes: Due to an internal error Squid-2.6 is vulnerable to a denial of service attack when processing the TRACE request method. Workarounds: To work around the problem deny access to using the TRACE method by inserting the following two lines before your first httpaccess rul...

5CVSS6.3AI score0.27452EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2006/09/30 12:0 a.m.•39 views

php -- _ecalloc Integer Overflow Vulnerability

Stefan Esser reports: The PHP 5 branch of the PHP source code lacks the protection against possible integer overflows inside ecalloc that is present in the PHP 4 branch and also for several years part of our Hardening-Patch and our new Suhosin-Patch. It was discovered that such an integer overflo...

10CVSS7.3AI score0.15388EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2006/08/18 12:0 a.m.•39 views

php -- multiple vulnerabilities

The PHP development team reports: Added missing safemode/openbasedir checks inside the errorlog, fileexists, imapopen and imapreopen functions. Fixed overflows inside strrepeat and wordwrap functions on 64bit systems. Fixed possible openbasedir/safemode bypass in cURL extension and with realpath...

10CVSS7.1AI score0.06357EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2006/07/10 12:0 a.m.•39 views

freetype -- LWFN Files Buffer Overflow Vulnerability

SecurityTracker reports: A vulnerability was reported in FreeType. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create a specially crafted font file that, when loaded by the target user's system, will trigger an integer underflow or integer...

5CVSS7.5AI score0.11884EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2006/03/20 12:0 a.m.•39 views

xorg-server -- privilege escalation

Daniel Stone of X.Org reports: During the analysis of results from the Coverity code review of X.Org, we discovered a flaw in the server that allows local users to execute arbitrary code with root privileges, or cause a denial of service by overwriting files on the system, again with root...

7.2CVSS7.2AI score0.01099EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2005/07/12 12:0 a.m.•39 views

firefox & mozilla -- multiple vulnerabilities

The Mozilla Foundation reports of multiple security vulnerabilities in Firefox and Mozilla: MFSA 2005-56 Code execution through shared function objects MFSA 2005-55 XHTML node spoofing MFSA 2005-54 Javascript prompt origin spoofing MFSA 2005-53 Standalone applications can run arbitrary code throu...

7.5CVSS6.1AI score0.68097EPSS
Exploits9References13
FreeBSD
FreeBSD
•added 2005/03/03 12:0 a.m.•39 views

firefox -- arbitrary code execution from sidebar panel

A Mozilla Foundation Security Advisory states: If a user bookmarked a malicious page as a Firefox sidebar panel that page could execute arbitrary programs by opening a privileged page and injecting javascript into it...

2.6CVSS6.9AI score0.02516EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/02/18 12:0 a.m.•39 views

xloadimage -- arbitrary command execution when handling compressed files

Tavis Ormandy discovered that xli and xloadimage attempt to decompress images by piping them through gunzip or similar decompression tools. Unfortunately, the unsanitized file name is included as part of the command. This is dangerous, as in some situations, such as mailcap processing, an attacke...

7.5CVSS6.5AI score0.03603EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/11/11 12:0 a.m.•39 views

ez-ipupdate -- format string vulnerability

Data supplied by a remote server is used as the format string instead of as parameters in a syslog call. This may lead to crashes or potential running of arbitrary code. It is only a problem when running in daemon mode very common and when using some service types...

10CVSS6.6AI score0.03818EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/09/13 12:0 a.m.•39 views

mozilla -- BMP decoder vulnerabilities

Gael Delalleau discovered several integer overflows in Mozilla's BMP decoder that can result in denial-of-service or arbitrary code execution...

10CVSS7AI score0.08011EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/09/13 12:0 a.m.•39 views

mozilla -- multiple heap buffer overflows

Several heap buffer overflows were discovered and fixed in the most recent versions of Mozilla, Firefox, and Thunderbird. These overflows may occur when: Using the "Send Page" function. Checking mail on a malicious POP3 server. Processing non-ASCII URLs. Each of these vulnerabilities may be...

10CVSS6.9AI score0.10139EPSS
Exploits0References4
Total number of security vulnerabilities5000