Lucene search
K
FreebsdMost viewed

6583 matches found

FreeBSD
FreeBSD
•added 2015/04/12 12:0 a.m.•35 views

ffmpeg -- out-of-bounds array access

NVD reports: The msrledecodepal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 allows remote attackers to have unspecified impact via a crafted image, related to a pixel...

6.8CVSS8.4AI score0.02393EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2015/04/03 12:0 a.m.•35 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2015-44 Certificate verification bypass through the HTTP/2 Alt-Svc header MFSA 2015-43 Loading privileged content through Reader mode...

9.2AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2015/02/25 12:0 a.m.•35 views

krb5 1.11 -- New release/fix multiple vulnerabilities

The MIT Kerberos team announces the availability of MIT Kerberos 5 Release 1.11.6: Handle certain invalid RFC 1964 GSS tokens correctly to avoid invalid memory reference vulnerabilities. CVE-2014-4341 Fix memory management vulnerabilities in GSSAPI SPNEGO. CVE-2014-4343 CVE-2014-4344 Fix buffer...

9CVSS8.1AI score0.08085EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/02/17 12:0 a.m.•35 views

unzip -- heap based buffer overflow in iconv patch

Ubuntu Security Notice USN-2502-1 reports: unzip could be made to run programs if it opened a specially crafted file...

7.5CVSS8.8AI score0.04898EPSS
Exploits2References3
FreeBSD
FreeBSD
•added 2015/02/09 12:0 a.m.•35 views

libidn -- out-of-bounds read issue with invalid UTF-8 input

Simon Josefsson reports: stringpreputf8toucs4 now rejects invalid UTF-8. This function has always been documented to not validate that the input UTF-8 string is actually valid UTF-8...

7.5CVSS7.7AI score0.03185EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/11/21 12:0 a.m.•35 views

asterisk -- Multiple vulnerabilities

The Asterisk project reports: AST-2014-012 - Mixed IP address families in access control lists may permit unwanted traffic. AST-2014-018 - AMI permission escalation through DB dialplan function...

9CVSS6.6AI score0.03575EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2014/09/13 12:0 a.m.•35 views

phpMyAdmin -- XSRF/CSRF due to DOM based XSS in the micro history feature

The phpMyAdmin development team reports: XSRF/CSRF due to DOM based XSS in the micro history feature. By deceiving a logged-in user to click on a crafted URL, it is possible to perform remote code execution and in some cases, create a root account due to a DOM based XSS vulnerability in the micro...

4.3CVSS6.8AI score0.01862EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/08/17 12:0 a.m.•35 views

phpMyAdmin -- XSS vulnerabilities

The phpMyAdmin development team reports: Multiple XSS vulnerabilities in browse table, ENUM editor, monitor, query charts and table relations pages. With a crafted database, table or a primary/unique key column name it is possible to trigger an XSS when dropping a row from the table. With a craft...

3.5CVSS5.9AI score0.01706EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2014/08/05 12:0 a.m.•35 views

nginx -- inject commands into SSL session vulnerability

The nginx project reports: Security: pipelined commands were not discarded after STARTTLS command in SMTP proxy CVE-2014-3556; the bug had appeared in 1.5.6...

6.8CVSS6.7AI score0.07832EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/08/03 12:0 a.m.•35 views

krfb -- Possible Denial of Service or code execution via integer overflow

Albert Aastals Cid reports: krfb embeds libvncserver which embeds liblzo2, it contains various flaws that result in integer overflow problems. This potentially allows a malicious application to create a possible denial of service or code execution. Due to the need to exploit precise details of th...

8.8CVSS9.4AI score0.05315EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2014/05/13 12:0 a.m.•35 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 3 security fixes in this release: 358038 High CVE-2014-1740: Use-after-free in WebSockets. Credit to Collin Payne. 349898 High CVE-2014-1741: Integer overflow in DOM ranges. Credit to John Butler. 356690 High CVE-2014-1742: Use-after-free in editing. Credit to...

7.5CVSS1.9AI score0.01648EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/04/08 12:0 a.m.•35 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 31 vulnerabilities fixed in this release, including: 354123 High CVE-2014-1716: UXSS in V8. Credit to Anonymous. 353004 High CVE-2014-1717: OOB access in V8. Credit to Anonymous. 348332 High CVE-2014-1718: Integer overflow in compositor. Credit to Aaron Staple...

7.5CVSS3.2AI score0.01934EPSS
Exploits10References1
FreeBSD
FreeBSD
•added 2014/03/12 12:0 a.m.•35 views

mutt -- denial of service, potential remote code execution

Beatrice Torracca and Evgeni Golov report: A buffer overflow has been discovered that could result in denial of service or potential execution of arbitrary code. This condition can be triggered by malformed RFC2047 header lines...

5CVSS7.2AI score0.05155EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2014/03/12 12:0 a.m.•36 views

strongswan -- Remote Authentication Bypass

strongSwan developers report: Remote attackers are able to bypass authentication by rekeying an IKESA during 1 initiation or 2 re-authentication, which triggers the IKESA state to be set to established. Only installations that actively initiate or re-authenticate IKEv2 IKESAs are affected...

6.4CVSS6.7AI score0.02381EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2014/03/11 12:0 a.m.•35 views

www/chromium --multiple vulnerabilities

Google Chrome Releases reports: 7 vulnerabilities fixed in this release, including: 344881 High CVE-2014-1700: Use-after-free in speech. Credit to Chamal de Silva. 342618 High CVE-2014-1701: UXSS in events. Credit to aidanhs. 333058 High CVE-2014-1702: Use-after-free in web database. Credit to...

10CVSS3.1AI score0.01533EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/12/20 12:0 a.m.•35 views

nagios -- denial of service vulnerability

Eric Stanley reports: Most CGIs previously incremented the input variable counter twice when it encountered a long key value. This could cause the CGI to read past the end of the list of CGI variables...

7.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2013/12/03 12:0 a.m.•35 views

libxml2 -- entity substitution DoS

Stefan Cornelius reports: It was discovered that libxml2, a library providing support to read, modify and write XML files, incorrectly performs entity substitution in the doctype prolog, even if the application using libxml2 disabled any entity substitution. A remote attacker could provide a...

4.3CVSS7.8AI score0.081EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2013/06/27 12:0 a.m.•35 views

ruby -- Hostname check bypassing vulnerability in SSL client

Ruby Developers report: Ruby's SSL client implements hostname identity check but it does not properly handle hostnames in the certificate that contain null bytes...

6.8CVSS6.4AI score0.02767EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/06/21 12:0 a.m.•35 views

polarssl -- denial of service vulnerability

Paul Bakker reports: A bug in the logic of the parsing of PEM encoded certificates in x509parsecrt can result in an infinite loop, thus hogging processing power. While parsing a Certificate message during the SSL/TLS handshake, PolarSSL extracts the presented certificates and sends them on to be...

4.3CVSS7.3AI score0.01887EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2013/06/12 12:0 a.m.•35 views

samba -- Private key in key.pem world readable

The Samba project reports: Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obtain sensitive information by reading the key file, as demonstrated by access to the local filesyst...

1.2CVSS5.8AI score0.00435EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/04/30 12:0 a.m.•35 views

strongSwan -- ECDSA signature verification issue

strongSwan security team reports: If the openssl plugin is used for ECDSA signature verification an empty, zeroed or otherwise invalid signature is handled as a legitimate one. Both IKEv1 and IKEv2 are affected. Affected are only installations that have enabled and loaded the OpenSSL crypto backe...

4.9CVSS6.4AI score0.01585EPSS
Exploits0
FreeBSD
FreeBSD
•added 2013/03/27 12:0 a.m.•35 views

NVIDIA UNIX driver -- ARGB cursor buffer overflow in "NoScanout" mode

NVIDIA Unix security team reports: When the NVIDIA driver for the X Window System is operated in "NoScanout" mode, and an X client installs an ARGB cursor that is larger than the expected size 64x64 or 256x256, depending on the driver version, the driver will overflow a buffer. This can cause a...

7.1CVSS7AI score0.04807EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/03/11 12:0 a.m.•35 views

dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion

ISC reports: A critical defect in BIND 9 allows an attacker to cause excessive memory consumption in named or other programs linked to libdns...

7.8CVSS8.6AI score0.42851EPSS
Exploits1
FreeBSD
FreeBSD
•added 2012/12/29 12:0 a.m.•35 views

moinmoin -- Multiple vulnerabilities

MoinMoin developers report the following vulnerabilities as fixed in version 1.9.6: remote code execution vulnerability in twikidraw/anywikidraw action, path traversal vulnerability in AttachFile action, XSS issue, escape page name in rss link. CVE entries at MITRE furher clarify: Multiple...

6.4CVSS7AI score0.30566EPSS
Exploits8References2
FreeBSD
FreeBSD
•added 2012/12/21 12:0 a.m.•35 views

nagios -- buffer overflow in history.cgi

full disclosure reports: history.cgi is vulnerable to a buffer overflow due to the use of sprintf with user supplied data that has not been restricted in size...

7.5CVSS6.7AI score0.6645EPSS
Exploits15References2
FreeBSD
FreeBSD
•added 2012/12/04 12:0 a.m.•35 views

tomcat -- bypass of security constraints

The Apache Software Foundation reports: When using FORM authentication it was possible to bypass the security constraint checks in the FORM authenticator by appending "/jsecuritycheck" to the end of the URL if some other component such as the Single-Sign-On valve had called request.setUserPrincip...

4.3CVSS6.7AI score0.11975EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2012/10/16 12:0 a.m.•35 views

otrs -- XSS vulnerability could lead to remote code execution

The OTRS Project reports: This advisory covers vulnerabilities discovered in the OTRS core system. This is a variance of the XSS vulnerability, where an attacker could send a specially prepared HTML email to OTRS which would cause JavaScript code to be executed in your browser while displaying th...

4.3CVSS8.3AI score0.05792EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2012/08/28 12:0 a.m.•35 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2012-57 Miscellaneous memory safety hazards rv:15.0/ rv:10.0.7 MFSA 2012-58 Use-after-free issues found using Address Sanitizer MFSA 2012-59 Location object can be shadowed using Object.defineProperty MFSA 2012-60 Escalation of privilege through about:newtab MFSA...

10CVSS10.1AI score0.07762EPSS
Exploits5References17
FreeBSD
FreeBSD
•added 2012/06/04 12:0 a.m.•35 views

quagga -- BGP OPEN denial of service vulnerability

CERT reports: If a pre-configured BGP peer sends a specially-crafted OPEN message with a malformed ORF capability TLV, Quagga bgpd process will erroneously try to consume extra bytes from the input packet buffer. The process will detect a buffer overrun attempt before it happens and immediately...

2.9CVSS6.8AI score0.01056EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/05/16 12:0 a.m.•35 views

sudo -- netmask vulnerability

Todd Miller reports: Sudo supports granting access to commands on a per-host basis. The host specification may be in the form of a host name, a netgroup, an IP address, or an IP network an IP address with an associated netmask. When IPv6 support was added to sudo, a bug was introduced that caused...

7.2CVSS7.9AI score0.00399EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/05/15 12:0 a.m.•35 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 112983 Low CVE-2011-3083: Browser crash with video + FTP. Credit to Aki Helin of OUSPG. 113496 Low CVE-2011-3084: Load links from internal pages in their own process. Credit to Brett Wilson of the Chromium development community. 118374 Medium CVE-2011-3085: UI...

10CVSS0.7AI score0.03344EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/03/13 12:0 a.m.•35 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2012-13 XSS with Drag and Drop and Javascript: URL MFSA 2012-14 SVG issues found with Address Sanitizer MFSA 2012-15 XSS with multiple Content Security Policy headers MFSA 2012-16 Escalation of privilege with Javascript: URL as home page MFSA 2012-17 Crash when...

9.3CVSS9.5AI score0.0663EPSS
Exploits1References7
FreeBSD
FreeBSD
•added 2012/03/04 12:0 a.m.•35 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 105867 High CVE-2011-3031: Use-after-free in v8 element wrapper. Credit to Chamal de Silva. 108037 High CVE-2011-3032: Use-after-free in SVG value handling. Credit to Arthur Gerkis. 108406 115471 High CVE-2011-3033: Buffer overflow in the Skia drawing library. Cred...

7.5CVSS1.4AI score0.02195EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2012/02/27 12:0 a.m.•35 views

databases/postgresql*-client -- multiple vulnerabilities

The PostgreSQL Global Development Group reports: These vulnerabilities could allow users to define triggers that execute functions on which the user does not have EXECUTE permission, allow SSL certificate spoofing and allow line breaks in object names to be exploited to execute code when loading ...

6.8CVSS6.9AI score0.0257EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2012/02/13 12:0 a.m.•35 views

Python -- DoS via malformed XML-RPC / HTTP POST request

Jan Lieskovsky reports, A denial of service flaw was found in the way Simple XML-RPC Server module of Python processed client connections, that were closed prior the complete request body has been received. A remote attacker could use this flaw to cause Python Simple XML-RPC based server process ...

5CVSS8.5AI score0.0562EPSS
Exploits2References3
FreeBSD
FreeBSD
•added 2011/10/03 12:0 a.m.•35 views

kdelibs4, rekonq -- input validation failure

KDE Security Advisory reports: The default rendering type for a QLabel is QLabel::AutoText, which uses heuristics to determine whether to render the given content as plain text or rich text. KSSL and Rekonq did not properly force its QLabels to use QLabel::PlainText. As a result, if given a...

4.3CVSS9.3AI score0.01134EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2011/08/20 12:0 a.m.•35 views

codeigniter -- SQL injection vulnerability

The CodeIgniter changelog reports: An improvement was made to the MySQL and MySQLi drivers to prevent exposing a potential vector for SQL injection on sites using multi-byte character sets in the database client connection. An incompatibility in PHP versions 5.0.7 with mysqlsetcharset creates a...

5.9AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/01/24 12:0 a.m.•35 views

bugzilla -- multiple serious vulnerabilities

A Bugzilla Security Advisory reports: This advisory covers three security issues that have recently been fixed in the Bugzilla code: A weakness in Bugzilla could allow a user to gain unauthorized access to another Bugzilla account. A weakness in the Perl CGI.pm module allows injecting HTTP header...

9.3CVSS9.2AI score0.0504EPSS
Exploits0References12
FreeBSD
FreeBSD
•added 2010/11/02 12:0 a.m.•35 views

isc-dhcp-server -- Empty link-address denial of service

ISC reports: If the server receives a DHCPv6 packet containing one or more Relay-Forward messages, and none of them supply an address in the Relay-Forward link-address field, then the server will crash. This can be used as a single packet crash attack vector...

4.3CVSS6.4AI score0.09402EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2010/09/16 12:0 a.m.•35 views

Wireshark -- DoS in the BER-based dissectors

Secunia reports: A vulnerability has been discovered in Wireshark, which can be exploited by malicious people to cause a DoS Denial of Service. The vulnerability is caused due to an infinite recursion error in the "dissectunknownber" function in epan/dissectors/packet-ber.c and can be exploited t...

5CVSS6.5AI score0.04147EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2010/04/15 12:0 a.m.•35 views

tiff -- buffer overflow vulnerability

Kevin Finisterre reports: Multiple integer overflows in the handling of TIFF files may result in a heap buffer overflow. Opening a maliciously crafted TIFF file may lead to an unexpected application termination or arbitrary code execution. The issues are addressed through improved bounds checking...

6.8CVSS8.2AI score0.12854EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2010/04/06 12:0 a.m.•35 views

mahara -- sql injection vulnerability

The Debian security team reports: It was discovered that mahara, an electronic portfolio, weblog, and resume builder is not properly escaping input when generating a unique username based on a remote user name from a single sign-on application. An attacker can use this to compromise the mahara...

7.5CVSS6.4AI score0.01717EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2010/02/27 12:0 a.m.•35 views

png -- libpng decompression denial of service

A vulnerability in libpng can result in denial of service conditions when a remote attacker tricks a victim to open a specially-crafted PNG file. The PNG project describes the problem in an advisory: Because of the efficient compression method used in Portable Network Graphics PNG files, a small...

4.3CVSS8.9AI score0.04208EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2009/11/18 12:0 a.m.•35 views

bugzilla -- information leak

A Bugzilla Security Advisory reports: When a bug is in a group, none of its information other than its status and resolution should be visible to users outside that group. It was discovered that as of 3.3.2, Bugzilla was showing the alias of the bug a very short string used as a shortcut for...

5CVSS6.4AI score0.01726EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/10/14 12:0 a.m.•35 views

Xpdf -- Multiple Vulnerabilities

SecurityFocus reports: Some vulnerabilities have been reported in Xpdf, which can be exploited by malicious people to potentially compromise a user's system. 1 Multiple integer overflows in "SplashBitmap::SplashBitmap" can be exploited to cause heap-based buffer overflows. 2 An integer overflow...

1.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/06/05 12:0 a.m.•35 views

apr -- multiple vulnerabilities

Secunia reports: Some vulnerabilities have been reported in APR-util, which can be exploited by malicious users and malicious people to cause a DoS Denial of Service. A vulnerability is caused due to an error in the processing of XML files and can be exploited to exhaust all available memory via ...

7.5CVSS7.1AI score0.52988EPSS
Exploits3References3
FreeBSD
FreeBSD
•added 2009/04/04 12:0 a.m.•35 views

libxine -- multiple vulnerabilities

xine developers report: Fix another possible int overflow in the 4XM demuxer. ref. TKADV2009-004, CVE-2009-0385 Fix an integer overflow in the Quicktime demuxer...

9.3CVSS6.7AI score0.06664EPSS
Exploits2References3
FreeBSD
FreeBSD
•added 2009/01/26 12:0 a.m.•35 views

epiphany -- untrusted search path vulnerability

CVE Mitre reports: Untrusted search path vulnerability in the Python interface in Epiphany 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySysSetArgv function...

6.9CVSS9.4AI score0.0051EPSS
Exploits2
FreeBSD
FreeBSD
•added 2008/12/24 12:0 a.m.•35 views

php5-gd -- uninitialized memory information disclosure vulnerability

According to CVE-2008-5498 entry: Array index error in the "imageRotate" function in PHP 5.2.8 and earlier allows context-dependent attackers to read the contents of arbitrary memory locations via a crafted value of the third argument aka the "bgdcolor" or "clrBack" argument for an indexed image...

5CVSS6.5AI score0.08845EPSS
Exploits7References1
FreeBSD
FreeBSD
•added 2008/09/08 12:0 a.m.•35 views

rubygem-rails -- SQL injection vulnerability

Jonathan Weiss reports, that it is possible to perform an SQL injection in Rails applications via not correctly sanitized :limit and :offset parameters. It is possible to change arbitrary values in affected tables or gain access to the sensitive data...

7.5CVSS7.5AI score0.0303EPSS
Exploits1References1
Total number of security vulnerabilities5000