Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2011/07/19 12:0 a.m.•30 views

freetype2 -- execute arbitrary code or cause denial of service

Vincent Danen reports: Due to an error within the t1decoderparsecharstrings function src/psaux/t1decode.c and can be exploited to corrupt memory by tricking a user into processing a specially-crafted postscript Type1 font in an application that uses the freetype library...

9.3CVSS3AI score0.06646EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/04/08 12:0 a.m.•30 views

rsync -- incremental recursion memory corruption vulnerability

rsync development team reports: Fixed a data-corruption issue when preserving hard-links without preserving file ownership, and doing deletions either before or during the transfer CVE-2011-1097. This fixes some assert errors in the hard-linking code, and some potential failed checksums via -c th...

5.1CVSS5.5AI score0.03163EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/02/08 12:0 a.m.•30 views

krb5 -- MITKRB5-SA-2011-002, KDC vulnerable to hang when using LDAP back end

An advisory published by the MIT Kerberos team says: The MIT krb5 Key Distribution Center KDC daemon is vulnerable to denial of service attacks from unauthenticated remote attackers. CVE-2011-0281 and CVE-2011-0282 occur only in KDCs using LDAP back ends, but CVE-2011-0283 occurs in all krb5-1.9...

5CVSS2.3AI score0.04202EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2010/09/14 12:0 a.m.•30 views

linux-flashplugin -- remote code execution

Adobe Product Security Incident Response Team reports: A critical vulnerability exists in Adobe Flash Player 10.1.82.76 and earlier versions for Windows, Macintosh, Linux, Solaris, and Adobe Flash Player 10.1.92.10 for Android. This vulnerability also affects Adobe Reader 9.3.4 and earlier versio...

9.3CVSS9AI score0.15621EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/09/13 12:0 a.m.•30 views

django -- cross-site scripting vulnerability

Django project reports: The provided template tag for inserting the CSRF token into forms -- % csrftoken % -- explicitly trusts the cookie value, and displays it as-is. Thus, an attacker who is able to tamper with the value of the CSRF cookie can cause arbitrary content to be inserted, unescaped,...

4.3CVSS5.8AI score0.019EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2010/07/28 12:0 a.m.•30 views

Piwik -- Local File Inclusion Vulnerability

Piwik versions 0.6 through 0.6.3 are vulnerable to arbitrary, remote file inclusion using a directory traversal pattern infinite a crafted request for a data renderer. A vulnerability has been reported in Piwik, which can before exploited by malicious people to disclose potentially sensitive...

6.8CVSS6.3AI score0.02729EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/04/06 12:0 a.m.•30 views

krb5 -- remote denial of service vulnerability

An authenticated remote attacker can causing a denial of service by using a newer version of the kadmin protocol than the server supports. The MIT Kerberos team also reports the cause: The Kerberos administration daemon kadmind can crash due to referencing freed memory...

6.5CVSS5.6AI score0.05469EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/01/27 12:0 a.m.•30 views

postgresql -- bitsubstr overflow

BugTraq reports: PostgreSQL is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code with elevated privileges or crash the affected application...

6.5CVSS6.9AI score0.13361EPSS
Exploits2
FreeBSD
FreeBSD
•added 2010/01/05 12:0 a.m.•30 views

lxr -- multiple XSS vulnerabilities

Dan Rosenberg reports: There are several cross-site scripting vulnerabilities in LXR. These vulnerabilities could allow an attacker to execute scripts in a user's browser, steal cookies associated with vulnerable domains, redirect the user to malicious websites, etc...

4.3CVSS6.2AI score0.03221EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/10/09 12:0 a.m.•30 views

django -- denial-of-service attack

Django project reports: Django's forms library includes field types which perform regular-expression-based validation of email addresses and URLs. Certain addresses/URLs could trigger a pathological performance case in these regular expression, resulting in the server process/thread becoming...

5CVSS6.4AI score0.03686EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/05/19 12:0 a.m.•30 views

nsd -- buffer overflow vulnerability

NLnet Labs: A one-byte buffer overflow has been reported in NSD. The problem affects all versions 2.0.0 to 3.2.1. The bug allows a carefully crafted exploit to bring down your DNS server. It is highly unlikely that this one byte overflow can lead to other system exploits...

5CVSS6.7AI score0.03157EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/05/05 12:0 a.m.•30 views

libwmf -- embedded GD library Use-After-Free vulnerability

Secunia reports: A vulnerability has been reported in libwmf, which can be exploited by malicious people to cause a DoS Denial of Service or compromise an application using the library. The vulnerability is caused due to a use-after-free error within the embedded GD library, which can be exploite...

7.5CVSS7.5AI score0.03463EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2008/12/09 12:0 a.m.•30 views

vinagre -- format string vulnerability

CORE Security Technologies reports: A format string error has been found on the vinagreutilsshowerror function that can be exploited via commands issued from a malicious server containing format string specifiers on the VNC name. In a web based attack scenario, the user would be required to conne...

6.8CVSS7.4AI score0.09121EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/10/17 12:0 a.m.•30 views

mantis -- php code execution vulnerability

Secunia reports: EgiX has discovered a vulnerability in Mantis, which can be exploited by malicious users to compromise a vulnerable system. Input passed to the "sort" parameter in manageprojpage.php is not properly sanitised before being used in a "createfunction" call. This can be exploited to...

9CVSS7AI score0.67453EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2008/10/08 12:0 a.m.•30 views

drupal -- multiple vulnerabilities

The Drupal Project reports: A logic error in the core upload module validation allowed unprivileged users to attach files to content. Users can view files attached to content which they do not otherwise have access to. If the core upload module is not enabled, your site will not be affected. A...

7.5CVSS6.2AI score0.02207EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2008/08/15 12:0 a.m.•30 views

gnutls -- "gnutls_handshake()" Denial of Service

Secunia reports: A vulnerability has been reported in GnuTLS, which can potentially be exploited by malicious people to cause a DoS Denial of Service. The vulnerability is caused due to a use-after-free error when an application calls "gnutlshandshake" for an already valid session and can...

7.6CVSS6.4AI score0.05457EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/07/28 12:0 a.m.•30 views

ipset-tools -- Denial of Service Vulnerabilities

SecurityFocus reports: IPsec-Tools is affected by multiple remote denial-of-service vulnerabilities because the software fails to properly handle certain network packets. A successful attack allows a remote attacker to crash the software, denying further service to legitimate users...

7.8CVSS6.7AI score0.03435EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2008/06/23 12:0 a.m.•30 views

phpmyadmin -- Cross Site Scripting Vulnerabilities

Secunia report: Some vulnerabilities have been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via unspecified parameters to files in /libraries is not properly sanitised before being returned to the user. This can be...

2.6CVSS7.1AI score0.01596EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/04/14 12:0 a.m.•30 views

mksh -- TTY attachment privilege escalation

Secunia reports: The vulnerability is caused due to an error when attaching to a TTY via the -T command line switch. This can be exploited to execute arbitrary commands with the privileges of the user running mksh via characters previously written to the attached virtual console...

7.2CVSS6.8AI score0.00332EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2008/04/09 12:0 a.m.•30 views

swfdec -- exposure of sensitive information

Secunia reports: A vulnerability has been reported in swfdec, which can be exploited by malicious people to disclose sensitive information. The vulnerability is caused due to swfdec not properly restricting untrusted sandboxes from reading local files, which can be exploited to disclose the conte...

4.3CVSS6.1AI score0.01129EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2007/11/21 12:0 a.m.•30 views

IRC Services-- Denial of Service Vulnerability

Secunia reports: A vulnerability has been reported in IRC Services, which can be exploited by malicious people to cause a Denial of Service. The vulnerability is caused due to the improper handling of overly long passwords within the "defaultencrypt" function in encrypt.c and can be exploited to...

5CVSS6.3AI score0.02079EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2007/07/24 12:0 a.m.•30 views

FreeBSD -- Predictable query ids in named(8)

Problem Description: When named8 is operating as a recursive DNS server or sending NOTIFY requests to slave DNS servers, named8 uses a predictable query id. Impact: An attacker who can see the query id for some requests sent by named8 is likely to be able to perform DNS cache poisoning by...

4.3CVSS7.8AI score0.1309EPSS
Exploits0
FreeBSD
FreeBSD
•added 2007/05/30 12:0 a.m.•30 views

findutils -- GNU locate heap buffer overrun

James Youngman reports: When GNU locate reads filenames from an old-format locate database, they are read into a fixed-length buffer allocated on the heap. Filenames longer than the 1026-byte buffer can cause a buffer overrun. The overrunning data can be chosen by any person able to control the...

6CVSS6.2AI score0.02225EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2007/05/23 12:0 a.m.•30 views

FreeBSD -- heap overflow in file(1)

Problem Description: When writing data into a buffer in the fileprintf function, the length of the unused portion of the buffer is not correctly tracked, resulting in a buffer overflow when processing certain files. Impact: An attacker who can cause file1 to be run on a maliciously constructed...

9.3CVSS9.8AI score0.12226EPSS
Exploits1
FreeBSD
FreeBSD
•added 2007/05/03 12:0 a.m.•30 views

php -- multiple vulnerabilities

The PHP development team reports: Security Enhancements and Fixes in PHP 5.2.2 and PHP 4.4.7: Fixed CVE-2007-1001, GD wbmp used with invalid image size Fixed asciiz byte truncation inside mail Fixed a bug in mbparsestr that can be used to activate registerglobals Fixed unallocated memory...

6.8CVSS6AI score0.08321EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2007/05/01 12:0 a.m.•30 views

qemu -- several vulnerabilities

The Debian Security Team reports: Several vulnerabilities have been discovered in the QEMU processor emulator, which may lead to the execution of arbitrary code or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-1320Tavis Ormandy...

7.2CVSS9.4AI score0.00493EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2007/02/05 12:0 a.m.•30 views

samba -- format string bug in afsacl.so VFS plugin

The Samba Team reports: NOTE: This security advisory only impacts Samba servers that share AFS file systems to CIFS clients and which have been explicitly instructed in smb.conf to load the afsacl.so VFS module. The source defect results in the name of a file stored on disk being used as the form...

7.5CVSS6.3AI score0.06412EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2006/12/31 12:0 a.m.•30 views

mplayer -- buffer overflow in the code for RealMedia RTSP streams.

A potential buffer overflow was found in the code used to handle RealMedia RTSP streams. When checking for matching asm rules, the code stores the results in a fixed-size array, but no boundary checks are performed. This may lead to a buffer overflow if the user is tricked into connecting to a...

7.5CVSS6.9AI score0.05346EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2006/10/09 12:0 a.m.•30 views

vtiger -- multiple remote file inclusion vulnerabilities

Dedi Dwianto a.k.a theday reports: Input passed to the "$calpath" parameter in update.php is not properly verified before being used. This can be exploited to execute arbitrary PHP code by including files from local or external resources...

7.5CVSS7.1AI score0.07869EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2006/09/28 12:0 a.m.•30 views

OpenSSL -- Multiple problems in crypto(3)

Problem Description: Several problems have been found in OpenSSL: During the parsing of certain invalid ASN1 structures an error condition is mishandled, possibly resulting in an infinite loop. A buffer overflow exists in the SSLgetsharedciphers function. A NULL pointer may be dereferenced in the...

7.8CVSS9.8AI score0.10629EPSS
Exploits1
FreeBSD
FreeBSD
•added 2006/08/30 12:0 a.m.•30 views

gtetrinet -- remote code execution

The Debian Security Team reports: Michael Gehring discovered several potential out-of-bounds index accesses in gtetrinet, a multiplayer Tetris-like game, which may allow a remote server to execute arbitrary code...

7.5CVSS6.7AI score0.04015EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2006/07/05 12:0 a.m.•30 views

twiki -- multiple file extensions file upload vulnerability

A TWiki Security Alert reports: The TWiki upload filter already prevents executable scripts such as .php, .php1, .phps, .pl from potentially getting executed by appending a .txt suffix to the uploaded filename. However, PHP and some other types allows additional file suffixes, such as .php.en,...

4CVSS6.5AI score0.0283EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2006/05/31 12:0 a.m.•30 views

MySQL -- SQL-injection security vulnerability

MySQL reports: An SQL-injection security hole has been found in multibyte encoding processing. An SQL-injection security hole can include a situation whereby when inserting user supplied data into a database, the user might inject his own SQL statements that the server will execute. With regards ...

0.4AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2006/05/04 12:0 a.m.•30 views

libxine -- multiple buffer overflow vulnerabilities

The libxine development team reports that several vulnerabilities had been found in the libxine library. The first vulnerability is caused by improper checking of the src/input/libreal/real.c "realparsesdp" function. A remote attacker could exploit this by tricking an user to connect to a...

7.3AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/04/19 12:0 a.m.•30 views

lifetype -- ADOdb "server.php" Insecure Test Script Security Issue

Secunia reports: A security issue has been discovered in LifeType, which can be exploited by malicious people to execute arbitrary SQL code and potentially compromise a vulnerable system. The problem is caused due to the presence of the insecure "server.php" test script...

7.5CVSS7.5AI score0.13237EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2006/04/06 12:0 a.m.•30 views

clamav -- Multiple Vulnerabilities

Secunia reports: Some vulnerabilities have been reported in ClamAV, which potentially can be exploited by malicious people to cause a DoS Denial of Service and compromise a vulnerable system. An unspecified integer overflow error exists in the PE header parser in "libclamav/pe.c". Successful...

5.1CVSS7.5AI score0.07635EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2006/03/09 12:0 a.m.•30 views

GnuPG does not detect injection of unsigned data

Werner Koch reports: In the aftermath of the false positive signature verfication bug announced 2006-02-15 more thorough testing of the fix has been done and another vulnerability has been detected. This new problem affects the use of gpg for verification of signatures which are not detached...

5CVSS6.4AI score0.02373EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2006/02/13 12:0 a.m.•30 views

SSH.COM SFTP server -- format string vulnerability

SSH Communications Security Corp reports a format string vulnerability in their SFTP server. This vulnerability could cause a user with SCP/SFTP access only to get permission to execute also other commands. It could also allow user A to create a special file that when accessed by user B allows us...

6.5CVSS6.6AI score0.10188EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2005/09/23 12:0 a.m.•30 views

perl, webmin, usermin -- perl format string integer wrap vulnerability

The Perl Development page reports: Dyad Security recently released a security advisory explaining how in certain cases, a carefully crafted format string passed to sprintf can cause a buffer overflow. This buffer overflow can then be used by an attacker to execute code on the machine. This was...

7.5CVSS7AI score0.1448EPSS
Exploits2References4
FreeBSD
FreeBSD
•added 2005/08/10 12:0 a.m.•30 views

evolution -- remote format string vulnerabilities

A SITIC Vulnerability Advisory reports: Evolution suffers from several format string bugs when handling data from remote sources. These bugs lead to crashes or the execution of arbitrary assembly language code. The first format string bug occurs when viewing the full vCard data attached to an...

6.7AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2005/07/06 12:0 a.m.•30 views

zlib -- buffer overflow vulnerability

Problem Description An error in the handling of corrupt compressed data streams can result in a buffer being overflowed. Impact By carefully crafting a corrupt compressed data stream, an attacker can overwrite data structures in a zlib-using application. This may cause the application to halt,...

7.5CVSS6.5AI score0.05476EPSS
Exploits3
FreeBSD
FreeBSD
•added 2005/06/08 12:0 a.m.•30 views

leafnode -- denial of service vulnerability

Matthias Andree reports: A vulnerability was found in the fetchnews program the NNTP client that may under some circumstances cause a wait for input that never arrives, fetchnews "hangs". ... As only one fetchnews program can run at a time, subsequently started fetchnews and texpire programs will...

5CVSS6.3AI score0.01138EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2005/05/10 12:0 a.m.•30 views

gaim -- remote crash on some protocols

The GAIM team reports that GAIM is vulnerable to a denial-of-service vulnerability which can cause GAIM to crash: It is possible for a remote user to overflow a static buffer by sending an IM containing a very large URL greater than 8192 bytes to the Gaim user. This is not possible on all...

7.5CVSS6.7AI score0.12396EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/04/20 12:0 a.m.•30 views

gzip -- directory traversal and permission race vulnerabilities

Problem Description Two problems related to extraction of files exist in gzip: The first problem is that gzip does not properly sanitize filenames containing "/" when uncompressing files using the -N command line option. The second problem is that gzip does not set permissions on newly extracted...

6.4AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2005/04/12 12:0 a.m.•30 views

wordpress -- multiple vulnerabilities

A Gentoo Linux Security Advisory reports: Due to a lack of input validation, WordPress is vulnerable to SQL injection and XSS attacks. An attacker could use the SQL injection vulnerabilities to gain information from the database. Furthermore the cross-site scripting issues give an attacker the...

7.5CVSS7.1AI score0.03139EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/04/11 12:0 a.m.•30 views

openoffice -- DOC document heap overflow vulnerability

AD-LAB reports that a heap-based buffer overflow vulnerability exists in OpenOffice's handling of DOC documents. When reading a DOC document 16 bit from a 32 bit integer is used for memory allocation, but the full 32 bit is used for further processing of the document. This can allow an attacker t...

5.1CVSS7.2AI score0.04132EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2005/03/11 12:0 a.m.•30 views

mysql-server -- multiple remote vulnerabilities

SecurityFocus reports: MySQL is reported prone to an insecure temporary file creation vulnerability. Reports indicate that an attacker that has 'CREATE TEMPORARY TABLE' privileges on an affected installation may leverage this vulnerability to corrupt files with the privileges of the MySQL process...

7.3AI score
Exploits0
FreeBSD
FreeBSD
•added 2005/02/22 12:0 a.m.•30 views

phpbb -- multiple vulnerabilities

phpBB is vulnerable to remote exploitation of an input validation vulnerability allows attackers to read the contents of arbitrary system files under the privileges of the webserver. This also allows remote attackers to unlink arbitrary system files under the privileges of the webserver...

6.4CVSS6.5AI score0.02043EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2005/02/20 12:0 a.m.•30 views

putty -- pscp/psftp heap corruption vulnerabilities

Simon Tatham reports: This version fixes a security hole in previous versions of PuTTY, which can allow a malicious SFTP server to attack your client. If you use either PSCP or PSFTP, you should upgrade. Users of the main PuTTY program are not affected. However, note that the server must have...

7.5CVSS6.1AI score0.04041EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2005/02/14 12:0 a.m.•30 views

unace -- multiple vulnerabilities

Ulf Härnhammar reports: There are buffer overflows when extracting, testing or listing specially prepared ACE archives. There are directory traversal bugs when extracting ACE archives. There are also buffer overflows when dealing with long 17000 characters command line arguments. Secunia reports:...

5.1CVSS6.1AI score0.03243EPSS
Exploits0References2
Total number of security vulnerabilities5000