Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2013/08/21 12:0 a.m.•27 views

ansible -- local symlink exploits

MITRE reports: runner/connectionplugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/. lib/ansible/playbook/init.py in Ansible 1.2.x before 1.2.3, when playbook does no...

3.3CVSS7.3AI score0.00339EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2013/08/20 12:0 a.m.•27 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 25 security fixes in this release, including: 181617 High CVE-2013-2900: Incomplete path sanitization in file handling. Credit to Krystian Bigaj. 254159 Low CVE-2013-2905: Information leak via overly broad permissions on shared memory files. Credit to Christian...

7.5CVSS1.8AI score0.01627EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/06/28 12:0 a.m.•27 views

gallery -- multiple vulnerabilities

Red Hat Security Response Team reports: Gallery upstream has released 3.0.9 version, correcting two security flaws: Issue 1 - Improper stripping of URL fragments in flowplayer SWF file might lead to reply attacks a different flaw than CVE-2013-2138. Issue 2 - gallery3: Multiple information exposu...

7.5CVSS6.2AI score0.02707EPSS
Exploits1References5
FreeBSD
FreeBSD
•added 2013/06/25 12:0 a.m.•27 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: Miscellaneous memory safety hazards rv:22.0 / rv:17.0.7 Title: Memory corruption found using Address Sanitizer Privileged content access and execution via XBL Arbitrary code execution within Profiler Execution of unmapped memory through onreadystatechange Data in the...

10CVSS8.5AI score0.69021EPSS
Exploits11References15
FreeBSD
FreeBSD
•added 2013/06/18 12:0 a.m.•27 views

otrs -- information disclosure

The OTRS Project reports: An attacker with a valid agent login could manipulate URLs in the ticket watch mechanism to see contents of tickets they are not permitted to see...

6.5CVSS6.7AI score0.02366EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/06/11 12:0 a.m.•27 views

linux-flashplugin -- multiple vulnerabilities

Adobe reports: These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system...

10CVSS6.5AI score0.05209EPSS
Exploits0
FreeBSD
FreeBSD
•added 2013/05/26 12:0 a.m.•27 views

socat -- FD leak

Gerhard Rieger reports: Under certain circumstances an FD leak occurs and can be misused for denial of service attacks against socat running in server mode...

2.6CVSS6.3AI score0.02061EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/05/22 12:0 a.m.•27 views

PHP5 -- Integer overflow in Calendar module

The PHP development team reports: Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service application hang via a large argument to the jdtojewish function...

5CVSS6.5AI score0.0423EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/05/22 12:0 a.m.•27 views

RT -- multiple vulnerabilities

Thomas Sibley reports: We discovered a number of security vulnerabilities which affect both RT 3.8.x and RT 4.0.x. We are releasing RT versions 3.8.17 and 4.0.13 to resolve these vulnerabilities, as well as patches which apply atop all released versions of 3.8 and 4.0. The vulnerabilities address...

6.8CVSS9.2AI score0.02428EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2013/01/31 12:0 a.m.•27 views

firebird -- Remote Stack Buffer Overflow

Firebird Project reports: The FirebirdSQL server is vulnerable to a stack buffer overflow that can be triggered when an unauthenticated user sends a specially crafted packet. The result can lead to remote code execution as the user which runs the FirebirdSQL server...

6.8CVSS6.8AI score0.42166EPSS
Exploits6References1
FreeBSD
FreeBSD
•added 2013/01/22 12:0 a.m.•27 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 151008 High CVE-2013-0839: Use-after-free in canvas font handling. Credit to Atte Kettunen of OUSPG. 170532 Medium CVE-2013-0840: Missing URL validation when opening new windows. 169770 High CVE-2013-0841: Unchecked array index in content blocking. Credit to Google...

10CVSS0.8AI score0.01095EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/01/02 12:0 a.m.•27 views

asterisk -- multiple vulnerabilities

Asterisk project reports: Crashes due to large stack allocations when using TCP Denial of Service Through Exploitation of Device State Caching...

5CVSS6.4AI score0.03032EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2012/11/10 12:0 a.m.•27 views

ruby -- Hash-flooding DoS vulnerability for ruby 1.9

The official ruby site reports: Carefully crafted sequence of strings can cause a denial of service attack on the service that parses the sequence to create a Hash object by using the strings as keys. For instance, this vulnerability affects web application that parses the JSON data sent from...

5CVSS6.2AI score0.03357EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/11/09 12:0 a.m.•27 views

weechat -- Crash or freeze when decoding IRC colors in strings

Sebastien Helleu reports: A buffer overflow is causing a crash or freeze of WeeChat when decoding IRC colors in strings. Workaround for a non-patched version: /set irc.network.colorsreceive off...

7.5CVSS6.9AI score0.05543EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2012/10/26 12:0 a.m.•27 views

RT -- Multiple Vulnerabilities

BestPractical report: All versions of RT are vulnerable to an email header injection attack. Users with ModifySelf or AdminUser can cause RT to add arbitrary headers or content to outgoing mail. Depending on the scrips that are configured, this may be be leveraged for information leakage or...

6.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2012/09/03 12:0 a.m.•27 views

moinmoin -- wrong processing of group membership

MoinMoin developers report: If you have group NAMES containing "All" or "Known" or "Trusted", they behaved wrong until now they erroneously included All/Known/Trusted users even if you did not list them as members, but will start working correctly with this changeset. E.g. AllFriendsGroup: JoeDoe...

6CVSS6.5AI score0.0209EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/08/03 12:0 a.m.•27 views

phpMyAdmin -- Path disclosure due to missing library

The phpMyAdmin development team reports: The showconfigerrors.php script does not include a library, so an error message shows the full path of this file, leading to possible further attacks...

5CVSS6.4AI score0.023EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2012/08/01 12:0 a.m.•27 views

libcloud -- possible SSL MITM due to invalid regexp used to validate target server hostname

The libcloud development team reports: When establishing a secure SSL / TLS connection to a target server an invalid regular expression has been used for performing the hostname verification. Subset instead of the full target server hostname has been marked an an acceptable match for the given...

5.9CVSS6.4AI score0.01208EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2012/04/13 12:0 a.m.•27 views

foswiki -- Script Insertion Vulnerability via unchecked user registration fields

Foswiki team reports: When a new user registers, the new user can add arbitrary HTML and script code into the user topic which is generated by the RegistrationAgent via standard registration fields such as "FirstName" or "OrganisationName". By design, Foswiki's normal editing features allow...

2.1CVSS6.4AI score0.01425EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2012/04/05 12:0 a.m.•27 views

linux-flashplugin -- multiple vulnerabilities

Adobe reports: Multiple Priority 2 vulnerabilities could cause a crash and potentially allow an attacker to take control of the affected system...

10CVSS6.5AI score0.05896EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2012/03/12 12:0 a.m.•27 views

vlc -- arbitrary code execution in Real RTSP and MMS support

Jean-Baptiste Kempf, on behalf of the VideoLAN project reports: If successful, a malicious third party could crash the VLC media player process. Arbitrary code execution could be possible on some systems...

9.3CVSS7AI score0.44621EPSS
Exploits9References2
FreeBSD
FreeBSD
•added 2012/01/15 12:0 a.m.•27 views

spamdyke -- Buffer Overflow Vulnerabilities

Secunia reports: Fixed a number of very serious errors in the usage of snprintf/vsnprintf. The return value was being used as the length of the string printed into the buffer, but the return value really indicates the length of the string that could be printed if the buffer were of infinite size...

7.5CVSS6.5AI score0.04574EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2011/08/24 12:0 a.m.•27 views

phpMyAdmin -- multiple XSS vulnerabilities

The phpMyAdmin development team reports: Multiple XSS in the Tracking feature...

4.3CVSS5.9AI score0.02326EPSS
Exploits1
FreeBSD
FreeBSD
•added 2011/07/05 12:0 a.m.•27 views

BIND -- Remote DoS against authoritative and recursive servers

ISC reports: A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers...

5CVSS8.4AI score0.19265EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/05/13 12:0 a.m.•27 views

linux-flashplugin -- cross-site scripting vulnerability

Adobe Product Security Incident Response Team reports: An important vulnerability has been identified in Adobe Flash Player 10.3.181.16 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.185.22 and earlier versions for Android. This universal cross-site...

4.3CVSS5.7AI score0.03553EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/10/20 12:0 a.m.•27 views

torcs -- untrusted local library loading

TORCS News reports: An insecure change to LDLIBRARYPATH allows loading of libraries in directories other than the standard paths. This can be a problem when downloading and installing untrusted content from the Internet...

6.9CVSS6.4AI score0.00381EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2010/08/09 12:0 a.m.•27 views

phpmyadmin -- Several XSS vulnerabilities

phpMyAdmin Team reports: It was possible to conduct a XSS attack using crafted URLs org POST parameters on several pages...

4.3CVSS5.9AI score0.0268EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/04/18 12:0 a.m.•27 views

fetchmail -- denial of service vulnerability

Fetchmail developer Matthias Andree reported a vulnerability that allows remote attackers to crash the application when it is runs in verbose mode. Fetchmail before release 6.3.17 did not properly sanitize external input mail headers and UID. When a multi-character locale such as UTF-8 was in use...

4.3CVSS6.3AI score0.02199EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/12/16 12:0 a.m.•27 views

drupal -- multiple cross-site scripting

Drupal Team reports: The Contact module does not correctly handle certain user input when displaying category information. Users privileged to create contact categories can insert arbitrary HTML and script code into the contact module administration page. Such a cross-site scripting attack may le...

3.5CVSS6.1AI score0.00887EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/07/28 12:0 a.m.•27 views

BIND -- Dynamic update message remote DoS

Problem Description: When named8 receives a specially crafted dynamic update message an internal assertion check is triggered which causes named8 to exit. To trigger the problem, the dynamic update message must contains a record of type "ANY" and at least one resource record set RRset for this...

4.3CVSS1.1AI score0.12649EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2009/07/16 12:0 a.m.•27 views

mozilla -- corrupt JIT state after deep return from native function

Mozilla Project reports: Firefox user zbyte reported a crash that we determined could result in an exploitable memory corruption problem. In certain cases after a return from a native function, such as escape, the Just-in-Time JIT compiler could get into a corrupt state. This could be exploited b...

9.3CVSS9.4AI score0.42689EPSS
Exploits9References2
FreeBSD
FreeBSD
•added 2009/06/09 12:0 a.m.•27 views

ruby -- BigDecimal denial of service vulnerability

The official ruby site reports: A denial of service DoS vulnerability was found on the BigDecimal standard library of Ruby. Conversion from BigDecimal objects into Float numbers had a problem which enables attackers to effectively cause segmentation faults. An attacker can cause a denial of servi...

5CVSS4.9AI score0.08375EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2009/05/15 12:0 a.m.•27 views

libsndfile -- multiple vulnerabilities

Secunia reports: Two vulnerabilities have been reported in libsndfile, which can be exploited by malicious people to compromise an application using the library. A boundary error exists within the "vocreadheader" function in src/voc.c. This can be exploited to cause a heap-based buffer overflow v...

6.7AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/02/03 12:0 a.m.•27 views

ghostscript -- buffer overflow vulnerability

SecurityFocus reports: Ghostscript is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into a finite-sized buffer. Exploiting this issue allows remote attackers to overwrite a sensitive memory buffer with arbitrary dat...

5CVSS6.9AI score0.04495EPSS
Exploits0
FreeBSD
FreeBSD
•added 2009/01/22 12:0 a.m.•27 views

tor -- unspecified memory corruption vulnerability

Secunia reports: A vulnerability with an unknown impact has been reported in Tor. The vulnerability is caused due to an unspecified error and can be exploited to trigger a heap corruption. No further information is currently available...

10CVSS2.6AI score0.03021EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/12/05 12:0 a.m.•27 views

twiki -- multiple vulnerabilities

Marc Schoenefeld and Steve Milner of RedHat SRT and Peter Allor of IBM ISS report: XSS vulnerability with URLPARAM variable SEARCH variable allows arbitrary shell command execution...

10CVSS6.6AI score0.0464EPSS
Exploits1References7
FreeBSD
FreeBSD
•added 2008/11/30 12:0 a.m.•27 views

vlc -- arbitrary code execution in the RealMedia processor

Tobias Klein from TrapKit reports: The VLC media player contains an integer overflow vulnerability while parsing malformed RealMedia .rm files. The vulnerability leads to a heap overflow that can be exploited by a remote attacker to execute arbitrary code in the context of VLC media player...

9.3CVSS7.4AI score0.07842EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/11/26 12:0 a.m.•27 views

wordpress -- header rss feed script insertion vulnerability

Secunia reports: Input passed via the HTTP "Host" header is not properly sanitised before being used. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site if malicious data is viewed...

4.3CVSS7AI score0.03233EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/11/25 12:0 a.m.•27 views

amaya -- multiple buffer overflow vulnerabilities

Secunia reports: A boundary error when processing "div" HTML tags can be exploited to cause a stack-based buffer overflow via an overly long "id" parameter. A boundary error exists when processing overly long links. This can be exploited to cause a stack-based buffer overflow by tricking the user...

6.7AI score
Exploits0References5
FreeBSD
FreeBSD
•added 2008/08/14 12:0 a.m.•27 views

hplip -- hpssd Denial of Service

Secunia reports: A security issue has been reported in hplip, which can be exploited by malicious, local users to cause a DoS. The security issue is caused due to an error within hpssd.py when parsing certain requests. This can be exploited to crash the service by sending specially crafted reques...

7.2CVSS6AI score0.00542EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2008/04/23 12:0 a.m.•27 views

phpmyadmin -- Shared Host Information Disclosure

A phpMyAdmin security announcement report: It is possible to read the contents of any file that the web server's user can access. The exact mechanism to achieve this won't be disclosed. If a user can upload on the same host where phpMyAdmin is running a PHP script that can read files with the...

3.5CVSS6.4AI score0.01626EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2008/04/16 12:0 a.m.•27 views

firefox -- javascript garbage collector vulnerability

Mozilla Foundation reports: Fixes for security problems in the JavaScript engine described in MFSA 2008-15 introduced a stability problem, where some users experienced crashes during JavaScript garbage collection. This is being fixed primarily to address stability concerns. We have no demonstrati...

6.7AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2008/04/02 12:0 a.m.•27 views

lighttpd -- OpenSSL Error Queue Denial of Service Vulnerability

Secunia reports: A vulnerability has been reported in lighttpd, which can be exploited by malicious people to cause a DoS Denial of Service. The vulnerability is caused due to lighttpd not properly clearing the OpenSSL error queue. This can be exploited to close concurrent SSL connections of...

4.3CVSS6.2AI score0.03366EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2007/11/26 12:0 a.m.•27 views

ikiwiki -- improper symlink verification vulnerability

The ikiwiki development team reports: Ikiwiki did not check if path to the srcdir to contained a symlink. If an attacker had commit access to the directories in the path, they could change it to a symlink, causing ikiwiki to read and publish files that were not intended to be published. But not...

1.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2007/10/31 12:0 a.m.•27 views

perdition -- str_vwrite format string vulnerability

SEC-Consult reports: Perdition IMAP is affected by a format string bug in one of its IMAP output-string formatting functions. The bug allows the execution of arbitrary code on the affected server. A successful exploit does not require prior authentication...

7.5CVSS7AI score0.12383EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2007/06/27 12:0 a.m.•27 views

p5-Net-DNS -- multiple Vulnerabilities

A Secunia Advisory reports: An error exists in the handling of DNS queries where IDs are incremented with a fixed value and are additionally used for child processes in a forking server. This can be exploited to poison the DNS cache of an application using the module if a valid ID is guessed. An...

6.4AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/11/08 12:0 a.m.•27 views

libarchive -- Infinite loop in corrupt archives handling in libarchive

Problem Description: If the end of an archive is reached while attempting to "skip" past a region of an archive, libarchive will enter an infinite loop wherein it repeatedly attempts and fails to read further data. Impact: An attacker able to cause a system to extract via "tar -x" or another...

5CVSS6.3AI score0.01588EPSS
Exploits1
FreeBSD
FreeBSD
•added 2006/10/18 12:0 a.m.•27 views

drupal -- cross site request forgeries

The Drupal Team reports: Visiting a specially crafted page, anywhere on the web, may allow that page to post forms to a Drupal site in the context of the visitor's session. To illustrate; suppose one has an active user 1 session, the most powerful administrator account for a site, to a Drupal sit...

2.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2006/08/09 12:0 a.m.•27 views

mysql -- database "case-sensitive" privilege escalation

Michal Prokopiuk reports a privilege escalation in MySQL. The vulnerability causes MySQL, when run on case-sensitive filesystems, to allow remote and local authenticated users to create or access a database when the database name differs only in case from a database for which they have permission...

3.6CVSS6.5AI score0.02729EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2006/07/05 12:0 a.m.•27 views

zope -- information disclosure vulnerability

Zope team reports: Unspecified vulnerability in Zope2 allows local users to obtain sensitive information via unknown attack vectors related to the docutils module and "restructured text"...

2.1CVSS5.8AI score0.00422EPSS
Exploits0References1
Total number of security vulnerabilities5000