Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2015/06/30 12:0 a.m.•27 views

php -- use-after-free vulnerability

Symeon Paraschoudis reports: Use-after-free vulnerability in splrecursiveitmoveforwardex...

1.4AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/29 12:0 a.m.•27 views

cURL -- sensitive HTTP server headers also sent to proxies

cURL reports: libcurl provides applications a way to set custom HTTP headers to be sent to the server by using CURLOPTHTTPHEADER. A similar option is available for the curl command-line tool with the '--header' option. When the connection passes through an HTTP proxy the same set of headers is se...

5CVSS8.7AI score0.07538EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/07 12:0 a.m.•27 views

FreeBSD -- Denial of Service with IPv6 Router Advertisements

Problem Description: The Neighbor Discover Protocol allows a local router to advertise a suggested Current Hop Limit value of a link, which will replace Current Hop Limit on an interface connected to the link on the FreeBSD system. Impact: When the Current Hop Limit similar to IPv4's TTL is small...

6.5CVSS6.2AI score0.01378EPSS
Exploits0
FreeBSD
FreeBSD
•added 2015/03/27 12:0 a.m.•27 views

cpio -- multiple vulnerabilities

From the Debian Security Team: Heap-based buffer overflow in the processcopyin function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive. cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitra...

5CVSS8.2AI score0.07093EPSS
Exploits5References2
FreeBSD
FreeBSD
•added 2015/02/18 12:0 a.m.•27 views

cabextract -- directory traversal with UTF-8 symbols in filenames

Cabextract ChangeLog reports: It was possible for cabinet files to extract to absolute file locations, and it was possible on Cygwin to get around cabextract's absolute and relative path protections by using backslashes...

5.3CVSS5.7AI score0.02308EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2015/01/26 12:0 a.m.•27 views

privoxy -- multiple vulnerabilities

Privoxy Developers reports: Fixed a DoS issue in case of client requests with incorrect chunk-encoded body. When compiled with assertions enabled the default they could previously cause Privoxy to abort. Reported by Matthew Daley. CVE-2015-1380. Fixed multiple segmentation faults and memory leaks...

5CVSS6.7AI score0.03397EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2015/01/25 12:0 a.m.•27 views

libssh2 -- denial of service vulnerability

Mariusz Ziulek reports: A malicious attacker could man in the middle a real server and cause libssh2 using clients to crash denial of service or otherwise read and use completely unintended memory areas in this process...

6.8CVSS6.2AI score0.03501EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2015/01/09 12:0 a.m.•27 views

kde-runtime -- incorrect CBC encryption handling

Valentin Rusu reports: Until KDE Applications 14.12.0, kwalletd incorrectly handled CBC encryption blocks when encrypting secrets in kwl files. The secrets were still encrypted, but the result binary data corresponded to an ECB encrypted block instead of CBC. The ECB encryption algorithm, even if...

5CVSS6.3AI score0.02147EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2014/12/11 12:0 a.m.•27 views

libmspack -- frame_end overflow which could cause infinite loop

There is a denial of service vulnerability in libmspack. The libmspack code is built into cabextract, so it is also vulnerable. MITRE reports: Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which...

5CVSS5.9AI score0.02817EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2014/11/04 12:0 a.m.•27 views

Konversation -- out-of-bounds read on a heap-allocated array

Konversation developers report: Konversation's Blowfish ECB encryption support assumes incoming blocks to be the expected 12 bytes. The lack of a sanity-check for the actual size can cause a denial of service and an information leak to the local user...

5CVSS6.2AI score0.0355EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/10/21 12:0 a.m.•27 views

phpMyAdmin -- XSS vulnerabilities in SQL debug output and server monitor page.

The phpMyAdmin development team reports: With a crafted database or table name it is possible to trigger an XSS in SQL debug output when enabled and in server monitor page when viewing and analysing executed queries. This vulnerability can be triggered only by someone who is logged in to...

3.5CVSS6.3AI score0.01519EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2014/07/02 12:0 a.m.•27 views

dbus -- multiple vulnerabilities

Simon McVittie reports: Alban Crequy at Collabora Ltd. discovered a bug in dbus-daemon's support for file descriptor passing. A malicious process could force system services or user applications to be disconnected from the D-Bus system bus by sending them a message containing a file descriptor,...

2.1CVSS5.8AI score0.00446EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/01/28 12:0 a.m.•27 views

otrs -- multiple vulnerabilities

The OTRS Project reports: SQL injection issue An attacker that managed to take over the session of a logged in customer could create tickets and/or send follow-ups to existing tickets due to missing challenge token checks...

7.5CVSS6.6AI score0.01827EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2013/11/01 12:0 a.m.•27 views

strongswan -- multiple DoS vulnerabilities

strongSwan Project reports: A DoS vulnerability triggered by crafted IKEv1 fragmentation payloads was discovered in strongSwan's IKE daemon charon. All versions since 5.0.2 are affected. A DoS vulnerability and potential authorization bypass triggered by a crafted IDDERASN1DN ID payload was...

5CVSS6.4AI score0.02985EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2013/08/21 12:0 a.m.•27 views

ansible -- local symlink exploits

MITRE reports: runner/connectionplugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/. lib/ansible/playbook/init.py in Ansible 1.2.x before 1.2.3, when playbook does no...

3.3CVSS7.3AI score0.00339EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2013/08/20 12:0 a.m.•27 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 25 security fixes in this release, including: 181617 High CVE-2013-2900: Incomplete path sanitization in file handling. Credit to Krystian Bigaj. 254159 Low CVE-2013-2905: Information leak via overly broad permissions on shared memory files. Credit to Christian...

7.5CVSS1.8AI score0.01627EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/06/28 12:0 a.m.•27 views

gallery -- multiple vulnerabilities

Red Hat Security Response Team reports: Gallery upstream has released 3.0.9 version, correcting two security flaws: Issue 1 - Improper stripping of URL fragments in flowplayer SWF file might lead to reply attacks a different flaw than CVE-2013-2138. Issue 2 - gallery3: Multiple information exposu...

7.5CVSS6.2AI score0.02707EPSS
Exploits1References5
FreeBSD
FreeBSD
•added 2013/06/25 12:0 a.m.•27 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: Miscellaneous memory safety hazards rv:22.0 / rv:17.0.7 Title: Memory corruption found using Address Sanitizer Privileged content access and execution via XBL Arbitrary code execution within Profiler Execution of unmapped memory through onreadystatechange Data in the...

10CVSS8.5AI score0.69021EPSS
Exploits11References15
FreeBSD
FreeBSD
•added 2013/06/18 12:0 a.m.•27 views

otrs -- information disclosure

The OTRS Project reports: An attacker with a valid agent login could manipulate URLs in the ticket watch mechanism to see contents of tickets they are not permitted to see...

6.5CVSS6.7AI score0.02366EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/06/11 12:0 a.m.•27 views

linux-flashplugin -- multiple vulnerabilities

Adobe reports: These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system...

10CVSS6.5AI score0.05209EPSS
Exploits0
FreeBSD
FreeBSD
•added 2013/05/26 12:0 a.m.•27 views

socat -- FD leak

Gerhard Rieger reports: Under certain circumstances an FD leak occurs and can be misused for denial of service attacks against socat running in server mode...

2.6CVSS6.3AI score0.02061EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/05/22 12:0 a.m.•27 views

PHP5 -- Integer overflow in Calendar module

The PHP development team reports: Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service application hang via a large argument to the jdtojewish function...

5CVSS6.5AI score0.0423EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/05/22 12:0 a.m.•27 views

RT -- multiple vulnerabilities

Thomas Sibley reports: We discovered a number of security vulnerabilities which affect both RT 3.8.x and RT 4.0.x. We are releasing RT versions 3.8.17 and 4.0.13 to resolve these vulnerabilities, as well as patches which apply atop all released versions of 3.8 and 4.0. The vulnerabilities address...

6.8CVSS9.2AI score0.02428EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2013/01/31 12:0 a.m.•27 views

firebird -- Remote Stack Buffer Overflow

Firebird Project reports: The FirebirdSQL server is vulnerable to a stack buffer overflow that can be triggered when an unauthenticated user sends a specially crafted packet. The result can lead to remote code execution as the user which runs the FirebirdSQL server...

6.8CVSS6.8AI score0.42166EPSS
Exploits6References1
FreeBSD
FreeBSD
•added 2013/01/22 12:0 a.m.•27 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 151008 High CVE-2013-0839: Use-after-free in canvas font handling. Credit to Atte Kettunen of OUSPG. 170532 Medium CVE-2013-0840: Missing URL validation when opening new windows. 169770 High CVE-2013-0841: Unchecked array index in content blocking. Credit to Google...

10CVSS0.8AI score0.01095EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/01/02 12:0 a.m.•27 views

asterisk -- multiple vulnerabilities

Asterisk project reports: Crashes due to large stack allocations when using TCP Denial of Service Through Exploitation of Device State Caching...

5CVSS6.4AI score0.03032EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2012/11/10 12:0 a.m.•27 views

ruby -- Hash-flooding DoS vulnerability for ruby 1.9

The official ruby site reports: Carefully crafted sequence of strings can cause a denial of service attack on the service that parses the sequence to create a Hash object by using the strings as keys. For instance, this vulnerability affects web application that parses the JSON data sent from...

5CVSS6.2AI score0.03357EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/11/09 12:0 a.m.•27 views

weechat -- Crash or freeze when decoding IRC colors in strings

Sebastien Helleu reports: A buffer overflow is causing a crash or freeze of WeeChat when decoding IRC colors in strings. Workaround for a non-patched version: /set irc.network.colorsreceive off...

7.5CVSS6.9AI score0.05543EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2012/10/26 12:0 a.m.•27 views

RT -- Multiple Vulnerabilities

BestPractical report: All versions of RT are vulnerable to an email header injection attack. Users with ModifySelf or AdminUser can cause RT to add arbitrary headers or content to outgoing mail. Depending on the scrips that are configured, this may be be leveraged for information leakage or...

6.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2012/09/03 12:0 a.m.•27 views

moinmoin -- wrong processing of group membership

MoinMoin developers report: If you have group NAMES containing "All" or "Known" or "Trusted", they behaved wrong until now they erroneously included All/Known/Trusted users even if you did not list them as members, but will start working correctly with this changeset. E.g. AllFriendsGroup: JoeDoe...

6CVSS6.5AI score0.0209EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/08/03 12:0 a.m.•27 views

phpMyAdmin -- Path disclosure due to missing library

The phpMyAdmin development team reports: The showconfigerrors.php script does not include a library, so an error message shows the full path of this file, leading to possible further attacks...

5CVSS6.4AI score0.023EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2012/08/01 12:0 a.m.•27 views

libcloud -- possible SSL MITM due to invalid regexp used to validate target server hostname

The libcloud development team reports: When establishing a secure SSL / TLS connection to a target server an invalid regular expression has been used for performing the hostname verification. Subset instead of the full target server hostname has been marked an an acceptable match for the given...

5.9CVSS6.4AI score0.01208EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2012/04/28 12:0 a.m.•27 views

WebCalendar -- multiple vulnerabilities

Hanno Boeck reports: Fixes are now available for various security vulnerabilities including LFI local file inclusion, XSS cross site scripting and others...

9.8CVSS8.8AI score0.79764EPSS
Exploits15References3
FreeBSD
FreeBSD
•added 2012/04/05 12:0 a.m.•27 views

linux-flashplugin -- multiple vulnerabilities

Adobe reports: Multiple Priority 2 vulnerabilities could cause a crash and potentially allow an attacker to take control of the affected system...

10CVSS6.5AI score0.05896EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2012/03/12 12:0 a.m.•27 views

vlc -- arbitrary code execution in Real RTSP and MMS support

Jean-Baptiste Kempf, on behalf of the VideoLAN project reports: If successful, a malicious third party could crash the VLC media player process. Arbitrary code execution could be possible on some systems...

9.3CVSS7AI score0.44621EPSS
Exploits9References2
FreeBSD
FreeBSD
•added 2012/01/15 12:0 a.m.•27 views

spamdyke -- Buffer Overflow Vulnerabilities

Secunia reports: Fixed a number of very serious errors in the usage of snprintf/vsnprintf. The return value was being used as the length of the string printed into the buffer, but the return value really indicates the length of the string that could be printed if the buffer were of infinite size...

7.5CVSS6.5AI score0.04574EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2011/08/24 12:0 a.m.•27 views

phpMyAdmin -- multiple XSS vulnerabilities

The phpMyAdmin development team reports: Multiple XSS in the Tracking feature...

4.3CVSS5.9AI score0.02326EPSS
Exploits1
FreeBSD
FreeBSD
•added 2011/07/05 12:0 a.m.•27 views

BIND -- Remote DoS against authoritative and recursive servers

ISC reports: A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers...

5CVSS8.4AI score0.19265EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/05/13 12:0 a.m.•27 views

linux-flashplugin -- cross-site scripting vulnerability

Adobe Product Security Incident Response Team reports: An important vulnerability has been identified in Adobe Flash Player 10.3.181.16 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.185.22 and earlier versions for Android. This universal cross-site...

4.3CVSS5.7AI score0.03553EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/10/20 12:0 a.m.•27 views

torcs -- untrusted local library loading

TORCS News reports: An insecure change to LDLIBRARYPATH allows loading of libraries in directories other than the standard paths. This can be a problem when downloading and installing untrusted content from the Internet...

6.9CVSS6.4AI score0.00381EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2010/08/09 12:0 a.m.•27 views

phpmyadmin -- Several XSS vulnerabilities

phpMyAdmin Team reports: It was possible to conduct a XSS attack using crafted URLs org POST parameters on several pages...

4.3CVSS5.9AI score0.0268EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/04/18 12:0 a.m.•27 views

fetchmail -- denial of service vulnerability

Fetchmail developer Matthias Andree reported a vulnerability that allows remote attackers to crash the application when it is runs in verbose mode. Fetchmail before release 6.3.17 did not properly sanitize external input mail headers and UID. When a multi-character locale such as UTF-8 was in use...

4.3CVSS6.3AI score0.02199EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/12/16 12:0 a.m.•27 views

drupal -- multiple cross-site scripting

Drupal Team reports: The Contact module does not correctly handle certain user input when displaying category information. Users privileged to create contact categories can insert arbitrary HTML and script code into the contact module administration page. Such a cross-site scripting attack may le...

3.5CVSS6.1AI score0.00887EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/08/18 12:0 a.m.•27 views

pidgin -- MSN overflow parsing SLP messages

Secunia reports: A vulnerability has been reported in Pidgin, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to an error in the "msnslplinkprocessmsg" function when processing MSN SLP messages and can be exploited to corrupt...

10CVSS6.6AI score0.20295EPSS
Exploits8References2
FreeBSD
FreeBSD
•added 2009/07/28 12:0 a.m.•27 views

BIND -- Dynamic update message remote DoS

Problem Description: When named8 receives a specially crafted dynamic update message an internal assertion check is triggered which causes named8 to exit. To trigger the problem, the dynamic update message must contains a record of type "ANY" and at least one resource record set RRset for this...

4.3CVSS1.1AI score0.12649EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2009/06/09 12:0 a.m.•27 views

ruby -- BigDecimal denial of service vulnerability

The official ruby site reports: A denial of service DoS vulnerability was found on the BigDecimal standard library of Ruby. Conversion from BigDecimal objects into Float numbers had a problem which enables attackers to effectively cause segmentation faults. An attacker can cause a denial of servi...

5CVSS4.9AI score0.08375EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2009/05/15 12:0 a.m.•27 views

libsndfile -- multiple vulnerabilities

Secunia reports: Two vulnerabilities have been reported in libsndfile, which can be exploited by malicious people to compromise an application using the library. A boundary error exists within the "vocreadheader" function in src/voc.c. This can be exploited to cause a heap-based buffer overflow v...

6.7AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/02/03 12:0 a.m.•27 views

ghostscript -- buffer overflow vulnerability

SecurityFocus reports: Ghostscript is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into a finite-sized buffer. Exploiting this issue allows remote attackers to overwrite a sensitive memory buffer with arbitrary dat...

5CVSS6.9AI score0.04495EPSS
Exploits0
FreeBSD
FreeBSD
•added 2009/01/22 12:0 a.m.•27 views

tor -- unspecified memory corruption vulnerability

Secunia reports: A vulnerability with an unknown impact has been reported in Tor. The vulnerability is caused due to an unspecified error and can be exploited to trigger a heap corruption. No further information is currently available...

10CVSS2.6AI score0.03021EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/12/05 12:0 a.m.•27 views

twiki -- multiple vulnerabilities

Marc Schoenefeld and Steve Milner of RedHat SRT and Peter Allor of IBM ISS report: XSS vulnerability with URLPARAM variable SEARCH variable allows arbitrary shell command execution...

10CVSS6.6AI score0.0464EPSS
Exploits1References7
Total number of security vulnerabilities5000