Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2006/06/26 12:0 a.m.•27 views

mutt -- Remote Buffer Overflow Vulnerability

SecurityFocus reports: Mutt is prone to a remote buffer-overflow vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. This issue may allow remote attackers to execute arbitrary machin...

6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/04/21 12:0 a.m.•27 views

phpldapadmin -- Cross-Site Scripting and Script Insertion vulnerabilities

Secunia reports: phpLDAPadmin have some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks. 1 Some input isn't properly sanitised before being returned to the user. This can be exploited to...

2.6CVSS6.2AI score0.08221EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2006/04/07 12:0 a.m.•27 views

asterisk -- denial of service vulnerability, local system access

Emmanouel Kellenis reports a denial of service vulnerability within asterisk. The vulnerability is caused by a buffer overflow in "formatjpeg.c". A large JPEG image could trigger this bug, potentially allowing a local attacker to execute arbitrary code...

6.4CVSS6.9AI score0.0687EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2006/02/15 12:0 a.m.•27 views

mplayer -- heap overflow in the ASF demuxer

The Mplayer team reports: A potential buffer overflow was found in the ASF demuxer. Arbitrary remote code execution is possible under the user ID running the player when streaming an ASF file from a malicious server or local code execution under the user ID running the player if a malicious ASF...

7.5CVSS7.5AI score0.03946EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2006/02/14 12:0 a.m.•27 views

postgresql81-server -- SET ROLE privilege escalation

The PostgreSQL team reports: Due to inadequate validity checking, a user could exploit the special case that SET ROLE normally uses to restore the previous role setting after an error. This allowed ordinary users to acquire superuser status, for example...

6.5CVSS6.3AI score0.02945EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/11/10 12:0 a.m.•27 views

p5-Mail-SpamAssassin -- long message header denial of service

A Secunia Advisory reports: A vulnerability has been reported in SpamAssassin, which can be exploited by malicious people to cause a DoS Denial of Service. The vulnerability is caused due to the use of an inefficient regular expression in "/SpamAssassin/Message.pm" to parse email headers. This ca...

3.5AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2005/10/25 12:0 a.m.•27 views

sudo -- arbitrary command execution

Tavis Ormandy reports: The bash shell uses the value of the PS4 environment variable after expansion as a prefix for commands run in execution trace mode. Execution trace mode xtrace is normally set via bash's -x command line option or interactively by running "set -o xtrace". However, it may als...

4.6CVSS7AI score0.00624EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2005/09/16 12:0 a.m.•27 views

clamav -- arbitrary code execution and DoS vulnerabilities

Gentoo Linux Security Advisory reports: Clam AntiVirus is vulnerable to a buffer overflow in "libclamav/upx.c" when processing malformed UPX-packed executables. It can also be sent into an infinite loop in "libclamav/fsg.c" when processing specially-crafted FSG-packed executables. By sending a...

7.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2005/09/12 12:0 a.m.•28 views

X11 server -- pixmap allocation vulnerability

Allocating large pixmaps by a client can trigger an integer overflow in the X server, potentially leading to execution of arbitrary code with elevated root privileges...

5.1CVSS7.2AI score0.03923EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2005/08/23 12:0 a.m.•27 views

xinetd -- ignores user and group directives for TCPMUX services

xinetd would execute configured TCPMUX services without dropping privilege to match the service configuration allowing the service to run with same privilege as the xinetd process root...

7.6CVSS6.8AI score0.06391EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2005/05/04 12:0 a.m.•27 views

ethereal -- multiple protocol dissectors vulnerabilities

An Ethreal Security Advisories reports: An aggressive testing program as well as independent discovery has turned up a multitude of security issues Please reference CVE/URL list for details...

7.5CVSS6.4AI score0.07119EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2005/04/21 12:0 a.m.•27 views

kdelibs -- kimgio input validation errors

A KDE Security Advisory reports: kimgio contains a PCX image file format reader that does not properly perform input validation. A source code audit performed by the KDE security team discovered several vulnerabilities in the PCX and other image file format readers, some of them exploitable to...

7.5CVSS6.9AI score0.05427EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2005/04/02 12:0 a.m.•27 views

gaim -- remote DoS on receiving malformed HTML

The GAIM team reports: The gaimmarkupstriphtml function in Gaim 1.2.0, and possibly earlier versions, allows remote attackers to cause a denial of service application crash via a string that contains malformed HTML, which causes an out-of-bounds read...

5CVSS6.3AI score0.02323EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/02/05 12:0 a.m.•27 views

wu-ftpd -- remote globbing DoS vulnerability

An iDEFENSE Security Advisory reports: Remote exploitation of an input validation vulnerability in version 2.6.2 of WU-FPTD could allow for a denial of service of the system by resource exhaustion. The vulnerability specifically exists in the wufnmatch function in wufnmatch.c. When a pattern...

5CVSS6.2AI score0.05208EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2005/02/02 12:0 a.m.•27 views

enscript -- multiple vulnerabilities

Erik Sjölund discovered several issues in enscript: it suffers from several buffer overflows, quotes and shell escape characters are insufficiently sanitized in filenames, and it supported taking input from an arbitrary command pipe, with unwanted side effects...

7.5CVSS3.5AI score0.04476EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/01/30 12:0 a.m.•27 views

mod_python -- information leakage vulnerability

Mark J Cox reports: Graham Dumpleton discovered a flaw which can affect anyone using the publisher handle of the Apache Software Foundation modpython. The publisher handle lets you publish objects inside modules to make them callable via URL. The flaw allows a carefully crafted URL to obtain extr...

7.5CVSS6.2AI score0.06465EPSS
Exploits0
FreeBSD
FreeBSD
•added 2004/11/09 12:0 a.m.•27 views

unarj -- long filename buffer overflow

Ludwig Nussel has discovered a buffer overflow vulnerability in unarj's handling of long filenames which could potentially lead to execution of arbitrary code with the permissions of the user running unarj...

10CVSS7.1AI score0.07369EPSS
Exploits0
FreeBSD
FreeBSD
•added 2004/09/23 12:0 a.m.•27 views

CUPS -- local information disclosure

Certain methods of authenticated remote printing in CUPS can disclose user names and passwords in the log files. A workaround for this problem is to set more strict access permissions on the CUPS logfiles...

2.1CVSS6.3AI score0.00445EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2004/09/18 12:0 a.m.•27 views

powerdns -- DoS vulnerability

PowerDNS is vulnerable to a temporary denial-of-service vulnerability that can be triggered using a random stream of bytes...

2.2AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2004/09/05 12:0 a.m.•27 views

webmin -- insecure temporary file creation at installation time

The Webmin developers documented a security issue in the release notes for version 1.160: Fixed a security hole in the maketemp.pl script, used to create the /tmp/.webmin directory at install time. If an un-trusted user creates this directory before Webmin is installed, he could create in it a...

2.1CVSS6.3AI score0.00362EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/06/18 12:0 a.m.•27 views

Linux binary compatibility mode input validation error

A programming error in the handling of some Linux system calls may result in memory locations being accessed without proper validation. It may be possible for a local attacker to read and/or overwrite portions of kernel memory, resulting in disclosure of sensitive information or potential privile...

2.1CVSS5.9AI score0.00377EPSS
Exploits0
FreeBSD
FreeBSD
•added 2004/03/12 12:0 a.m.•27 views

tcpdump ISAKMP payload handling remote denial-of-service

Chad Loder has discovered vulnerabilities in tcpdump's ISAKMP protocol handler. During an audit to repair these issues, Bill Fenner discovered some related problems. These vulnerabilities may be used by an attacker to crash a running tcpdump' process. They can only be triggered if the -v' command...

6.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2004/02/01 12:0 a.m.•27 views

shmat reference counting bug

A programming error in the shmat2 system call can result in a shared memory segment's reference count being erroneously incremented. It may be possible to cause a shared memory segment to reference unallocated kernel memory, but remain valid. This could allow a local attacker to gain read or writ...

4.6CVSS6.3AI score0.00724EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2003/12/04 12:0 a.m.•27 views

Mathopd buffer overflow

Mathopd contains a buffer overflow in the preparereply function that may be remotely exploitable...

2.4AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2003/11/27 12:0 a.m.•27 views

ElGamal sign+encrypt keys created by GnuPG can be compromised

Any ElGamal sign+encrypt keys created by GnuPG contain a cryptographic weakness that may allow someone to obtain the private key. These keys should be considered unusable and should be revoked. The following summary was written by Werner Koch, GnuPG author: Phong Nguyen identified a severe bug in...

5CVSS6.2AI score0.02854EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2001/06/21 12:0 a.m.•27 views

eperl -- Remote code execution

David Madison reports: ePerl is a multipurpose Perl filter and interpreter program for Unix systems. The ePerl preprocessor contains an input validation error. The preprocessor allows foreign data to be "safely" included using the 'sinclude' directive. The problem occurs when a file referenced by...

7.5CVSS6.4AI score0.02798EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2025/12/08 12:0 a.m.•26 views

traefik -- Bypassing security controls via special characters

The traefik project reports: There is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backend using a matcher based on the path; if the request path contains an encoded restricted...

6.9CVSS6.9AI score0.00344EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2025/01/09 12:0 a.m.•26 views

qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 9 security bugs in Chromium: CVE-2024-12693: Out of bounds memory access in V8 CVE-2024-12694: Use after free in Compositing CVE-2025-0436: Integer overflow in Skia CVE-2025-0437: Out of bounds read in Metrics CVE-2025-0438: Stack buffer overflo...

8.8CVSS8.7AI score0.00453EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2024/10/24 12:0 a.m.•26 views

electron31 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-9121. Security: backported fix for CVE-2024-9122. Security: backported fix for CVE-2024-7025. Security: backported fix for CVE-2024-9369. Security: backported fix for CVE-2024-7965...

9.6CVSS9AI score0.17227EPSS
Exploits8References13
FreeBSD
FreeBSD
•added 2024/10/09 12:0 a.m.•26 views

Gitlab -- vulnerabilities

Gitlab reports: Run pipelines on arbitrary branches An attacker can impersonate arbitrary user SSRF in Analytics Dashboard Viewing diffs of MR with conflicts can be slow HTMLi in OAuth page Deploy Keys can push changes to an archived repository Guests can disclose project templates GitLab instanc...

9.6CVSS7.3AI score0.02093EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2024/09/26 12:0 a.m.•26 views

php -- Multiple vulnerabilities

php.net reports: CVE-2024-8926: CGI: Fixed bug GHSA-9pqp-7h25-4f32 Bypass of CVE-2024-4577, Parameter Injection Vulnerability. CVE-2024-8927: CGI: Fixed bug GHSA-94p6-54jq-9mwp cgi.forceredirect configuration is bypassable due to the environment variable collision. CVE-2024-9026: FPM: Fixed bug...

8.8CVSS10AI score0.03686EPSS
Exploits68References1
FreeBSD
FreeBSD
•added 2024/08/28 12:0 a.m.•26 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 4 security fixes: 351865302 High CVE-2024-7969: Type Confusion in V8. Reported by CFF of Topsec Alpha Team on 2024-07-09 360265320 High CVE-2024-8193: Heap buffer overflow in Skia. Reported by Renan Rios @hyhy100 on 2024-08-16 360533914 High...

8.8CVSS7.6AI score0.00474EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/08/07 12:0 a.m.•26 views

Gitlab -- Vulnerabilities

Gitlab reports: Privilege Escalation via LFS Tokens Granting Unrestricted Repository Access Cross project access of Security policy bot Advanced search ReDOS in highlight for code results Denial of Service via banzai pipeline Denial of service using adoc files ReDoS in RefMatcher when matching...

8.1CVSS7.3AI score0.00675EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2024/06/24 12:0 a.m.•26 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 5 security fixes: 342428008 High CVE-2024-6290: Use after free in Dawn. Reported by wgslfuzz on 2024-05-23 40942995 High CVE-2024-6291: Use after free in Swiftshader. Reported by Cassidy Kim@cassidy6564 on 2023-11-15 342545100 High CVE-2024-6292: Use...

8.8CVSS7.6AI score0.00546EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2024/06/12 12:0 a.m.•26 views

Gitlab -- Vulnerabilities

Gitlab reports: ReDoS in gomod dependency linker ReDoS in CI interpolation fix bypass ReDoS in Asana integration issue mapping when webhook is called XSS and content injection when viewing raw XHTML files on iOS devices Missing agentk request validation could cause KAS to panic...

6.5CVSS6.6AI score0.00575EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/23 12:0 a.m.•26 views

chromium -- security fix

Chrome Releases reports: This update includes 1 security fix: 341663589 High CVE-2024-5274: Type Confusion in V8. Reported by Clément Lecigne of Google's Threat Analysis Group and Brendon Tiszka of Chrome Security on 2024-05-20...

9.6CVSS7.1AI score0.1002EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2024/05/15 12:0 a.m.•26 views

electron29 -- setuid() does not affect libuv's internal io_uring

Electron developers report: This update fixes the following vulnerability: Backported fix for CVE-2024-22017...

7.3CVSS7.2AI score0.00893EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/09 12:0 a.m.•26 views

electron29 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-3914. Security: backported fix for CVE-2024-4558...

9.6CVSS7.4AI score0.01344EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2024/04/17 12:0 a.m.•26 views

clamav -- Possible crash in the HTML file parser that could cause a denial-of-service (DoS) condition

Błażej Pawłowski reports: A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An attacker could exploit this...

7.5CVSS7.2AI score0.01101EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/04 12:0 a.m.•26 views

forgejo -- multiple issues

The forgejo team reports: CVE-2024-24789: The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip implementations. This misalignment could be exploited to create an zip file with contents that vary depending on the implementation reading the...

5.5CVSS6.8AI score0.00446EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/03/24 12:0 a.m.•26 views

emacs -- multiple vulnerabilities

GNU Emacs developers report: Emacs 29.3 is an emergency bugfix release intended to fix several security vulnerabilities. Arbitrary Lisp code is no longer evaluated as part of turning on Org mode. This is for security reasons, to avoid evaluating malicious Lisp code. New buffer-local variable...

7.8CVSS7.5AI score0.01099EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/12/29 12:0 a.m.•26 views

p5-Spreadsheet-ParseExcel -- Remote Code Execution Vulnerability

Spreadsheet-ParseExcel reports: Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type eval "eval". Specifically, the...

7.8CVSS8AI score0.16832EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2023/12/12 12:0 a.m.•26 views

FreeBSD -- NFS client data corruption and kernel memory disclosure

Problem Description: In FreeBSD 13.2 and 14.0, the NFS client was optimized to improve the performance of IOAPPEND writes, that is, writes which add data to the end of a file and so extend its size. This uncovered an old bug in some routines which copy userspace data into the kernel. The bug also...

6.5CVSS6.8AI score0.00622EPSS
Exploits0
FreeBSD
FreeBSD
•added 2023/10/24 12:0 a.m.•26 views

OpenSSL -- potential loss of confidentiality

The OpenSSL team reports: Moderate severity: A bug has been identified in the processing of key and initialisation vector IV lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers...

7.5CVSS6.7AI score0.03332EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/10/03 12:0 a.m.•26 views

FreeBSD -- msdosfs data disclosure

Problem Description: In certain cases using the truncate or ftruncate system call to extend a file size populates the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes. Impact: A user with write access to files on a msdosfs file system may ...

6.5CVSS6.9AI score0.00535EPSS
Exploits0
FreeBSD
FreeBSD
•added 2023/09/29 12:0 a.m.•26 views

Remote Code Execution via web-accessible composer

Composer project reports: Description: Users publishing a composer.phar to a public web-accessible server where the composer.phar can be executed as a php file may be impacted if PHP also has registerargcargv enabled in php.ini. Workaround: Make sure registerargcargv is disabled in php.ini, and...

8.8CVSS7AI score0.0139EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/09/27 12:0 a.m.•26 views

xrdp -- unchecked access to font glyph info

xrdp team reports: Access to the font glyphs in xrdppainter.c is not bounds-checked. Since some of this data is controllable by the user, this can result in an out-of-bounds read within the xrdp executable. The vulnerability allows an out-of-bounds read within a potentially privileged process. On...

6.5CVSS6.5AI score0.0063EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2023/09/18 12:0 a.m.•26 views

Gitlab -- vulnerability

Gitlab reports: Attacker can abuse scan execution policies to run pipelines as another user...

6.8AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2023/08/30 12:0 a.m.•26 views

xrdp -- Improper handling of session establishment errors allows bypassing OS-level session restrictions

xrdp team reports: In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in session restrictions such as max concurrent sessions p...

6.5CVSS7AI score0.00728EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2023/07/01 12:0 a.m.•26 views

Django -- multiple vulnerabilities

Django reports: CVE-2023-36053: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator...

7.5CVSS6.9AI score0.02978EPSS
Exploits0References1
Total number of security vulnerabilities5000