Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2006/01/11 12:0 a.m.•26 views

cpio -- multiple vulnerabilities

Problem description: A number of issues has been discovered in cpio: When creating a new file, cpio closes the file before setting its permissions. CVE-2005-1111 When extracting files cpio does not properly sanitize file names to filter out ".." components, even if the --no-absolute-filenames...

4.7CVSS7AI score0.01875EPSS
Exploits1
FreeBSD
FreeBSD
•added 2005/12/19 12:0 a.m.•26 views

fetchmail -- null pointer dereference in multidrop mode with headerless email

The fetchmail team reports: Fetchmail contains a bug that causes an application crash when fetchmail is configured for multidrop mode and the upstream mail server sends a message without headers. As fetchmail does not record this message as "previously fetched", it will crash with the same messag...

7.8CVSS6.3AI score0.03641EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2005/12/13 12:0 a.m.•26 views

mantis -- "view_filters_page.php" cross site scripting vulnerability

r0t reports: Mantis contains a flaw that allows a remote cross site scripting attack. This flaw exists because input passed to "targetfield" parameter in "viewfilterspage.php" is not properly sanitised before being returned to the user. This could allow a user to create a specially crafted URL th...

4.3CVSS6.8AI score0.02325EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2005/12/11 12:0 a.m.•26 views

mnemo -- Cross site scripting vulnerabilities in several of the notepad name and note data fields

Announce of Mnemo H3 2.0.3 final: This 2.0.3 is a security release that fixes cross site scripting vulnerabilities in several of the notepad name and note data fields. None of the vulnerabilities can be exploited by unauthenticated users; however, we strongly recommend that all users of Mnemo 2.0...

2.7AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2005/10/14 12:0 a.m.•26 views

abiword, koffice -- stack based buffer overflow vulnerabilities

Chris Evans reports that AbiWord is vulnerable to multiple stack-based buffer overflow vulnerabilities. This is caused by improper checking of the user-supplied data before it is being copied to an too small buffer. The vulnerability is triggered when someone is importing RTF files...

5.1CVSS6.9AI score0.04101EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2005/10/09 12:0 a.m.•26 views

zope -- expose RestructuredText functionality to untrusted users

A Zope Hotfix Alert reports: This hotfix resolves a security issue with docutils. Affected are possibly all Zope instances that expose RestructuredText functionalies to untrusted users through the web...

7.5CVSS6.4AI score0.03046EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/09/08 12:0 a.m.•26 views

firefox & mozilla -- buffer overflow vulnerability

Tom Ferris reports: A buffer overflow vulnerability exists within Firefox version 1.0.6 and all other prior versions which allows for an attacker to remotely execute arbitrary code on an affected host. The problem seems to be when a hostname which has all dashes causes the NormalizeIDN call in...

7.5CVSS6.4AI score0.21112EPSS
Exploits2References4
FreeBSD
FreeBSD
•added 2005/08/11 12:0 a.m.•26 views

tor -- diffie-hellman handshake flaw

A tor advisory reports Tor clients can completely loose anonymity, confidentiality, and data integrity if the first Tor server in their path is malicious. Specifically, if the Tor client chooses a malicious Tor server for her first hop in the circuit, that server can learn all the keys she...

5CVSS6.5AI score0.01247EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/06/27 12:0 a.m.•26 views

WebCalendar -- unauthorized access vulnerability

SecurityFocus reports that WebCalendar is affected by an unauthorized access vulnerability. The vulnerability is caused by improper checking of the authentication mechanism before access is being permitted to the "assistantedit.php" file...

7.5CVSS6.4AI score0.01432EPSS
Exploits0
FreeBSD
FreeBSD
•added 2005/06/16 12:0 a.m.•26 views

opera -- redirection cross-site scripting vulnerability

A Secunia Advisory reports: Secunia Research has discovered a vulnerability in Opera, which can be exploited by malicious people to conduct cross-site scripting attacks against users. The vulnerability is caused due to input not being sanitised, when Opera generates a temporary page for displayin...

2.4AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2005/06/15 12:0 a.m.•26 views

squirrelmail -- Several cross site scripting vulnerabilities

A SquirrelMail Security Advisory reports: Several cross site scripting XSS vulnerabilities have been discovered in SquirrelMail versions 1.4.0 - 1.4.4. The vulnerabilities are in two categories: the majority can be exploited through URL manipulation, and some by sending a specially crafted email ...

4.3CVSS5.9AI score0.0183EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/05/20 12:0 a.m.•26 views

gedit -- format string vulnerability

Yan Feng reports a format string vulnerability in gedit. This vulnerability could cause a denial of service with a binary file that contains format string characters within the filename. It had been reported that web browsers and email clients can be configured to provide a filename as an argumen...

2.6CVSS6.2AI score0.07655EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/04/10 12:0 a.m.•26 views

rsnapshot -- local privilege escalation

An rsnapshot Advisory reports: The copysymlink subroutine in rsnapshot incorrectly changes file ownership on the files pointed to by symlinks, not on the symlinks themselves. This would allow, under certain circumstances, an arbitrary user to take ownership of a file on the main filesystem...

4.6CVSS6.4AI score0.0036EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/04/04 12:0 a.m.•26 views

sharutils -- unshar insecure temporary file creation

An Ubuntu Advisory reports: Joey Hess discovered that "unshar" created temporary files in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program...

2.1CVSS6.4AI score0.00362EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/02/28 12:0 a.m.•26 views

postnuke -- SQL injection vulnerabilities

Two separate SQL injection vulnerabilities have been identified in the PostNuke PHP content management system. An attacker can use this vulnerability to potentially insert executable PHP code into the content management system to view all files within the PHP scope, for instance. Various other SQ...

7.8AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2005/01/25 12:0 a.m.•26 views

bind9 -- denial of service

Problem description A DNSSEC-related validator function in BIND 9.3.0 contains an inappropriate internal consistency test. When this test is triggered, named8 will exit. Impact On systems with DNSSEC enabled, a remote attacker may be able to inject a specially crafted packet that will cause the...

4.3CVSS6.3AI score0.06354EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2005/01/21 12:0 a.m.•26 views

kdelibs -- insecure temporary file creation

Davide Madrisan reports: The dcopidlng' script in the KDE library package kdelibs-3.3.2/dcop/dcopidlng/dcopidlng creates temporary files in a unsecure manner. Note: dcopidlng is only used at build time, so only users installing KDE are vulnerable, not users already running KDE...

2.1CVSS6.4AI score0.00412EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2005/01/11 12:0 a.m.•26 views

xshisen -- local buffer overflows

Steve Kemp has found buffer overflows in the handling of the command line flag -KCONV and the XSHISENLIB environment variable. Ulf Härnhammer has detected an unbounded copy from the GECOS field to a char array. All overflows can be exploited to gain group games privileges...

6.8AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2005/01/04 12:0 a.m.•26 views

imap-uw -- authentication bypass when CRAM-MD5 is enabled

The CRAM-MD5 authentication support of the University of Washington IMAP and POP3 servers contains a vulnerability that may allow an attacker to bypass authentication and impersonate arbitrary users. Only installations with CRAM-MD5 support configured are affected...

7.5CVSS6.7AI score0.05091EPSS
Exploits0
FreeBSD
FreeBSD
•added 2004/12/17 12:0 a.m.•26 views

tiff -- directory entry count integer overflow vulnerability

In an iDEFENSE Security Advisory infamous41md reports: Remote exploitation of a heap-based buffer overflow vulnerability within the LibTIFF package could allow attackers to execute arbitrary code. The vulnerability specifically exists due to insufficient validation of user-supplied data when...

10CVSS2.3AI score0.14972EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2004/12/15 12:0 a.m.•26 views

mpg123 -- playlist processing buffer overflow vulnerability

A buffer overflow vulnerability exists in the playlist processing of mpg123. A specially crafted playlist entry can cause a stack overflow that can be used to inject arbitrary code into the mpg123 process. Note that a malicious playlist, demonstrating this vulnerability, was released by the bug...

10CVSS5.5AI score0.14458EPSS
Exploits1References4
FreeBSD
FreeBSD
•added 2004/11/11 12:0 a.m.•26 views

cscope -- buffer overflow vulnerabilities

Jason Duell reports: Cscope contains an alarming number of buffer overflow vulnerabilities. By a rough count, there are at least 48 places where we blindly sprintf a file name into a fixed-length buffer of size PATHLEN without checking to see if the file's name is = PATHLEN. We do similar things...

6.9CVSS6AI score0.01733EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2004/10/19 12:0 a.m.•27 views

ghostscript -- insecure temporary file creation vulnerability

Ghostscript is affected by an insecure temporary file creation vulnerability. This issue is likely due to a design error that causes the application to fail to verify the existence of a file before writing to it. An attacker may leverage this issue to overwrite arbitrary files with the privileges...

7.2CVSS6.4AI score0.00474EPSS
Exploits0
FreeBSD
FreeBSD
•added 2004/10/19 12:0 a.m.•26 views

gaim -- buffer overflow in MSN protocol support

Due to a buffer overflow in the MSN protocol support for gaim 0.79 to 1.0.1, it is possible for remote clients to do a denial-of-service attack on the application. This is caused by an unbounded copy operation, which writes to the wrong buffer...

10CVSS6.9AI score0.06862EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/10/15 12:0 a.m.•26 views

egroupware -- arbitrary file download in JiNN

eGroupWare contains a bug in the JiNN component that allows a remote attacker to download arbitrary files...

2.5AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2004/09/30 12:0 a.m.•26 views

groff -- groffer uses temporary files unsafely

The groffer script in the groff package 1.18 and later versions allows local users to overwrite files via a symlink attack on temporary files...

2.1CVSS6.1AI score0.00377EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/09/30 12:0 a.m.•26 views

samba -- remote file disclosure

According to a Samba Team security notice: A security vulnerability has been located in Samba 2.2.x = 2.2.11 and Samba 3.0.x = 3.0.5. A remote attacker may be able to gain access to files which exist outside of the share's defined path. Such files must still be readable by the account used for th...

7.5CVSS5.8AI score0.04887EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2004/09/19 12:0 a.m.•26 views

getmail -- symlink vulnerability during maildir delivery

David Watson reports a symlink vulnerability in getmail. If run as root not the recommended mode of operation, a local user may be able to cause getmail to write files in arbitrary directories via a symlink attack on subdirectories of the maildir...

2.1CVSS6.2AI score0.00392EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/07/06 12:0 a.m.•26 views

multiple vulnerabilities in ethereal

Issues have been discovered in multiple protocol dissectors...

5CVSS6.7AI score0.17961EPSS
Exploits3References5
FreeBSD
FreeBSD
•added 2004/06/19 12:0 a.m.•26 views

rssh -- file name disclosure bug

rssh expands command line paramters before invoking chroot. This could result in the disclosure to the client of file names outside of the chroot directory. A posting by the rssh author explains: The cause of the problem identified by Mr. McCaw is that rssh expanded command-line arguments prior t...

5CVSS6.3AI score0.01409EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2004/03/04 12:0 a.m.•26 views

oftpd denial-of-service vulnerability (PORT command)

Philippe Oechslin reported a denial-of-service vulnerability in oftpd. The oftpd server can be crashed by sending a PORT command containing an integer over 8 bits long over 255...

5CVSS6.5AI score0.01798EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2004/02/23 12:0 a.m.•26 views

Darwin Streaming Server denial-of-service vulnerability

An attacker can cause an assertion to trigger by sending a long User-Agent field in a request...

5CVSS6.3AI score0.03474EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2003/12/11 12:0 a.m.•26 views

lftp HTML parsing vulnerability

A buffer overflow exists in lftp which may be triggered when requesting a directory listing from a malicious server over HTTP...

7.5CVSS6.8AI score0.13677EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2003/10/16 12:0 a.m.•26 views

fetchmail -- denial-of-service vulnerability

Dave Jones discovered a denial-of-service vulnerability in fetchmail. An email message containing a very long line could cause fetchmail to segfault due to missing NUL termination in transact.c. Eric Raymond decided not to mention this issue in the release notes for fetchmail 6.2.5, but it was...

5CVSS6.3AI score0.01943EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2026/05/13 12:0 a.m.•25 views

nginx-devel -- multiple vulnerabilities

The nginx project reports: nginx 1.31.0 fixes multiple security issues affecting HTTP/2 proxying, rewrite handling, SCGI/uWSGI response handling, charset conversion, HTTP/3 connection migration, and OCSP resolver response processing...

9.2CVSS6AI score0.61469EPSS
Exploits41References2
FreeBSD
FreeBSD
•added 2025/12/08 12:0 a.m.•25 views

traefik -- Bypassing security controls via special characters

The traefik project reports: There is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backend using a matcher based on the path; if the request path contains an encoded restricted...

6.9CVSS6.9AI score0.00344EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2025/05/21 12:0 a.m.•25 views

Gitlab -- vulnerabilities

Gitlab reports: Unprotected large blob endpoint in GitLab allows Denial of Service Improper XPath validation allows modified SAML response to bypass 2FA requirement A Discord webhook integration may cause DoS Unbounded Kubernetes cluster tokens may lead to DoS Unvalidated notes position may lead ...

7.5CVSS6.7AI score0.00484EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2025/05/17 12:0 a.m.•25 views

firefox -- out-of-bounds read/write

[email protected] reports: An attacker was able to perform an out-of-bounds read or write on a JavaScript object by confusing array index sizes...

9.8CVSS8.6AI score0.08917EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2024/11/27 12:0 a.m.•25 views

zabbix -- SQL injection in user.get API

[email protected] reports: A non-admin user account on the Zabbix frontend with the default User role, or with any other role that gives API access can exploit this vulnerability. An SQLi exists in the CUser class in the addRelatedObjects function, this function is being called from the CUser.g...

9.9CVSS7.3AI score0.78831EPSS
Exploits13References1
FreeBSD
FreeBSD
•added 2024/08/21 12:0 a.m.•25 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 38 security fixes: 358296941 High CVE-2024-7964: Use after free in Passwords. Reported by Anonymous on 2024-08-08 356196918 High CVE-2024-7965: Inappropriate implementation in V8. Reported by TheDog on 2024-07-30 355465305 High CVE-2024-7966: Out of...

9.6CVSS8.4AI score0.19272EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2024/03/20 12:0 a.m.•25 views

jose -- DoS vulnerability

[email protected] reports: latchset jose through version 11 allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...

7.5CVSS6.9AI score0.01383EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2024/02/06 12:0 a.m.•25 views

Libgit2 -- multiple vulnerabilities

Git community reports: A bug in gitrevparsesingle is fixed that could have caused the function to enter an infinite loop given well-crafted inputs, potentially causing a Denial of Service attack in the calling application A bug in gitrevparsesingle is fixed that could have caused the function to...

9.8CVSS7.1AI score0.01546EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/11/29 12:0 a.m.•25 views

slurm-wlm -- Several security issues

Slurm releases notes: Description CVE-2023-49933 through CVE-2023-49938 Slurm versions 23.11.1, 23.02.7, 22.05.11 are now available and address a number of recently-discovered security issues. They've been assigned CVE-2023-49933 through CVE-2023-49938...

9.8CVSS7.4AI score0.01386EPSS
Exploits0
FreeBSD
FreeBSD
•added 2023/10/20 12:0 a.m.•25 views

sdl2_sound -- multiple vulnerabilities

GitHub Security Lab reports: stbimage.h and stbvorbis libraries contain several memory access violations of different severity Wild address read in stbigifloadnext GHSL-2023-145. Multi-byte read heap buffer overflow in stbiverticalflip GHSL-2023-146. Disclosure of uninitialized memory in...

7.8CVSS7.5AI score0.0056EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/09/27 12:0 a.m.•25 views

Phishing through a login page malicious URL in GLPI

[email protected] reports: GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. The lack of path filtering on the GLPI URL may allow an attacker t...

5.4CVSS7.2AI score0.00417EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/08/07 12:0 a.m.•25 views

krb5 -- Double-free in KDC TGS processing

The MIT krb5 Team reports: When issuing a ticket for a TGS renew or validate request, copy only the server field from the outer part of the header ticket to the new ticket. Copying the whole structure causes the encpart pointer to be aliased to the header ticket until krb5encrypttktpart is called...

8.8CVSS7.4AI score0.01229EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/04/26 12:0 a.m.•25 views

cloud-init -- sensitive data exposure in cloud-init logs

[email protected] reports: Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege...

5.5CVSS6.1AI score0.00263EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/04/03 12:0 a.m.•25 views

py39-configobj -- vulnerable to Regular Expression Denial of Service

DarkTinia reports: All versions of the package configobj are vulnerable to Regular Expression Denial of Service ReDoS via the validate function, using .+?.. Note: This is only exploitable in the case of a developer, putting the offending value in a server side configuration file...

5.9CVSS5.9AI score0.01259EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2022/09/23 12:0 a.m.•25 views

Django -- multiple vulnerabilities

Django reports: CVE-2022-41323: Potential denial-of-service vulnerability in internationalized URLs...

7.5CVSS2.1AI score0.0272EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/04/11 12:0 a.m.•25 views

Nextcloud Calendar -- SMTP Command Injection

reports: SMTP Command Injection in Appointment Emails via Newlines: as newlines and special characters are not sanitized in the email value in the JSON request, a malicious attacker can inject newlines to break out of the RCPT TO: SMTP command and begin injecting arbitrary SMTP commands...

9.8CVSS7.4AI score0.32348EPSS
Exploits0References1
Total number of security vulnerabilities5000