Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2013/08/22 12:0 a.m.•23 views

FreeBSD -- Kernel memory disclosure in sctp(4)

Problem Description: When initializing the SCTP state cookie being sent in INIT-ACK chunks, a buffer allocated from the kernel stack is not completely initialized. Impact: Fragments of kernel memory may be included in SCTP packets and transmitted over the network. For each SCTP session, there are...

7.8CVSS8.8AI score0.02511EPSS
Exploits0
FreeBSD
FreeBSD
•added 2013/03/07 12:0 a.m.•23 views

mozilla -- use-after-free in HTML Editor

The Mozilla Project reports: MFSA 2013-29 Use-after-free in HTML Editor...

9.3CVSS6.6AI score0.06398EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2013/02/15 12:0 a.m.•23 views

dbus-glib -- privledge escalation

Sebastian Krahmer reports: A privilege escalation flaw was found in the way dbus-glib, the D-Bus add-on library to integrate the standard D-Bus library with the GLib thread abstraction and main loop, performed filtering of the message sender message source subject, when the NameOwnerChanged signa...

7.2CVSS6.5AI score0.0109EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2013/01/26 12:0 a.m.•23 views

tinc -- Buffer overflow

tinc-vpn.org reports: Drop packets forwarded via TCP if they are too big...

6.5CVSS6.5AI score0.60679EPSS
Exploits4
FreeBSD
FreeBSD
•added 2012/10/24 12:0 a.m.•23 views

DomainKeys Identified Mail (DKIM) Verifiers may inappropriately convey message trust

US-CERT reports: DomainKeys Identified Mail DKIM Verifiers may inappropriately convey message trust when messages are signed using test or small bit signing keys...

4AI score
Exploits0
FreeBSD
FreeBSD
•added 2012/08/30 12:0 a.m.•23 views

asterisk -- multiple vulnerabilities

Asterisk project reports: Asterisk Manager User Unauthorized Shell Access ACL rules ignored when placing outbound calls by certain IAX2 users...

6.5AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2012/07/09 12:0 a.m.•23 views

automake -- Insecure 'distcheck' recipe granted world-writable distdir

GNU reports: The recipe of the 'distcheck' target granted temporary world-write permissions on the extracted distdir. This introduced a locally exploitable race condition for those who run "make distcheck" with a non-restrictive umask e.g., 022 in a directory that was accessible by others. A...

4.4CVSS7.1AI score0.00474EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2012/04/29 12:0 a.m.•23 views

joomla -- Privilege Escalation

Joomla! reported a Core Privilege Escalation:: Inadequate checking leads to possible user privilege escalation...

3.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2012/03/15 12:0 a.m.•23 views

nginx -- potential information leak

nginx development team reports: Matthew Daley recently discovered a security problem which may lead to a disclosure of previously freed memory on specially crafted response from an upstream server, potentially resulting in sensitive information leak...

1.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2012/01/13 12:0 a.m.•23 views

isc-dhcp-server -- DoS in DHCPv6

ISC reports: Due to improper handling of a DHCPv6 lease structure, ISC DHCP servers that are serving IPv6 address pools AND using Dynamic DNS can encounter a segmentation fault error while updating lease status under certain conditions. The potential exists for this condition to be intentionally...

6.1CVSS6.2AI score0.03612EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/01/11 12:0 a.m.•23 views

WebCalendar -- Persistent XSS

tom reports, There is no sanitation on the input of the location variable allowing for persistent XSS...

4.3CVSS6.5AI score0.01693EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/12/10 12:0 a.m.•23 views

PuTTY -- Password vulnerability

Simon Tatham reports: PuTTY 0.62 fixes a security issue present in 0.59, 0.60 and 0.61. If you log in using SSH-2 keyboard-interactive authentication which is the usual method used by modern servers to request a password, the password you type was accidentally kept in PuTTY's memory for the rest ...

2.1CVSS6.4AI score0.00408EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2011/05/28 12:0 a.m.•23 views

Subversion -- multiple vulnerabilities

Subversion team reports: Subversion's moddavsvn Apache HTTPD server module will dereference a NULL pointer if asked to deliver baselined WebDAV resources. This can lead to a DoS. An exploit has been tested, and tools or users have been observed triggering this problem in the wild. Subversion's...

5CVSS6.5AI score0.08483EPSS
Exploits2
FreeBSD
FreeBSD
•added 2010/12/10 12:0 a.m.•23 views

php -- corruption of $GLOBALS and $this variables via extract() method

Off-by-one error in the sanity validator for the extract method allowed attackers to replace the values of $GLOBALS and $this when mode EXTROVERWRITE was used...

5.1AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2010/10/18 12:0 a.m.•23 views

Axis2 -- Cross-site scripting (XSS) vulnerability

Apache Axis2 reports: Apache Axis2 1.7.3 is a security release that contains a fix for CVE-2010-3981. That security vulnerability affects the admin console that is part of the Axis2 Web application and was originally reported for SAP BusinessObjects which includes a version of Axis2. That report...

4.3CVSS6.5AI score0.00894EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2010/09/14 12:0 a.m.•23 views

openx -- remote code execution vulnerability

The OpenX project reported: It has been brought to our attention that there is a vulnerability in the 2.8 downloadable version of OpenX that can result in a server running the downloaded version of OpenX being compromised. This vulnerability exists in the file upload functionality and allows...

5AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2010/05/17 12:0 a.m.•23 views

kvirc -- multiple vulnerabilities

Two security vulnerabilities have been discovered: Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have unspecified impact and remote attack vectors. Directory traversal vulnerability in the DCC functionality in KVIrc 3.4 and 4.0 allows remote attackers to...

10CVSS7.2AI score0.04047EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2010/03/07 12:0 a.m.•23 views

spamass-milter -- remote command execution vulnerability

The spamassassin milter plugin contains a vulnerability that can allow remote attackers to execute commands on affected systems. The vulnerability can be exploited trough a special-crafted email header when the plugin was started with the '-x' expand flag...

9.3CVSS6.9AI score0.08578EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2010/02/08 12:0 a.m.•23 views

gnome-screensaver -- Multiple monitor hotplug issues

Ray Strode reports: Under certain circumstances it is possible to circumvent the security of screen locking functionality of gnome-screensaver by changing the systems physical monitor configuration. gnome-screensaver can lose its keyboard grab when locked, exposing the system to intrusion by addi...

7.2CVSS6.4AI score0.00419EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2010/02/04 12:0 a.m.•23 views

fetchmail -- heap overflow on verbose X.509 display

Matthias Andree reports: In verbose mode, fetchmail prints X.509 certificate subject and issuer information to the user, and counts and allocates a malloc buffer for that purpose. If the material to be displayed contains characters with high bit set and the platform treats the "char" type as...

6.8CVSS6.4AI score0.02508EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/09/17 12:0 a.m.•23 views

drupal -- multiple vulnerabilities

Drupal Team reports: The core OpenID module does not correctly implement Form API for the form that allows one to link user accounts with OpenID identifiers. A malicious user is therefore able to use cross site request forgeries to add attacker controlled OpenID identities to existing accounts...

1.6AI score
Exploits0References6
FreeBSD
FreeBSD
•added 2009/08/06 12:0 a.m.•23 views

subversion -- heap overflow vulnerability

A Subversion Security Advisory reports: Subversion clients and servers have multiple heap overflow issues in the parsing of binary deltas. This is related to an allocation vulnerability in the APR library used by Subversion. Clients with commit access to a vulnerable server can cause a remote hea...

8.5CVSS7.5AI score0.05112EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/06/30 12:0 a.m.•23 views

apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)

Apache ChangeLog reports: Integer overflow in the approxysendfb function in proxy/proxyutil.c in modproxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service daemon crash or possibly execute arbitrary code via a large chunk size th...

6.8CVSS6.2AI score0.43421EPSS
Exploits2References4
FreeBSD
FreeBSD
•added 2009/05/31 12:0 a.m.•23 views

cscope -- buffer overflow

SecurityFocus reports: Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions...

9.3CVSS7AI score0.07496EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/05/13 12:0 a.m.•23 views

drupal -- cross-site scripting

The Drupal Security Team reports: When outputting user-supplied data Drupal strips potentially dangerous HTML attributes and tags or escapes characters which have a special meaning in HTML. This output filtering secures the site against cross site scripting attacks via user input. Certain byte...

5.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/05/04 12:0 a.m.•23 views

openfire -- Openfire No Password Changes Security Bypass

Secunia reports: A vulnerability has been reported in Openfire which can be exploited by malicious users to bypass certain security restrictions. The vulnerability is caused due to Openfire not properly respecting the no password changes setting which can be exploited to change passwords by sendi...

6.5CVSS6.5AI score0.012EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2009/02/28 12:0 a.m.•23 views

mod_perl -- cross-site scripting

Secunia reports: Certain input passed to the "Apache::Status" and "Apache2::Status" modules is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected website...

2.6CVSS9.5AI score0.29638EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2008/12/19 12:0 a.m.•23 views

netatalk -- arbitrary command execution in papd daemon

Secunia reports: A vulnerability has been reported in Netatalk, which potentially can be exploited by malicious users to compromise a vulnerable system. The vulnerability is caused due to the papd daemon improperly sanitising several received parameters before passing them in a call to popen. Thi...

9.3CVSS7AI score0.04526EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2008/12/16 12:0 a.m.•23 views

imap-uw -- imap c-client buffer overflow

SANS reports: The University of Washington IMAP library is a library implementing the IMAP mail protocol. University of Washington IMAP is exposed to a buffer overflow issue that occurs due to a boundary error within the rfc822outputchar function in the c-client library. The University of...

4.3CVSS6.8AI score0.01764EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2008/10/29 12:0 a.m.•23 views

imap-uw -- local buffer overflow vulnerabilities

SANS reports: University of Washington "tmail" and "dmail" are mail deliver agents. "tmail" and "dmail" are exposed to local buffer overflow issues because they fail to perform adequate boundary checks on user-supplied data...

4.3CVSS6.4AI score0.01764EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2007/11/20 12:0 a.m.•23 views

liveMedia -- DoS vulnerability

The live555 development team reports: Fixed a bounds-checking error in "parseRTSPRequestString" caused by an int vs. unsigned problem. The function which handles the incoming queries from the clients is affected by a vulnerability which allows an attacker to crash the server remotely using the...

7.1CVSS6.3AI score0.04412EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2007/07/26 12:0 a.m.•23 views

drupal -- Cross site request forgeries

The Drupal Project reports: Several parts in Drupal core are not protected against cross site request forgeries due to inproper use of the Forms API, or by taking action solely on GET requests. Malicious users are able to delete comments and content revisions and disable menu items by enticing a...

3.4AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2007/06/08 12:0 a.m.•23 views

c-ares -- DNS Cache Poisoning Vulnerability

Secunia reports: The vulnerability is caused due to predictable DNS "Transaction ID" field in DNS queries and can be exploited to poison the DNS cache of an application using the library if a valid ID is guessed...

7.5CVSS6.4AI score0.01402EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2007/05/25 12:0 a.m.•23 views

Pubcookie Login Server -- XSS vulnerability

Nathan Dors, Pubcookie Project reports: A new non-persistent XSS vulnerability was found in the Pubcookie login server's compiled binary "index.cgi" CGI program. The CGI program mishandles untrusted data when printing responses to the browser. This makes the program vulnerable to carefully crafte...

6.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/12/10 12:0 a.m.•23 views

tdiary -- injection vulnerability

An undisclosed eRuby injection vulnerability had been discovered in tDiary...

1.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/11/27 12:0 a.m.•23 views

gnupg -- buffer overflow

Werner Koch reports: When running GnuPG interactively, special crafted messages may be used to crash gpg or gpg2. Running gpg in batch mode, as done by all software using gpg as a backend e.g. mailers, is not affected by this bug. Exploiting this overflow seems to be possible. gpg-agent, gpgsm,...

4.1AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/11/10 12:0 a.m.•23 views

proftpd -- Remote Code Execution Vulnerability

FrSIRT reports: A vulnerability has been identified in ProFTPD, which could be exploited by attackers to cause a denial of service or execute arbitrary commands. This flaw is due to a buffer overflow error in the "main.c" file where the "cmdbufsize" size of the buffer used to handle FTP commands...

5.3AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/09/06 12:0 a.m.•23 views

dircproxy -- remote denial of service

Securiweb reports: dircproxy allows remote attackers to cause a denial of service segmentation fault via an ACTION command without a parameter, which triggers a NULL pointer dereference, as demonstrated using a blank /me message from irssi...

5CVSS6.5AI score0.01694EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2006/08/21 12:0 a.m.•23 views

zope -- restructuredText "csv_table" Information Disclosure

Secunia reports: A vulnerability has been reported in Zope, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to an error in the use of the docutils module to parse and render "restructured" text. This can be exploited to...

5CVSS6.3AI score0.02378EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2006/08/17 12:0 a.m.•23 views

horde -- Phishing and Cross-Site Scripting Vulnerabilities

Secunia reports: Some vulnerabilities have been reported in Horde, which can be exploited by malicious people to conduct phishing and cross-site scripting attacks. Input passed to the "url" parameter in index.php isn't properly verified before it is being used to include an arbitrary web site in ...

0.1AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2006/06/05 12:0 a.m.•23 views

dokuwiki -- spellchecker remote PHP code execution

Stefan Esser reports: During the evaluation of DokuWiki for a german/korean wiki of mine a flaw in DokuWiki's spellchecker was discovered, that allows injecting arbitrary PHP commands, by requesting a spellcheck on PHP commands in 'complex curly syntax'. Because the spellchecker is written as par...

2.8AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2006/05/20 12:0 a.m.•23 views

phpmyadmin -- XSRF vulnerabilities

phpMyAdmin security team reports: It was possible to inject arbitrary SQL commands by forcing an authenticated user to follow a crafted link. Such issue is quite common in many PHP applications and users should take care what links they follow. We consider these vulnerabilities to be quite...

7.5CVSS7.1AI score0.01462EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2006/04/21 12:0 a.m.•23 views

zgv, xzgv -- heap overflow vulnerability

Gentoo reports: Andrea Barisani of Gentoo Linux discovered xzgv and zgv allocate insufficient memory when rendering images with more than 3 output components, such as images using the YCCK or CMYK colour space. When xzgv or zgv attempt to render the image, data from the image overruns a heap...

7.5CVSS6.8AI score0.04073EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2006/04/19 12:0 a.m.•23 views

coppermine -- "file" Local File Inclusion Vulnerability

Secunia reports: Coppermine Photo Gallery have a vulnerability, which can be exploited by malicious people to disclose sensitive information. Input passed to the "file" parameter in "index.php" isn't properly verified, before it is used to include files. This can be exploited to include arbitrary...

5CVSS6.3AI score0.03625EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2006/04/18 12:0 a.m.•23 views

fswiki -- XSS vulnerability

JVN reports: FreeStyleWiki has XSS vulnerability...

1.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2006/04/03 12:0 a.m.•23 views

openvpn -- LD_PRELOAD code execution on client through malicious or compromised server

Hendrik Weimer reports: OpenVPN clients are a bit too generous when accepting configuration options from a server. It is possible to transmit environment variables to client-side shell scripts. There are some filters in place to prevent obvious nonsense, however they don't catch the good old...

9CVSS6.4AI score0.03021EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2006/03/20 12:0 a.m.•23 views

jabberd -- SASL Negotiation Denial of Service Vulnerability

Secunia reports: A vulnerability has been reported in jabberd, which can be exploited by malicious people to cause a DoS Denial of Service. The vulnerability is caused due to an error within the handling of SASL negotiation. This can be exploited to cause a crash by sending a "response" stanza...

5CVSS4.9AI score0.02826EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2006/02/01 12:0 a.m.•23 views

FreeBSD -- Infinite loop in SACK handling

Problem description: When insufficient memory is available to handle an incoming selective acknowledgement, the TCP/IP stack may enter an infinite loop. Impact: By opening a TCP connection and sending a carefully crafted series of packets, an attacker may be able to cause a denial of service...

5CVSS6.4AI score0.02809EPSS
Exploits0
FreeBSD
FreeBSD
•added 2006/01/12 12:0 a.m.•23 views

tor -- malicious tor server can locate a hidden service

Roger Dingledine reports: If you offer a Tor hidden service, an adversary who can run a fast Tor server and who knows some basic statistics can find the location of your hidden service in a matter of minutes to hours...

5CVSS6.3AI score0.02893EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/12/18 12:0 a.m.•23 views

rssh -- privilege escalation vulnerability

Pizzashack reports: Max Vozeler has reported a problem whereby rssh can allow users who have shell access to systems where rssh is installed and rsshchroothelper is installed SUID to gain root access to the system, due to the ability to chroot to arbitrary locations. There are a lot of potentiall...

7.2CVSS6.8AI score0.00381EPSS
Exploits0References1
Total number of security vulnerabilities5000