Lucene search
K
FreebsdMost viewed

6583 matches found

FreeBSD
FreeBSD
•added 2019/05/30 12:0 a.m.•21 views

ntp -- Multiple vulnerabilities

nwtime.org reports: Three ntp vulnerabilities, Depending on configuration, may have little impact up to termination of the ntpd process. NTP Bug 3610: Processcontrol should exit earlier on short packets. On systems that override the default and enable ntpdc mode 7 fuzz testing detected that a sho...

0.3AI score
Exploits0
FreeBSD
FreeBSD
•added 2019/03/12 12:0 a.m.•21 views

tcpreplay -- Multiple vulnerabilities

fklassen on Github reports: This release fixes the following security issues: memory access in dochecksum NULL pointer dereference getlayer4v6 NULL pointer dereference getipv6l4proto...

7.8CVSS1.6AI score0.01317EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2019/01/04 12:0 a.m.•21 views

gitea -- insufficient privilege check

The Gitea project reports: Security Prevent DeleteFilePost doing arbitrary deletion...

3.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2019/01/02 12:0 a.m.•21 views

uriparser -- Out-of-bounds read

Upstream project reports: Out-of-bounds read in uriParseEx for incomplete URIs with IPv6 addresses with embedded IPv4 address, e.g. "//::44.1"; mitigated if passed parameter afterLast points to readable memory containing a '\0' byte...

2.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2018/07/22 12:0 a.m.•21 views

Fix a buffer overflow in the tiff reader

libvips reports: A buffer overflow was found and fixed in the libvips code...

3.4AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2018/07/13 12:0 a.m.•21 views

AccountsService -- Insufficient path check in user_change_icon_file_authorized_cb()

NVD reports: Directory Traversal with ../ sequences occurs in AccountsService before 0.6.50 because of an insufficient path check in userchangeiconfileauthorizedcb in user.c...

6.5CVSS4.1AI score0.03086EPSS
Exploits1References6
FreeBSD
FreeBSD
•added 2018/02/16 12:0 a.m.•21 views

Bugzilla security issues

Bugzilla Security Advisory A CSRF vulnerability in report.cgi would allow a third-party site to extract confidential information from a bug the victim had access to...

8.8CVSS8.4AI score0.00504EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/10/28 12:0 a.m.•21 views

bchunk -- heap-based buffer overflow (with invalid free) and crash

Mitre reports: bchunk 1.2.0 and 1.2.1 is vulnerable to a heap-based buffer overflow with a resultant invalid free and crash when processing a malformed CUE .cue file...

5.5CVSS5.9AI score0.01EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/09/11 12:0 a.m.•21 views

Multiple exploitable heap-based buffer overflow vulnerabilities exists in FreeXL 1.0.3

Cisco TALOS reports: An exploitable heap based buffer overflow vulnerability exists in the readbiffnextrecord function of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this...

8.8CVSS9.3AI score0.03313EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2017/03/15 12:0 a.m.•21 views

drupal8 -- multiple vulnerabilities

Drupal Security Team reports: CVE-2017-6377: Editor module incorrectly checks access to inline private files CVE-2017-6379: Some admin paths were not protected with a CSRF token CVE-2017-6381: Remote code execution...

8.1CVSS8AI score0.03901EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/11/13 12:0 a.m.•21 views

teeworlds -- Remote code execution

Teeworlds project reports: Attacker controlled memory-writes and possibly arbitrary code execution on the client, abusable by any server the client joins...

4.1AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2016/07/18 12:0 a.m.•21 views

Multiple ports -- Proxy HTTP header vulnerability (httpoxy)

httpoxy.org reports: httpoxy is a set of vulnerabilities that affect application code running in CGI, or CGI-like environments. It comes down to a simple namespace conflict:. RFC 3875 CGI puts the HTTP Proxy header from a request into the environment variables as HTTPPROXY HTTPPROXY is a popular...

0.7AI score0.55724EPSS
Exploits0References7
FreeBSD
FreeBSD
•added 2016/06/06 12:0 a.m.•21 views

gnutls -- file overwrite by setuid programs

gnutls.org reports: Setuid programs using GnuTLS 3.4.12 could potentially allow an attacker to overwrite and corrupt arbitrary files in the filesystem...

4.1AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2016/05/03 12:0 a.m.•21 views

OpenSSL -- multiple vulnerabilities

OpenSSL reports: Padding oracle in AES-NI CBC MAC check EVPEncodeUpdate overflow EVPEncryptUpdate overflow ASN.1 BIO excessive memory allocation EBCDIC overread...

3.1AI score0.89058EPSS
Exploits6References6
FreeBSD
FreeBSD
•added 2016/03/16 12:0 a.m.•21 views

openafs -- multiple vulnerabilities

The OpenAFS development team reports: Foreign users can bypass access controls to create groups as system:administrators, including in the user namespace and the system: namespace. The contents of uninitialized memory are sent on the wire when clients perform certain RPCs. Depending on the RPC, t...

3.3AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2016/02/01 12:0 a.m.•21 views

django -- regression in permissions model

Tim Graham reports: User with "change" but not "add" permission can create objects for ModelAdmin’s with saveas=True...

6CVSS1.7AI score0.01522EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/12/17 12:0 a.m.•21 views

xen-kernel -- ioreq handling possibly susceptible to multiple read issue

The Xen Project reports: Single memory accesses in source code can be translated to multiple ones in machine code by the compiler, requiring special caution when accessing shared memory. Such precaution was missing from the hypervisor code inspecting the state of I/O requests sent to the device...

2.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/11/17 12:0 a.m.•21 views

kibana4 -- CSRF vulnerability

Elastic reports: Vulnerability Summary: Kibana versions prior to 4.1.3 and 4.2.1 are vulnerable to a CSRF attack. Remediation Summary: Users should upgrade to 4.1.3 or 4.2.1...

6.8CVSS6.5AI score0.0088EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/11/16 12:0 a.m.•21 views

a2ps -- format string vulnerability

Jong-Gwon Kim reports: When user runs a2ps with malicious crafted proa2ps prologue file, an attacker can execute arbitrary code...

7.8CVSS7.9AI score0.0286EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/11/06 12:0 a.m.•21 views

PuTTY -- memory corruption in terminal emulator's erase character handling

Ben Harris reports: Versions of PuTTY and pterm between 0.54 and 0.65 inclusive have a potentially memory-corrupting integer overflow in the handling of the ECH erase characters control sequence in the terminal emulator. To exploit a vulnerability in the terminal emulator, an attacker must be abl...

4.3CVSS9.2AI score0.03467EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/10/31 12:0 a.m.•21 views

codeigniter -- multiple vulnerabilities

The CodeIgniter changelog reports: Fixed an XSS attack vector in Security Library method xssclean. Changed Config Library method baseurl to fallback to $SERVER'SERVERADDR' in order to avoid Host header injections. Changed CAPTCHA Helper to try to use the operating system's PRNG first...

3AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/08/20 12:0 a.m.•21 views

OpenSSH -- PermitRootLogin may allow password connections with 'without-password'

OpenSSH 7.0 contained a logic error in PermitRootLogin= prohibit-password/without-password that could, depending on compile-time configuration, permit password authentication to root while preventing other forms of authentication. This problem was reported by Mantas Mikulenas...

2.8AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/07/08 12:0 a.m.•21 views

KeePassX -- information disclosure

Yves-Alexis Perez reports: Starting an export using File / Export to / KeepassX XML file and cancelling it leads to KeepassX saving a cleartext XML file in /.xml without any warning...

7.5CVSS7.4AI score0.0119EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/06/27 12:0 a.m.•21 views

bitcoin -- denial of service

Gregory Maxwell reports: On July 7th I will be making public details of several serious denial of service vulnerabilities which have fixed in recent versions of Bitcoin Core, including including CVE-2015-3641. I strongly recommend anyone running production nodes exposed to inbound connections fro...

7.5CVSS7.5AI score0.01767EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2015/06/26 12:0 a.m.•21 views

PolarSSL -- Security Fix Backports

Paul Bakker reports: PolarSSL 1.2.14 fixes one remotely-triggerable issues that was found by the Codenomicon Defensics tool, one potential remote crash and countermeasures against the "Lucky 13 strikes back" cache-based attack...

5.1AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/06/20 12:0 a.m.•21 views

turnserver -- SQL injection vulnerability

Oleg Moskalenko reports: SQL injection security hole fixed...

1.4AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2015/02/02 12:0 a.m.•21 views

openldap -- two remote denial of service vulnerabilities

Ryan Tandy reports: With the deref overlay enabled, ldapsearch with '-E deref=member:' causes slapd to crash. Bill MacAllister discovered that certain queries cause slapd to crash while freeing operation controls. This is a 2.4.40 regression. Earlier releases are not affected...

1.9AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2014/06/03 12:0 a.m.•21 views

FreeBSD -- ktrace kernel memory disclosure

Problem Description: Due to an overlooked merge to -STABLE branches, the size for page fault kernel trace entries was set incorrectly. Impact: A user who can enable kernel process tracing could end up reading the contents of kernel memory. Such memory might contain sensitive information, such as...

2.1CVSS6.3AI score0.00383EPSS
Exploits0
FreeBSD
FreeBSD
•added 2014/03/29 12:0 a.m.•21 views

redmine -- open redirect vulnerability

Redmine reports: Open Redirect vulnerability...

5.8CVSS7.4AI score0.02716EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2013/11/28 12:0 a.m.•21 views

OpenTTD -- Denial of service using forcefully crashed aircrafts

The OpenTTD Team reports: The problem is caused by incorrectly handling the fact that the aircraft circling the corner airport will be outside of the bounds of the map. In the 'out of fuel' crash code the height of the tile under the aircraft is determined. In this case that means a tile outside ...

5CVSS6.5AI score0.03305EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2013/02/24 12:0 a.m.•21 views

rubygem-ruby_parser -- insecure tmp file usage

Michael Scherer reports: This is a relatively minor tmp file usage issue...

2.1CVSS6.4AI score0.00343EPSS
Exploits1
FreeBSD
FreeBSD
•added 2013/01/15 12:0 a.m.•21 views

pyrad -- multiple vulnerabilities

Nathaniel McCallum reports: packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack. The CreateID function in packet.py in pyrad before 2.1 uses...

5.9CVSS5AI score0.02833EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2012/11/22 12:0 a.m.•21 views

FreeBSD -- Insufficient message length validation for EAP-TLS messages

Problem description: The internal authentication server of hostapd does not sufficiently validate the message length field of EAP-TLS messages...

4.3CVSS6.7AI score0.0422EPSS
Exploits0
FreeBSD
FreeBSD
•added 2012/08/10 12:0 a.m.•21 views

Calligra, KOffice -- input validation failure

KDE Security Advisory reports: A flaw has been found which can allow malicious code to take advantage of an input validation failure in the Microsoft import filter in Calligra and KOffice. Exploitation can allow the attacker to gain control of the running process and execute code on its behalf...

7.5CVSS7AI score0.05295EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2012/07/24 12:0 a.m.•21 views

squidclamav -- Denial of Service

SquidClamav developers report: Add a workaround for a squidGuard bug that unescape the URL and send it back unescaped. This result in garbage staying into pipe of the system command call and could crash squidclamav on next read or return false information. This is specially true with URL containi...

5CVSS6.3AI score0.03333EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2012/07/05 12:0 a.m.•21 views

asterisk -- multiple vulnerabilities

Asterisk project reports: Possible resource leak on uncompleted re-invite transactions. Remote crash vulnerability in voice mail application...

4CVSS6.4AI score0.03197EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2012/03/15 12:0 a.m.•21 views

asterisk -- multiple vulnerabilities

Asterisk project reports: Stack Buffer Overflow in HTTP Manager Remote Crash Vulnerability in Milliwatt Application...

1.8AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2012/03/08 12:0 a.m.•21 views

mutt-devel -- failure to check SMTP TLS server certificate

Dave B reports on Full Disclosure: It seems that mutt fails to check the validity of a SMTP servers certificate during a TLS connection. ... This means that an attacker could potentially MITM a mutt user connecting to their SMTP server even when the user has forced a TLS connection...

5.8CVSS2.6AI score0.01475EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/12/23 12:0 a.m.•21 views

FreeBSD -- pam_ssh improperly grants access when user account has unencrypted SSH private keys

Problem Description: The OpenSSL library call used to decrypt private keys ignores the passphrase argument if the key is not encrypted. Because the pamssh module only checks whether the passphrase provided by the user is null, users with unencrypted SSH private keys may successfully authenticate...

2.1AI score
Exploits0
FreeBSD
FreeBSD
•added 2011/08/08 12:0 a.m.•21 views

OpenTTD -- Buffer overflows in savegame loading

The OpenTTD Team reports: Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via vectors related to 1 NAME, 2 PLYR, 3 CHTS, or 4 AIPL aka AI config chunk loading from a savegame...

7.5CVSS7.4AI score0.05007EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/06/08 12:0 a.m.•21 views

ikiwiki -- tty hijacking via ikiwiki-mass-rebuild

The IkiWiki development team reports: Ludwig Nussel discovered a way for users to hijack root's tty when ikiwiki-mass-rebuild was run. Additionally, there was some potential for information disclosure via symlinks...

8.2CVSS2.8AI score0.01596EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/04/05 12:0 a.m.•21 views

xrdb -- root hole via rogue hostname

Matthias Hopf reports: By crafting hostnames with shell escape characters, arbitrary commands can be executed in a root environment when a display manager reads in the resource database via xrdb. These specially crafted hostnames can occur in two environments: Systems are affected are: systems se...

9.3CVSS4.8AI score0.05781EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/03/22 12:0 a.m.•21 views

mozilla -- update to HTTPS certificate blacklist

The Mozilla Project reports: MFSA 2011-11 Update to HTTPS certificate blacklist...

0.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/01/26 12:0 a.m.•21 views

mupdf -- Remote System Access

Secunia reports: The vulnerability is caused due to an error within the "closedctd" function in fitz/filtdctd.c when processing PDF files containing certain malformed JPEG images. This can be exploited to cause a stack corruption by e.g. tricking a user into opening a specially crafted PDF file...

2.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/01/20 12:0 a.m.•21 views

linux-flashplugin -- remote code execution vulnerability

Adobe Product Security Incident Response Team reports: A critical vulnerability exists in Adobe Flash Player 10.2.152.33 and earlier versions Adobe Flash Player 10.2.154.18 and earlier for Chrome users for Windows, Macintosh, Linux and Solaris operating systems, Adobe Flash Player 10.1.106.16 and...

9.3CVSS4.8AI score0.66821EPSS
Exploits8References1
FreeBSD
FreeBSD
•added 2010/11/28 12:0 a.m.•21 views

proftpd -- Compromised source packages backdoor

The ProFTPD Project team reports: The security issue is caused due to the distribution of compromised ProFTPD 1.3.3c source code packages via the project's main FTP server and all of the mirror servers, which contain a backdoor allowing remote root access...

4.1AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2010/09/15 12:0 a.m.•21 views

OTRS -- Multiple XSS and denial of service vulnerabilities

OTRS Security Advisory reports: Multiple Cross Site Scripting issues: Missing HTML quoting allows authenticated agents or customers to inject HTML tags. This vulnerability allows an attacker to inject script code into the OTRS web-interface which will be loaded and executed in the browsers of...

5.4AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2010/06/09 12:0 a.m.•21 views

lftp -- multiple HTTP client download filename vulnerability

The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted...

7.5CVSS9.2AI score0.03629EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2010/05/27 12:0 a.m.•21 views

FreeBSD -- Insufficient environment sanitization in jail(8)

Problem Description: The jail8 utility does not change the current working directory while imprisoning. The current working directory can be accessed by its descendants...

1.2AI score
Exploits0
FreeBSD
FreeBSD
•added 2010/01/06 12:0 a.m.•21 views

powerdns-recursor -- multiple vulnerabilities

PowerDNS Security Advisory reports: PowerDNS Recursor up to and including 3.1.7.1 can be brought down and probably exploited. PowerDNS Recursor up to and including 3.1.7.1 can be spoofed into accepting bogus data...

6.5AI score
Exploits0
Total number of security vulnerabilities5000