Lucene search
K
FreebsdRecent

6583 matches found

FreeBSD
FreeBSD
•added 2009/12/02 12:0 a.m.•32 views

pligg -- Cross-Site Scripting and Cross-Site Request Forgery

secunia reports: Russ McRee has discovered some vulnerabilities in Pligg, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks. Input passed via the "Referer" HTTP header to various scripts e.g. admin/adminconfig.php, admin/adminmodules.php,...

6.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/12/01 12:0 a.m.•25 views

rt -- Session fixation vulnerability

Secunia reports: A vulnerability has been reported in RT, which can be exploited by malicious people to conduct session fixation attacks. The vulnerability is caused due to an error in the handling of sessions and can be exploited to hijack another user's session by tricking the user into logging...

5.8CVSS6.3AI score0.02745EPSS
Exploits0
FreeBSD
FreeBSD
•added 2009/11/30 12:0 a.m.•26 views

ruby -- heap overflow vulnerability

The official ruby site reports: There is a heap overflow vulnerability in Stringljust, Stringcenter and Stringrjust. This has allowed an attacker to run arbitrary code in some rare cases...

10CVSS6.9AI score0.03875EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/11/25 12:0 a.m.•40 views

libtool -- Library Search Path Privilege Escalation Issue

Secunia.com Do not attempt to load an unqualified module.la file from the current directory by default since doing so is insecure and is not compliant with the documentation...

6.9CVSS7.4AI score0.00394EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2009/11/24 12:0 a.m.•46 views

libvorbis -- multiple vulnerabilities

The Ubuntu security team reports: It was discovered that libvorbis did not correctly handle certain malformed vorbis files. If a user were tricked into opening a specially crafted vorbis file with an application that uses libvorbis, an attacker could cause a denial of service or possibly execute...

9.7AI score
Exploits0
FreeBSD
FreeBSD
•added 2009/11/23 12:0 a.m.•52 views

opera -- multiple vulnerabilities

Opera Team reports: Fixed a heap buffer overflow in string to number conversion Fixed an issue where error messages could leak onto unrelated sites Fixed a moderately severe issue, as reported by Chris Evans of the Google Security Team; details will be disclosed at a later date...

6.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/11/21 12:0 a.m.•31 views

cacti -- cross-site scripting issues

The cacti development team reports: The Cross-Site Scripting patch has been posted. This patch addresses cross-site scripting issues reported by Moritz Naumann...

4.3CVSS5.6AI score0.05739EPSS
Exploits6References1
FreeBSD
FreeBSD
•added 2009/11/20 12:0 a.m.•23 views

dovecot -- Insecure directory permissions

Dovecot author reports: Dovecot v1.2.x had been creating basedir and its parents if necessary with 0777 permissions. The basedir's permissions get changed to 0755 automatically at startup, but you may need to chmod the parent directories manually...

5.5CVSS6.4AI score0.00375EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/11/20 12:0 a.m.•42 views

postgresql -- multiple vulnerabilities

PostgreSQL project reports: PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '\0' character in a domain name in the subject's Common Name CN field of an X.509 certificate, which 1...

6.5CVSS8.6AI score0.03644EPSS
Exploits5
FreeBSD
FreeBSD
•added 2009/11/18 12:0 a.m.•35 views

bugzilla -- information leak

A Bugzilla Security Advisory reports: When a bug is in a group, none of its information other than its status and resolution should be visible to users outside that group. It was discovered that as of 3.3.2, Bugzilla was showing the alias of the bug a very short string used as a shortcut for...

5CVSS6.4AI score0.01726EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/11/14 12:0 a.m.•39 views

PEAR -- Net_Ping and Net_Traceroute remote arbitrary command injection

PEAR Security Advisory reports: Multiple remote arbitrary command injections have been found in the NetPing and NetTraceroute. When input from forms are used directly, the attacker could pass variables that would allow him to execute remote arbitrary command injections...

6.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2009/11/12 12:0 a.m.•26 views

wordpress -- multiple vulnerabilities

secunia reports: The security issue is caused due to the wpcheckfiletype function in /wp-includes/functions.php improperly validating uploaded files. This can be exploited to execute arbitrary PHP code by uploading a malicious PHP script with multiple extensions. Successful exploitation of this...

7AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/10/30 12:0 a.m.•21 views

KDE -- multiple vulnerabilities

oCERT reports: Ark input sanitization errors: The KDE archiving tool, Ark, performs insufficient validation which leads to specially crafted archive files, using unknown MIME types, to be rendered using a KHTML instance, this can trigger uncontrolled XMLHTTPRequests to remote sites. IO Slaves inp...

0.3AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2009/10/28 12:0 a.m.•25 views

opera -- multiple vulnerabilities

Opera Team Reports: Fixed an issue where certain domain names could allow execution of arbitrary code, as reported by Chris Weber of Casaba Security Fixed an issue where scripts can run on the feed subscription page, as reported by Inferno...

9.3CVSS6.6AI score0.05704EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/10/27 12:0 a.m.•51 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: MFSA 2009-64 Crashes with evidence of memory corruption rv:1.9.1.4/ 1.9.0.15 MFSA 2009-63 Upgrade media libraries to fix memory safety bugs MFSA 2009-62 Download filename spoofing with RTL override MFSA 2009-61 Cross-origin data theft through document.getSelection MFSA...

10CVSS10.4AI score0.15519EPSS
Exploits32References11
FreeBSD
FreeBSD
•added 2009/10/23 12:0 a.m.•16 views

p5-HTML-Parser -- denial of service

CVE reports: The decodeentities function in util.c in HTML-Parser before 3.63 allows context-dependent attackers to cause a denial of service infinite loop via an incomplete SGML numeric character reference, which triggers generation of an invalid UTF-8 character...

4.3CVSS6.2AI score0.01727EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/10/22 12:0 a.m.•28 views

typo3 -- multiple vulnerabilities in TYPO3 Core

TYPO3 develop team reports: Affected versions: TYPO3 versions 4.0.13 and below, 4.1.12 and below, 4.2.9 and below, 4.3.0beta1 and below. SQL injection, Cross-site scripting XSS, Information disclosure, Frame hijacking, Remote shell command execution and Insecure Install Tool authentication/sessio...

8.5CVSS6.6AI score0.02943EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/10/15 12:0 a.m.•42 views

gd -- '_gdGetColors' remote buffer overflow vulnerability

CVE reports: The gdGetColors function in gdgd.c in PHP 5.2.11 and 5.3.0, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different...

9.3CVSS7.3AI score0.1021EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2009/10/15 12:0 a.m.•34 views

squidGuard -- multiple vulnerabilities

SquidGuard website reports: Patch 20091015 fixes one buffer overflow problem in sgLog.c when overlong URLs are requested. SquidGuard will then go into emergency mode were no blocking occurs. This is not required in this situation. Patch 20091019 fixes two bypass problems with URLs which length is...

6.9AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/10/15 12:0 a.m.•24 views

Enhanced cTorrent -- stack-based overflow

Securityfocus reports: cTorrent and dTorrent are prone to a remote buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Successful exploits allow remote attackers to execute arbitrary...

9.3CVSS6.6AI score0.1414EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/10/14 12:0 a.m.•35 views

Xpdf -- Multiple Vulnerabilities

SecurityFocus reports: Some vulnerabilities have been reported in Xpdf, which can be exploited by malicious people to potentially compromise a user's system. 1 Multiple integer overflows in "SplashBitmap::SplashBitmap" can be exploited to cause heap-based buffer overflows. 2 An integer overflow...

1.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2009/10/13 12:0 a.m.•25 views

phpmyadmin -- XSS and SQL injection vulnerabilities

phpMyAdmin Team reports: Cross-site scripting XSS vulnerability allows remote attackers to inject arbitrary web script or HTML via a crafted MySQL table name. SQL injection vulnerability allows remote attackers to inject SQL via various interface parameters of the PDF schema generator feature...

6.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2009/10/09 12:0 a.m.•30 views

django -- denial-of-service attack

Django project reports: Django's forms library includes field types which perform regular-expression-based validation of email addresses and URLs. Certain addresses/URLs could trigger a pathological performance case in these regular expression, resulting in the server process/thread becoming...

5CVSS6.4AI score0.03686EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/10/07 12:0 a.m.•41 views

virtualbox -- privilege escalation

Sun reports: A security vulnerability in the VBoxNetAdpCtl configuration tool for certain Sun VirtualBox 3.0 packages may allow local unprivileged users who are authorized to run VirtualBox to execute arbitrary commands with root privileges...

7.2CVSS6.6AI score0.00729EPSS
Exploits6References2
FreeBSD
FreeBSD
•added 2009/10/05 12:0 a.m.•23 views

expat2 -- buffer over-read and crash

CVE reports: The big2toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service application crash via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related t...

5CVSS7.5AI score0.24313EPSS
Exploits2
FreeBSD
FreeBSD
•added 2009/10/02 12:0 a.m.•12 views

FreeBSD -- Devfs / VFS NULL pointer race condition

Problem Description: Due to the interaction between devfs and VFS, a race condition exists where the kernel might dereference a NULL pointer. Impact: Successful exploitation of the race condition can lead to local kernel privilege escalation, kernel data corruption and/or crash. To exploit this...

0.7AI score
Exploits0
FreeBSD
FreeBSD
•added 2009/10/02 12:0 a.m.•13 views

FreeBSD -- kqueue pipe race conditions

Problem Description A race condition exists in the pipe close code relating to kqueues, causing use-after-free for kernel memory, which may lead to an exploitable NULL pointer vulnerability in the kernel, kernel memory corruption, and other unpredictable results. Impact: Successful exploitation o...

0.8AI score
Exploits0
FreeBSD
FreeBSD
•added 2009/09/21 12:0 a.m.•17 views

mybb -- multiple vulnerabilities

mybb team reports: Input passed via avatar extensions is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by uploading specially named avatars. The script allows to sign up with usernames containing zero width space characters, which can be...

3.3AI score
Exploits0References4
FreeBSD
FreeBSD
•added 2009/09/18 12:0 a.m.•14 views

fwbuilder -- security issue in temporary file handling

Firewall Builder release notes reports: Vadim Kurland [email protected] reports: Fwbuilder and libfwbuilder 3.0.4 through to 3.0.6 generate iptables scripts with a security issue when also used to generate static routing configurations...

3.3CVSS6.4AI score0.00358EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/09/17 12:0 a.m.•23 views

drupal -- multiple vulnerabilities

Drupal Team reports: The core OpenID module does not correctly implement Form API for the form that allows one to link user accounts with OpenID identifiers. A malicious user is therefore able to use cross site request forgeries to add attacker controlled OpenID identities to existing accounts...

1.6AI score
Exploits0References6
FreeBSD
FreeBSD
•added 2009/09/17 12:0 a.m.•55 views

php5 -- Multiple security issues

Vendor reports Security Enhancements and Fixes in PHP 5.2.11: Fixed certificate validation inside phpopensslapplyverificationpolicy. Fixed sanity check for the color index in imagecolortransparent. Added missing sanity checks around exif processing. Fixed bug 44683 popen crashes when an invalid...

7.5CVSS6.7AI score0.0291EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/09/15 12:0 a.m.•16 views

fuser -- missing user's privileges check

Denis Barov reports: sysutils/fuser allows user to send any signal to any process when installed with suid bit...

3.1AI score
Exploits0
FreeBSD
FreeBSD
•added 2009/09/14 12:0 a.m.•24 views

vlc -- stack overflow in MPA, AVI and ASF demuxer

VideoLAN reports: When parsing a MP4, ASF or AVI file with an overly deep box structure, a stack overflow might occur. It would overwrite the return address and thus redirect the execution flow. If successful, a malicious third party could trigger execution of arbitrary code within the context of...

4.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2009/09/14 12:0 a.m.•41 views

nginx -- remote denial of service vulnerability

nginx development team reports: A segmentation fault might occur in worker process while specially crafted request handling...

7.5CVSS6.5AI score0.75079EPSS
Exploits3References2
FreeBSD
FreeBSD
•added 2009/09/11 12:0 a.m.•28 views

bugzilla -- two SQL injections, sensitive data exposure

A Bugzilla Security Advisory reports: It is possible to inject raw SQL into the Bugzilla database via the "Bug.create" and "Bug.search" WebService functions. When a user would change his password, his new password would be exposed in the URL field of the browser if he logged in right after changi...

7.5CVSS7AI score0.01393EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2009/09/10 12:0 a.m.•47 views

mozilla firefox -- multiple vulnerabilities

Mozilla Foundation reports: MFSA 2009-51 Chrome privilege escalation with FeedWriter MFSA 2009-50 Location bar spoofing via tall line-height Unicode characters MFSA 2009-49 TreeColumns dangling pointer vulnerability MFSA 2009-48 Insufficient warning for PKCS11 module installation and removal MFSA...

10CVSS9.6AI score0.06724EPSS
Exploits4References6
FreeBSD
FreeBSD
•added 2009/09/09 12:0 a.m.•14 views

xapian-omega -- cross-site scripting vulnerability

Olly Betts reports: There's a cross-site scripting issue in Omega - exception messages don't currently get HTML entities escaped, but can contain CGI parameter values in some cases...

4.3CVSS5.8AI score0.019EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2009/09/09 12:0 a.m.•31 views

freeradius -- remote packet of death vulnerability

freeRADIUS Vulnerability Notifications reports: 2009.09.09 v1.1.7 - Anyone who can send packets to the server can crash it by sending a Tunnel-Password attribute in an Access-Request packet. This vulnerability is not otherwise exploitable. We have released 1.1.8 to correct this vulnerability. Thi...

5CVSS6.2AI score0.11176EPSS
Exploits3References3
FreeBSD
FreeBSD
•added 2009/09/02 12:0 a.m.•26 views

cyrus-imapd -- Potential buffer overflow in Sieve

The Cyrus IMAP Server ChangeLog states: Fixed CERT VU336053 - Potential buffer overflow in Sieve...

4.4CVSS5.7AI score0.00483EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/09/01 12:0 a.m.•21 views

opera -- multiple vulnerabilities

Opera Team Reports: Issue where sites using revoked intermediate certificates might be shown as secure Issue where the collapsed address bar didn't show the current domain Issue where pages could trick users into uploading files Some IDNA characters not correctly displaying in the address bar Iss...

2.4AI score
Exploits0References5
FreeBSD
FreeBSD
•added 2009/08/31 12:0 a.m.•384 views

dnsmasq -- TFTP server remote code injection vulnerability

Simon Kelley reports: Fix security problem which allowed any host permitted to do TFTP to possibly compromise dnsmasq by remote buffer overflow when TFTP enabled. Fix a problem which allowed a malicious TFTP client to crash dnsmasq...

6.8CVSS6.9AI score0.12684EPSS
Exploits7References2
FreeBSD
FreeBSD
•added 2009/08/28 12:0 a.m.•19 views

ikiwiki -- insufficient blacklisting in teximg plugin

The IkiWiki development team reports: IkiWikis teximg plugin's blacklisting of insecure TeX commands is insufficient; it can be bypassed and used to read arbitrary files...

5CVSS6.4AI score0.01799EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/08/18 12:0 a.m.•26 views

pidgin -- MSN overflow parsing SLP messages

Secunia reports: A vulnerability has been reported in Pidgin, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to an error in the "msnslplinkprocessmsg" function when processing MSN SLP messages and can be exploited to corrupt...

10CVSS6.6AI score0.20295EPSS
Exploits8References2
FreeBSD
FreeBSD
•added 2009/08/11 12:0 a.m.•43 views

GnuTLS -- improper SSL certificate verification

GnuTLS reports: By using a NUL byte in CN/SAN fields, it was possible to fool GnuTLS into 1 not printing the entire CN/SAN field value when printing a certificate and 2 cause incorrect positive matches when matching a hostname against a certificate...

7.5CVSS5AI score0.02151EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/08/10 12:0 a.m.•36 views

wordpress -- remote admin password reset vulnerability

WordPress reports: A specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database usually the admin account would have its password reset and a new passwor...

7.5CVSS6.4AI score0.19636EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2009/08/07 12:0 a.m.•41 views

OpenLDAP -- incorrect handling of NULL in certificate Common Name

Jan Lieskovsky reports: OpenLDAP does not properly handle a '\0' character in a domain name in the subject's Common Name CN field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authori...

4.3CVSS6.2AI score0.03094EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/08/07 12:0 a.m.•36 views

silc-toolkit -- Format string vulnerabilities

SILC Changlog reports: An unspecified format string vulnerability exists in silc-toolkit...

7.5CVSS6.5AI score0.04827EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2009/08/06 12:0 a.m.•23 views

subversion -- heap overflow vulnerability

A Subversion Security Advisory reports: Subversion clients and servers have multiple heap overflow issues in the parsing of binary deltas. This is related to an allocation vulnerability in the APR library used by Subversion. Clients with commit access to a vulnerable server can cause a remote hea...

8.5CVSS7.5AI score0.05112EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/08/06 12:0 a.m.•39 views

fetchmail -- improper SSL certificate subject verification

Matthias Andree reports: Moxie Marlinspike demonstrated in July 2009 that some CAs would sign certificates that contain embedded NUL characters in the Common Name or subjectAltName fields of ITU-T X.509 certificates. Applications that would treat such X.509 strings as NUL-terminated C strings...

6.4CVSS6.4AI score0.01503EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2009/08/03 12:0 a.m.•36 views

mozilla -- multiple vulnerabilities

Mozilla Project reports: MFSA 2009-38: Data corruption with SOCKS5 reply containing DNS name longer than 15 characters MFSA 2009-42: Compromise of SSL-protected communication MFSA 2009-43: Heap overflow in certificate regexp parsing MFSA 2009-44: Location bar and SSL indicator spoofing via...

9.5AI score
Exploits0References6
Total number of security vulnerabilities6583