Lucene search
K
FreebsdRecent

6583 matches found

FreeBSD
FreeBSD
•added 2012/01/06 12:0 a.m.•42 views

OpenTTD -- Denial of service (server) via slow read attack

The OpenTTD Team reports: Using a slow read type attack it is possible to prevent anyone from joining a server with virtually no resources. Once downloading the map no other downloads of the map can start, so downloading really slowly will prevent others from joining. This can be further aggravat...

4.3CVSS5.2AI score0.01344EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/01/05 12:0 a.m.•38 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 106672 High CVE-2011-3921: Use-after-free in animation frames. Credit to Boris Zbarsky of Mozilla. 107128 High CVE-2011-3919: Heap-buffer-overflow in libxml. Credit to Juri Aedla. 108006 High CVE-2011-3922: Stack-buffer-overflow in glyph handling. Credit to Google...

7.5CVSS3.2AI score0.02399EPSS
Exploits1
FreeBSD
FreeBSD
•added 2012/01/05 12:0 a.m.•25 views

libxml2 -- heap buffer overflow

Google chrome team reports: Heap-based buffer overflow in libxml2, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

7.5CVSS9AI score0.02399EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2012/01/04 12:0 a.m.•15 views

spamdyke -- STARTTLS Plaintext Injection Vulnerability

Secunia reports: The vulnerability is caused due to the TLS implementation not properly clearing transport layer buffers when upgrading from plaintext to ciphertext after receiving the "STARTTLS" command. This can be exploited to insert arbitrary plaintext data e.g. SMTP commands during the...

7.5CVSS7.5AI score0.00937EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2012/01/04 12:0 a.m.•45 views

OpenSSL -- multiple vulnerabilities

The OpenSSL Team reports: 6 security flaws have been fixed in OpenSSL 1.0.0f: If X509VFLAGPOLICYCHECK is set in OpenSSL 0.9.8, then a policy check failure can lead to a double-free. OpenSSL prior to 1.0.0f and 0.9.8s failed to clear the bytes used as block cipher padding in SSL 3.0 records. As a...

9.3CVSS7.8AI score0.17687EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2012/01/03 12:0 a.m.•16 views

WordPress -- cross site scripting vulnerability

WordPress development team reports: WordPress 3.3.1 is now available. This maintenance release fixes 15 issues with WordPress 3.3, as well as a fix for a cross-site scripting vulnerability that affected version 3.3. Thanks to Joshua H., Hoang T., Stefan Zimmerman, Chris K., and the Go Daddy...

0.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/12/31 12:0 a.m.•33 views

mpack -- Information disclosure

The oss-security list reports: Incorrect permissions on temporary files can lead to information disclosure...

7.5CVSS7.4AI score0.02583EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/12/29 12:0 a.m.•65 views

php -- multiple vulnerabilities

php development team reports: Security Enhancements and Fixes in PHP 5.3.9: Added maxinputvars directive to prevent attacks based on hash collisions. CVE-2011-4885 Fixed bug 60150 Integer overflow during the parsing of invalid exif header. CVE-2011-4566...

6.4CVSS6.9AI score0.83911EPSS
Exploits17References1
FreeBSD
FreeBSD
•added 2011/12/28 12:0 a.m.•47 views

Multiple implementations -- DoS via hash algorithm collision

oCERT reports: A variety of programming languages suffer from a denial-of-service DoS condition against storage functions of key/value pairs in hash data structures, the condition can be leveraged by exploiting predictable collisions in the underlying hashing algorithms. The issue finds particula...

7.8CVSS8.6AI score0.0436EPSS
Exploits3References2
FreeBSD
FreeBSD
•added 2011/12/23 12:0 a.m.•22 views

FreeBSD -- pam_ssh() does not validate service names

Problem Description: Some third-party applications, including KDE's kcheckpass command, allow the user to specify the name of the policy on the command line. Since OpenPAM treats the policy name as a path relative to /etc/pam.d or /usr/local/etc/pam.d, users who are permitted to run such an...

6.9CVSS6.6AI score0.00905EPSS
Exploits1
FreeBSD
FreeBSD
•added 2011/12/23 12:0 a.m.•21 views

FreeBSD -- pam_ssh improperly grants access when user account has unencrypted SSH private keys

Problem Description: The OpenSSL library call used to decrypt private keys ignores the passphrase argument if the key is not encrypted. Because the pamssh module only checks whether the passphrase provided by the user is null, users with unencrypted SSH private keys may successfully authenticate...

2.1AI score
Exploits0
FreeBSD
FreeBSD
•added 2011/12/23 12:0 a.m.•42 views

krb5-appl -- telnetd code execution vulnerability

The MIT Kerberos Team reports: When an encryption key is supplied via the TELNET protocol, its length is not validated before the key is copied into a fixed-size buffer. Also see MITKRB5-SA-2011-008...

10CVSS7AI score0.95104EPSS
Exploits19References2
FreeBSD
FreeBSD
•added 2011/12/21 12:0 a.m.•20 views

plib -- buffer overflow

Secunia reports: A vulnerability has been discovered in PLIB, which can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to a boundary error within the "ulSetError" function src/util/ulError.cxx when creating the error message, which...

9.3CVSS6.9AI score0.12795EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/12/21 12:0 a.m.•25 views

plib -- remote code execution via buffer overflow

Secunia reports: A vulnerability has been discovered in PLIB, which can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to a boundary error within the "ulSetError" function src/util/ulError.cxx when creating the error message, which...

9.3CVSS6.8AI score0.12795EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2011/12/20 12:0 a.m.•33 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2011-53 Miscellaneous memory safety hazards rv:9.0 MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library MFSA 2011-55 nsSVGValue out-of-bounds access MFSA 2011-56 Key detection without JavaScript via SVG animation MFSA 2011-58 Crash...

10CVSS9.4AI score0.69882EPSS
Exploits11References5
FreeBSD
FreeBSD
•added 2011/12/19 12:0 a.m.•22 views

unbound -- denial of service vulnerabilities from nonstandard redirection and denial of existence

Unbound developer reports: Unbound crashes when confronted with a non-standard response from a server for a domain. This domain produces duplicate RRs from a certain type and is DNSSEC signed. Unbound also crashes when confronted with a query that eventually, and under specific circumstances,...

5CVSS6.4AI score0.02944EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/12/16 12:0 a.m.•46 views

phpMyAdmin -- Multiple XSS

The phpMyAdmin development team reports: Using crafted url parameters, it was possible to produce XSS on the export panels in the server, database and table sections. Crafted values entered in the setup interface can produce XSS; also, if the config directory exists and is writeable, the XSS...

5.9AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2011/12/16 12:0 a.m.•51 views

typo3 -- Remote Code Execution

The typo3 security team reports: A crafted request to a vulnerable TYPO3 installation will allow an attacker to load PHP code from an external source and to execute it on the TYPO3 installation. This is caused by a PHP file, which is part of the workspaces system extension, that does not validate...

6.8CVSS6.8AI score0.0563EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/12/13 12:0 a.m.•32 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 81753 Medium CVE-2011-3903: Out-of-bounds read in regex matching. Credit to David Holloway of the Chromium development community. 95465 Low CVE-2011-3905: Out-of-bounds reads in libxml. Credit to Google Chrome Security Team Inferno. 98809 Medium CVE-2011-3906:...

7.5CVSS0.7AI score0.01697EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/12/11 12:0 a.m.•33 views

krb5 -- KDC null pointer dereference in TGS handling

The MIT Kerberos Team reports: In releases krb5-1.9 and later, the KDC can crash due to a NULL pointer dereference in code that handles TGS Ticket Granting Service requests. The trigger condition is trivial to produce using unmodified client software, but requires the ability to authenticate as a...

6.8CVSS2.7AI score0.02473EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/12/10 12:0 a.m.•9 views

redmine -- CSRF protection bypass

Redmine reports: Vulnerability that would allow an attacker to bypass the CSRF protection...

3.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/12/10 12:0 a.m.•23 views

PuTTY -- Password vulnerability

Simon Tatham reports: PuTTY 0.62 fixes a security issue present in 0.59, 0.60 and 0.61. If you log in using SSH-2 keyboard-interactive authentication which is the usual method used by modern servers to request a password, the password you type was accidentally kept in PuTTY's memory for the rest ...

2.1CVSS6.4AI score0.00408EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2011/12/09 12:0 a.m.•34 views

jasper -- buffer overflow

Fedora reports: JasPer fails to properly decode marker segments and other sections in malformed JPEG2000 files. Malformed inputs can cause heap buffer overflows which in turn may result in execution of attacker-controlled code...

6.8CVSS5.9AI score0.10618EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/12/08 12:0 a.m.•32 views

asterisk -- Multiple Vulnerabilities

Asterisk project reports: It is possible to enumerate SIP usernames when the general and user/peer NAT settings differ in whether to respond to the port a request is sent from or the port listed for responses in the Via header. When the "automon" feature is enabled in features.conf, it is possibl...

6.3AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2011/12/07 12:0 a.m.•40 views

acroread9 -- Multiple Vulnerabilities

The Adobe Security Team reports: An unspecified vulnerability in the U3D component allows remote attackers to execute arbitrary code or cause a denial of service attack via unknown vectors. A heap-based buffer overflow allows attackers to execute arbitrary code via unspecified vectors...

10CVSS9.6AI score0.86238EPSS
Exploits23References2
FreeBSD
FreeBSD
•added 2011/12/07 12:0 a.m.•26 views

isc-dhcp-server -- Remote DoS

ISC reports: A bug exists which allows an attacker who is able to send DHCP Request packets, either directly or through a relay, to remotely crash an ISC DHCP server if that server is configured to evaluate expressions using a regular expression i.e. uses the "=" or "" comparison operators...

5CVSS6.4AI score0.15478EPSS
Exploits0
FreeBSD
FreeBSD
•added 2011/12/06 12:0 a.m.•34 views

opera -- multiple vulnerabilities

Opera software reports: Fixed a moderately severe issue; details will be disclosed at a later date Fixed an issue that could allow pages to set cookies or communicate cross-site for some top level domains; see our advisory Improved handling of certificate revocation corner cases Added a fix for a...

7.3AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2011/12/01 12:0 a.m.•15 views

openx -- undisclosed security issue

OpenX does not provide information about vulnerabilities beyond their existence...

1.7AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/11/30 12:0 a.m.•20 views

proftpd -- arbitrary code execution vulnerability with chroot

The FreeBSD security advisory FreeBSD-SA-11:07.chroot reports: If ftpd is configured to place a user in a chroot environment, then an attacker who can log in as that user may be able to run arbitrary code.... Proftpd shares the same problem of a similar nature...

3.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/11/29 12:0 a.m.•68 views

lighttpd -- remote DoS in HTTP authentication

US-CERT/NIST reports: Integer signedness error in the base64decode function in the HTTP authentication functionality httpauth.c in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service segmentation fault via crafted base64 input that...

5CVSS8.9AI score0.16246EPSS
Exploits8
FreeBSD
FreeBSD
•added 2011/11/28 12:0 a.m.•29 views

bugzilla -- multiple vulnerabilities

A Bugzilla Security Advisory reports: The following security issues have been discovered in Bugzilla: Tabular and graphical reports, as well as new charts have a debug mode which displays raw data as plain text. This text is not correctly escaped and a crafted URL could use this vulnerability to...

6.7AI score
Exploits0References4
FreeBSD
FreeBSD
•added 2011/11/24 12:0 a.m.•28 views

phpMyAdmin -- Multiple XSS

The phpMyAdmin development team reports: Using crafted database names, it was possible to produce XSS in the Database Synchronize and Database rename panels. Using an invalid and crafted SQL query, it was possible to produce XSS when editing a query on a table overview panel or when using the vie...

4.3CVSS6.3AI score0.0221EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/11/18 12:0 a.m.•11 views

hiawatha -- memory leak in PreventSQLi routine

Hugo Leisink reports via private mail to maintainer: The memory leak was introduced in version 7.6. It is in the routing that checks for SQL injections. So, if you have set PreventSQLi to 'no', there is no problem...

3.8AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2011/11/16 12:0 a.m.•26 views

BIND -- Remote DOS

The Internet Systems Consortium reports: Organizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: "INSIST! dnsrdatasetisassociatedsigrdataset"...

5CVSS8.6AI score0.16747EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2011/11/10 12:0 a.m.•36 views

linux-flashplugin -- multiple vulnerabilities

Adobe Product Security Incident Response Team reports: Critical vulnerabilities have been identified in Adobe Flash Player 11.0.1.152 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 11.0.1.153 and earlier versions for Android. In addition a patch was release...

10CVSS9.5AI score0.0896EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/11/10 12:0 a.m.•42 views

phpmyadmin -- Local file inclusion

Jan Lieskovsky reports: Importing a specially-crafted XML file which contains an XML entity injection permits to retrieve a local file limited by the privileges of the user running the web server...

6.5CVSS6.6AI score0.1267EPSS
Exploits7References1
FreeBSD
FreeBSD
•added 2011/11/08 12:0 a.m.•17 views

ChaSen -- buffer overflow

JVN iPedia reports: ChaSen provided by Nara Institute of Science and Technology is a software for morphologically analyzing Japanese. ChaSen contains an issue when reading in strings, which may lead to a buffer overflow. An arbitrary script may be executed by an attacker with access to a system...

9.3CVSS6.4AI score0.04153EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/11/08 12:0 a.m.•37 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2011-46 loadSubScript unwraps XPCNativeWrapper scope parameter 1.9.2 branch MFSA 2011-47 Potential XSS against sites using Shift-JIS MFSA 2011-48 Miscellaneous memory safety hazards rv:8.0 MFSA 2011-49 Memory corruption while profiling using Firebug MFSA 2011-50...

10CVSS9.7AI score0.05657EPSS
Exploits1References7
FreeBSD
FreeBSD
•added 2011/11/08 12:0 a.m.•26 views

gnutls -- client session resumption vulnerability

The GnuTLS team reports: GNUTLS-SA-2011-2 Possible buffer overflow/Denial of service...

4.3CVSS8.7AI score0.02386EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/11/06 12:0 a.m.•33 views

php5 -- header splitting attack via carriage-return character

Rui Hirokawa reports: As of PHP 5.1.2, header can no longer be used to send multiple response headers in a single call to prevent the HTTP Response Splitting Attack. header only checks the linefeed LF, 0x0A as line-end marker, it doesn't check the carriage-return CR, 0x0D. However, some browsers...

4.3CVSS1AI score0.10173EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2011/11/02 12:0 a.m.•20 views

caml-light -- insecure use of temporary files

caml-light uses mktemp insecurely, and also does unsafe things in /tmp during make install...

9.8CVSS9.2AI score0.01831EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2011/10/25 12:0 a.m.•13 views

phpmyfaq -- Remote PHP Code Injection Vulnerability

The phpMyFAQ project reports: The phpMyFAQ Team has learned of a serious security issue that has been discovered in our bundled ImageManager library we use in phpMyFAQ 2.6 and 2.7. The bundled ImageManager library allows injection of arbitrary PHP code via POST requests...

3.4AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2011/10/23 12:0 a.m.•19 views

phpLDAPadmin -- Remote PHP code injection vulnerability

EgiX n0b0d13s at gmail dot com reports: The $sortby parameter passed to 'masort' function in file lib/functions.php isn't properly sanitized before being used in a call to createfunction at line 1080. This can be exploited to inject and execute arbitrary PHP code. The only possible attack vector ...

1.5AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2011/10/21 12:0 a.m.•48 views

tomcat -- Denial of Service

The Tomcat security team reports: Analysis of the recent hash collision vulnerability identified unrelated inefficiencies with Apache Tomcat's handling of large numbers of parameters and parameter values. These inefficiencies could allow an attacker, via a specially crafted request, to cause larg...

5CVSS6.1AI score0.1086EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2011/10/19 12:0 a.m.•22 views

kdeutils4 -- Directory traversal vulnerability

Tim Brown from Nth Dimention reports: I recently discovered that the Ark archiving tool is vulnerable to directory traversal via malformed. When attempts are made to view files within the malformed Zip file in Ark's default view, the wrong file may be displayed due to incorrect construction of th...

6.8CVSS6.4AI score0.02952EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2011/10/18 12:0 a.m.•9 views

piwik -- unknown critical vulnerabilities

Secunia reports: Multiple vulnerabilities with an unknown impact have been reported in Piwik. The vulnerabilities are caused due to unspecified errors. No further information is currently available...

5.1AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2011/10/18 12:0 a.m.•32 views

Xorg server -- two vulnerabilities in X server lock handling code

Matthieu Herrb reports: It is possible to deduce if a file exists or not by exploiting the way that Xorg creates its lock files. This is caused by the fact that the X server is behaving differently if the lock file already exists as a symbolic link pointing to an existing or non-existing file. It...

6.3AI score
Exploits0
FreeBSD
FreeBSD
•added 2011/10/17 12:0 a.m.•31 views

asterisk -- remote crash vulnerability in SIP channel driver

Asterisk project reports: A remote authenticated user can cause a crash with a malformed request due to an unitialized variable...

6.8CVSS6.2AI score0.0238EPSS
Exploits0
FreeBSD
FreeBSD
•added 2011/10/12 12:0 a.m.•33 views

freetype -- Some type 1 fonts handling vulnerabilities

The FreeType project reports: A couple of vulnerabilities in handling Type 1 fonts...

4.3CVSS6.6AI score0.04138EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2011/10/05 12:0 a.m.•63 views

apache -- multiple vulnerabilities

CVE MITRE reports: An exposure was found when using modproxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from...

2.6CVSS9AI score0.30809EPSS
Exploits0
Total number of security vulnerabilities6583