Bsd Os Security Vulnerabilities and Issues — Bsd Os CVE List

Lucene search

BsdiBsd Os

38 matches found

CVE•added 2008/10/20 5:59 p.m.•481 views

CVE-2008-4609

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state ...

7.1CVSS8.8AI score0.00461EPSS

CVE•added 1999/09/29 4:0 a.m.•370 views

CVE-1999-0024

DNS cache poisoning via BIND, by predictable query IDs.

5CVSS6.7AI score0.01325EPSS

CVE•added 2000/02/04 5:0 a.m.•238 views

CVE-1999-0001

ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets.

5CVSS9.2AI score0.01269EPSS

CVE•added 2000/02/04 5:0 a.m.•225 views

CVE-1999-0061

File creation and deletion, and remote execution, in the BSD line printer daemon (lpd).

5.1CVSS7AI score0.01661EPSS

CVE•added 1999/09/29 4:0 a.m.•162 views

CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as root.

8.4CVSS7.9AI score0.00114EPSS

CVE•added 1999/09/29 4:0 a.m.•157 views

CVE-1999-0002

Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.

10CVSS7.5AI score0.16835EPSS

CVE•added 2000/02/04 5:0 a.m.•88 views

CVE-1999-0165

NFS cache poisoning.

10CVSS7.4AI score0.00946EPSS

CVE•added 1999/09/29 4:0 a.m.•84 views

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable.

10CVSS7.1AI score0.0353EPSS

CVE•added 1999/09/29 4:0 a.m.•77 views

CVE-1999-0009

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

10CVSS7.3AI score0.8048EPSS

CVE•added 1999/09/29 4:0 a.m.•69 views

CVE-1999-0023

Local user gains root privileges via buffer overflow in rdist, via lookup() function.

7.2CVSS8AI score0.00705EPSS

CVE•added 1999/09/29 4:0 a.m.•69 views

CVE-1999-0052

IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash.

7.5CVSS7.4AI score0.01067EPSS

CVE•added 2000/02/04 5:0 a.m.•67 views

CVE-1999-0078

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

1.9CVSS7.3AI score0.00139EPSS

CVE•added 1999/09/29 4:0 a.m.•65 views

CVE-1999-0043

Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.

10CVSS7.2AI score0.01593EPSS

CVE•added 1999/09/29 4:0 a.m.•61 views

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.8CVSS7.4AI score0.00254EPSS

CVE•added 1999/09/29 4:0 a.m.•61 views

CVE-1999-0042

Buffer overflow in University of Washington's implementation of IMAP and POP servers.

10CVSS7.1AI score0.05486EPSS

CVE•added 1999/09/29 4:0 a.m.•60 views

CVE-1999-0047

MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.

10CVSS7.3AI score0.02172EPSS

CVE•added 1999/09/29 4:0 a.m.•55 views

CVE-1999-0034

Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.

7.2CVSS7.7AI score0.00233EPSS

CVE•added 2000/01/04 5:0 a.m.•55 views

CVE-1999-0880

Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly.

5CVSS6.6AI score0.00504EPSS

CVE•added 1999/09/29 4:0 a.m.•54 views

CVE-1999-0131

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

7.2CVSS6.8AI score0.00096EPSS

CVE•added 1999/09/29 4:0 a.m.•50 views

CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

4.6CVSS6.6AI score0.00122EPSS

CVE•added 2000/01/04 5:0 a.m.•50 views

CVE-1999-0297

Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.

7.2CVSS7.2AI score0.00063EPSS

CVE•added 1999/09/29 4:0 a.m.•49 views

CVE-1999-0032

Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.

7.2CVSS7.7AI score0.00221EPSS

CVE•added 1999/09/29 4:0 a.m.•49 views

CVE-1999-0040

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

7.2CVSS7.9AI score0.003EPSS

CVE•added 1999/09/29 4:0 a.m.•49 views

CVE-1999-0130

Local users can start Sendmail in daemon mode and gain root privileges.

7.2CVSS7AI score0.00886EPSS

CVE•added 1999/09/29 4:0 a.m.•47 views

CVE-1999-0099

Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.

10CVSS7.9AI score0.01375EPSS

CVE•added 2000/01/04 5:0 a.m.•46 views

CVE-1999-0304

mmap function in BSD allows local attackers in the kmem group to modify memory through devices.

7.2CVSS7.1AI score0.0006EPSS

CVE•added 1999/09/29 4:0 a.m.•44 views

CVE-1999-0096

Sendmail decode alias can be used to overwrite sensitive files.

5CVSS6.7AI score0.00661EPSS

CVE•added 2000/01/04 5:0 a.m.•43 views

CVE-1999-0704

Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.

9.3CVSS7.3AI score0.04185EPSS

CVE•added 2000/01/04 5:0 a.m.•42 views

CVE-1999-0703

OpenBSD, BSDI, and other Unix operating systems allow users to set chflags and fchflags on character and block devices.

3.6CVSS6.9AI score0.00082EPSS

CVE•added 2000/02/04 5:0 a.m.•41 views

CVE-1999-0798

Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.

10CVSS7.6AI score0.00512EPSS

CVE•added 2000/06/02 4:0 a.m.•38 views

CVE-1999-0323

FreeBSD mmap function allows users to modify append-only or immutable files.

10CVSS7.3AI score0.00482EPSS

CVE•added 2002/03/15 5:0 a.m.•38 views

CVE-2001-1133

Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions.

2.1CVSS6.4AI score0.00421EPSS

CVE•added 2000/01/04 5:0 a.m.•37 views

CVE-1999-0879

Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file.

10CVSS7.2AI score0.03141EPSS

CVE•added 2001/01/09 5:0 a.m.•37 views

CVE-2000-1103

rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line.

7.2CVSS7AI score0.00346EPSS

CVE•added 2002/03/15 5:0 a.m.•37 views

CVE-2001-1154

Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) using PHP IMAP clients.

5CVSS7.1AI score0.00739EPSS

CVE•added 2000/04/18 4:0 a.m.•35 views

CVE-1999-0747

Denial of service in BSDi Symmetric Multiprocessing (SMP) when an fstat call is made when the system has a high CPU load.

2.1CVSS6.9AI score0.00084EPSS

CVE•added 1999/09/29 4:0 a.m.•34 views

CVE-1999-0305

The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the (1) dosourceroute or (2) forwarding variables are set, which allows remote attackers to spoof TCP ...

5CVSS7.4AI score0.0073EPSS

CVE•added 2005/07/14 4:0 a.m.•32 views

CVE-2001-1541

Buffer overflow in Unix-to-Unix Copy Protocol (UUCP) in BSDI BSD/OS 3.0 through 4.2 allows local users to execute arbitrary code via a long command line argument.

7.2CVSS7.9AI score0.0007EPSS