Netbsd » Netbsd : Security Vulnerabilities (CVSS score between 5 and 5.99)

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : Cve Number Descending Cve Number Ascending CVSS Score Descending Number Of Exploits Descending

Copy Results Download Results Select Table

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2007-6754	189	Overflow	2012-07-25	2012-07-26	5.0	None	Remote	Low	Not required	None	None	Partial
The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, related to "integer rounding and overflow" errors.
2	CVE-2006-7252	189	Overflow	2012-07-25	2012-07-26	5.0	None	Remote	Low	Not required	None	None	Partial
Integer overflow in the calloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which triggers a memory allocation of one byte.
3	CVE-2004-0257		DoS	2004-11-23	2008-09-05	5.0	None	Remote	Low	Not required	None	None	Partial
OpenBSD 3.4 and NetBSD 1.6 and 1.6.1 allow remote attackers to cause a denial of service (crash) by sending an IPv6 packet with a small MTU to a listening port and then issuing a TCP connect to that port.
4	CVE-2003-0653		DoS	2003-08-27	2008-09-10	5.0	None	Remote	Low	Not required	None	None	Partial
The OSI networking kernel (sys/netiso) in NetBSD 1.6.1 and earlier does not use a BSD-required "PKTHDR" mbuf when sending certain error responses to the sender of an OSI packet, which allows remote attackers to cause a denial of service (kernel panic or crash) via certain OSI packets.
5	CVE-2003-0001		+Info	2003-01-17	2008-09-10	5.0	None	Remote	Low	Not required	Partial	None	None
Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.
6	CVE-2002-0666		DoS	2002-11-04	2008-09-10	5.0	None	Remote	Low	Not required	None	None	Partial
IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) packets, which result in integer signedness errors.
7	CVE-2002-0381		Bypass	2002-06-25	2008-09-05	5.0	None	Remote	Low	Not required	Partial	None	None
The TCP implementation in various BSD operating systems (tcp_input.c) does not properly block connections to broadcast addresses, which could allow remote attackers to bypass intended filters via packets with a unicast link layer address and an IP broadcast address.
8	CVE-2001-1244		DoS	2001-07-07	2008-09-05	5.0	None	Remote	Low	Not required	None	None	Partial
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.
9	CVE-2001-0710		DoS	2001-09-20	2008-09-05	5.0	None	Remote	Low	Not required	None	None	Partial
NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool.
10	CVE-2000-0440		DoS	2000-05-01	2008-09-10	5.0	None	Remote	Low	Not required	None	None	Partial
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.
11	CVE-2000-0315			2001-03-12	2008-09-05	5.0	None	Remote	Low	Not required	None	Partial	None
traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.
12	CVE-2000-0314			2001-03-12	2008-09-05	5.0	None	Remote	Low	Not required	None	None	Partial
traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.
13	CVE-1999-1518		DoS Bypass	1999-07-15	2008-09-05	5.0	None	Remote	Low	Not required	None	None	Partial
Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults.
14	CVE-1999-1225			1997-08-24	2008-09-10	5.0	None	Remote	Low	Not required	Partial	None	None
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
15	CVE-1999-0628			1997-07-01	2008-09-09	5.0	None	Remote	Low	Not required	Partial	None	None
The rwho/rwhod service is running, which exposes machine status and user information.
16	CVE-1999-0513		DoS	1998-01-05	2008-09-09	5.0	None	Remote	Low	Not required	None	None	Partial
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
17	CVE-1999-0016		DoS	1997-12-01	2008-09-09	5.0	None	Remote	Low	Not required	None	None	Partial
Land IP denial of service.
18	CVE-1999-0015		DoS	1997-12-16	2009-03-04	5.0	None	Remote	Low	Not required	None	None	Partial
Teardrop IP denial of service.
19	CVE-1999-0010		DoS	1998-04-08	2008-09-09	5.0	None	Remote	Low	Not required	None	None	Partial
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

Total number of vulnerabilities : 19 Page : 1 (This Page)