The getnameinfo function in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows a remote attacker to cause a denial of service via a long DNS hostname.
Max CVSS
5.0
EPSS Score
0.84%
Published
2000-12-11
Updated
2017-07-11
The setlocale function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-11
Updated
2008-09-05
The catopen function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-11
Updated
2008-09-05
Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-11
Updated
2017-10-10
Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-11
Updated
2008-09-05
Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-19
Updated
2017-10-10
Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-19
Updated
2023-03-03
FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP connections.
Max CVSS
7.5
EPSS Score
0.32%
Published
2000-12-19
Updated
2008-09-05
fingerd in FreeBSD 4.1.1 allows remote attackers to read arbitrary files by specifying the target file name instead of a regular user name.
Max CVSS
5.0
EPSS Score
0.67%
Published
2000-12-19
Updated
2017-10-10
Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-11-14
Updated
2017-10-10
Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments.
Max CVSS
7.2
EPSS Score
0.05%
Published
2000-10-20
Updated
2008-09-05
Buffer overflow in the Linux binary compatibility module in FreeBSD 3.x through 5.x allows local users to gain root privileges via long filenames in the linux shadow file system.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-10-20
Updated
2017-10-10
FreeBSD 5.x, 4.x, and 3.x allows local users to cause a denial of service by executing a program with a malformed ELF image header.
Max CVSS
2.1
EPSS Score
0.04%
Published
2000-10-20
Updated
2017-10-10
libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in another directory.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-07-05
Updated
2008-09-10
BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.
Max CVSS
5.0
EPSS Score
13.68%
Published
2000-07-04
Updated
2017-10-10
Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name.
Max CVSS
10.0
EPSS Score
8.41%
Published
2000-07-02
Updated
2018-05-03
OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken.
Max CVSS
5.0
EPSS Score
0.34%
Published
2000-06-12
Updated
2008-09-10
A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered.
Max CVSS
7.5
EPSS Score
0.90%
Published
2000-06-07
Updated
2017-10-10
The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.
Max CVSS
2.1
EPSS Score
0.04%
Published
2000-05-29
Updated
2008-09-10
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.
Max CVSS
5.0
EPSS Score
3.18%
Published
2000-05-01
Updated
2008-09-10
Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-03-27
Updated
2011-03-08
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument.
Max CVSS
7.2
EPSS Score
0.05%
Published
2000-02-28
Updated
2008-09-10
asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-02-21
Updated
2008-09-10
The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.
Max CVSS
6.2
EPSS Score
0.05%
Published
2000-01-19
Updated
2011-03-08
xsoldier program allows local users to gain root access via a long argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-05-17
Updated
2016-10-18
27 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!