Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 8.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-1739
The makemask function in mountd.c in mountd in FreeBSD 7.4 up to and including 8.2 does not properly handle a -network field specifying a CIDR block with a prefix length that is not an integer multiple of 8, which allows remote malicious users to bypass intended access restrictio...
Freebsd Freebsd 7.4
Freebsd Freebsd 8.2
Freebsd Freebsd 8.0
Freebsd Freebsd 8.1
NA
CVE-2009-4146
The _rtld function in the Run-Time Link-Editor (rtld) in libexec/rtld-elf/rtld.c in FreeBSD 7.1, 7.2, and 8.0 does not clear the LD_PRELOAD environment variable, which allows local users to gain privileges by executing a setuid or setguid program with a modified LD_PRELOAD variab...
Freebsd Freebsd 8.0
Freebsd Freebsd 7.1
Freebsd Freebsd 7.2
1 EDB exploit
NA
CVE-2010-0318
The replay functionality for ZFS Intent Log (ZIL) in FreeBSD 7.1, 7.2, and 8.0, when creating files during replay of a setattr transaction, uses 7777 permissions instead of the original permissions, which might allow local users to read or modify unauthorized files in opportunist...
Freebsd Freebsd 8.0
Freebsd Freebsd 7.1
Freebsd Freebsd 7.2
7.8
CVSSv3
CVE-2010-4210
The pfs_getextattr function in FreeBSD 7.x prior to 7.3-RELEASE and 8.x prior to 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service (kernel panic), overwrite arbitrary memory locations, and possibly execute arbitrary code...
Freebsd Freebsd
Freebsd Freebsd 8.0
1 EDB exploit
NA
CVE-2010-2693
FreeBSD 7.1 up to and including 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.
Freebsd Freebsd 7.1
Freebsd Freebsd 8.0
Freebsd Freebsd 7.3
Freebsd Freebsd 7.2
Freebsd Freebsd 8.1
1 EDB exploit
NA
CVE-2009-4358
freebsd-update in FreeBSD 8.0, 7.2, 7.1, 6.4, and 6.3 uses insecure permissions in its working directory (/var/db/freebsd-update by default), which allows local users to read copies of sensitive files after a (1) freebsd-update fetch (fetch) or (2) freebsd-update upgrade (upgrade...
Freebsd Freebsd 6.4
Freebsd Freebsd 6.3
Freebsd Freebsd 8.0
Freebsd Freebsd 7.1
Freebsd Freebsd 7.2
NA
CVE-2013-3266
The nfsrvd_readdir function in sys/fs/nfsserver/nfs_nfsdport.c in the new NFS server in FreeBSD 8.0 up to and including 9.1-RELEASE-p3 does not verify that a READDIR request is for a directory node, which allows remote malicious users to cause a denial of service (memory corrupti...
Freebsd Freebsd 8.2
Freebsd Freebsd 8.0
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 8.1
Freebsd Freebsd 8.3
NA
CVE-2013-5710
The nullfs implementation in sys/fs/nullfs/null_vnops.c in the kernel in FreeBSD 8.3 up to and including 9.2 allows local users with certain permissions to bypass access restrictions via a hardlink in a nullfs instance to a file in a different instance.
Freebsd Freebsd 8.0
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 9.2
Freebsd Freebsd 8.4
Freebsd Freebsd 8.3
NA
CVE-2010-2020
sys/nfsclient/nfs_vfsops.c in the NFS client in the kernel in FreeBSD 7.2 up to and including 8.1-PRERELEASE, when vfs.usermount is enabled, does not validate the length of a certain fhsize parameter, which allows local users to gain privileges via a crafted mount request.
Freebsd Freebsd 8.0
Freebsd Freebsd 8.1-prerelease
Freebsd Freebsd 7.2
2 EDB exploits
NA
CVE-2009-4147
The _rtld function in the Run-Time Link-Editor (rtld) in libexec/rtld-elf/rtld.c in FreeBSD 7.1 and 8.0 does not clear the (1) LD_LIBMAP, (2) LD_LIBRARY_PATH, (3) LD_LIBMAP_DISABLE, (4) LD_DEBUG, and (5) LD_ELF_HINTS_PATH environment variables, which allows local users to gain pr...
Freebsd Freebsd 8.0
Freebsd Freebsd 7.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »