Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 5.1 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2004-0618
FreeBSD 5.1 for the Alpha processor allows local users to cause a denial of service (crash) via an execve system call with an unaligned memory address as an argument.
Freebsd Freebsd 4.10
Freebsd Freebsd 5.1
Freebsd Freebsd 5.2.1
1 EDB exploit
4.6
CVSSv2
CVE-2004-0126
The jail_attach system call in FreeBSD 5.1 and 5.2 changes the directory of a calling process even if the process doesn't have permission to change directory, which allows local users to gain read/write privileges to files and directories within another jail.
Freebsd Freebsd 5.1
Freebsd Freebsd 5.2
Freebsd Freebsd 5.2.1
4.6
CVSSv2
CVE-2004-0919
The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordinates or (2) large coordinates.
Freebsd Freebsd 5.0
Freebsd Freebsd 5.1
Freebsd Freebsd 5.2
Freebsd Freebsd 5.2.1
4.6
CVSSv2
CVE-2004-0099
mksnap_ffs in FreeBSD 5.1 and 5.2 only sets the snapshot flag when creating a snapshot for a file system, which causes default values for other flags to be used, possibly disabling security-critical settings and allowing a local user to bypass intended access restrictions.
Freebsd Freebsd 5.1
Freebsd Freebsd 5.2.1
7.2
CVSSv2
CVE-2005-2218
The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process.
Freebsd Freebsd 5.1
Freebsd Freebsd 5.0
Freebsd Freebsd 5.2
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.4
Freebsd Freebsd 5.3
6.4
CVSSv2
CVE-2006-2654
Directory traversal vulnerability in smbfs smbfs on FreeBSD 4.10 up to 6.1 allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences. NOTE: this is similar to CVE-2006-1864, but this is a different implementation of smbfs, so it...
Freebsd Freebsd 5.0
Freebsd Freebsd 5.1
Freebsd Freebsd 5.3
Freebsd Freebsd 6.0
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.4
Freebsd Freebsd 5.2
4.6
CVSSv2
CVE-2005-1400
The i386_get_ldt system call in FreeBSD 4.7 to 4.11 and 5.x to 5.4 allows local users to access sensitive kernel memory via arguments with negative or very large values.
Freebsd Freebsd 4.11
Freebsd Freebsd 4.7
Freebsd Freebsd 4.8
Freebsd Freebsd 4.9
Freebsd Freebsd 4.10
Freebsd Freebsd 5.1
Freebsd Freebsd 5.3
Freebsd Freebsd 5.2
Freebsd Freebsd 5.4
2.1
CVSSv2
CVE-2006-0055
The ispell_op function in ee on FreeBSD 4.10 to 6.0 uses predictable filenames and does not confirm which file is being written, which allows local users to overwrite arbitrary files via a symlink attack when ee invokes ispell.
Freebsd Freebsd 4.11
Freebsd Freebsd 5.1
Freebsd Freebsd 5.3
Freebsd Freebsd 4.10
Freebsd Freebsd 5.0
Freebsd Freebsd 6.0
Freebsd Freebsd 5.4
Freebsd Freebsd 5.2
Freebsd Freebsd 5.2.1
4.6
CVSSv2
CVE-2005-1399
FreeBSD 4.6 to 4.11 and 5.x to 5.4 uses insecure default permissions for the /dev/iir device, which allows local users to execute restricted ioctl calls to read or modify data on hardware that is controlled by the iir driver.
Freebsd Freebsd 4.8
Freebsd Freebsd 4.9
Freebsd Freebsd 5.1
Freebsd Freebsd 5.2
Freebsd Freebsd 4.10
Freebsd Freebsd 4.6
Freebsd Freebsd 5.4
Freebsd Freebsd 4.11
Freebsd Freebsd 4.7
Freebsd Freebsd 5.3
5
CVSSv2
CVE-2004-0171
FreeBSD 5.1 and previous versions, and Mac OS X prior to 10.3.4, allows remote malicious users to cause a denial of service (resource exhaustion of memory buffers and system crash) via a large number of out-of-sequence TCP packets, which prevents the operating system from creatin...
Freebsd Freebsd 4.6.2
Freebsd Freebsd 4.7
Openbsd Openbsd 3.4
Freebsd Freebsd 4.8
Freebsd Freebsd 4.9
Freebsd Freebsd 5.2
Openbsd Openbsd 3.3
Freebsd Freebsd 5.0
Freebsd Freebsd 5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »