Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 4.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1669
pkg_add in FreeBSD 4.2 up to and including 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.
Freebsd Freebsd 4.4
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
NA
CVE-2002-0755
Kerberos 5 su (k5su) in FreeBSD 4.5 and previous versions does not verify that a user is a member of the wheel group before granting superuser privileges, which could allow unauthorized users to execute commands as root.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.4
NA
CVE-2002-0831
The kqueue mechanism in FreeBSD 4.3 up to and including 4.6 STABLE allows local users to cause a denial of service (kernel panic) via a pipe call in which one end is terminated and an EVFILT_WRITE filter is registered for the other end.
Freebsd Freebsd 4.6
Freebsd Freebsd 4.5
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
NA
CVE-2002-1125
FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and previous versions, including (1) asmon, (2) ascpu, (3) bubblemon, (4) wmmon, and (5) wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.4
Freebsd Freebsd 4.2
Freebsd Freebsd 4.6
Freebsd Freebsd 4.3
4 EDB exploits
NA
CVE-2002-1674
procfs on FreeBSD prior to 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.1
Freebsd Freebsd 4.4
Freebsd Freebsd 4.2
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.3
NA
CVE-2001-1034
Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for (1) faxrm or (2) faxalter.
Freebsd Freebsd 4.4
NA
CVE-2001-1185
Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges.
Freebsd Freebsd 4.4
1 EDB exploit
NA
CVE-2002-0973
Integer signedness error in several system calls for FreeBSD 4.6.1 RELEASE-p10 and previous versions may allow malicious users to access sensitive kernel memory via large negative values to the (1) accept, (2) getsockname, and (3) getpeername system calls, and the (4) vesa FBIO_G...
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.4
Freebsd Freebsd 4.6
Freebsd Freebsd 4.3
Freebsd Freebsd 4.5
Freebsd Freebsd 4.2
Freebsd Freebsd 4.1
Freebsd Freebsd 4.0
Freebsd Freebsd 4.6.1
NA
CVE-2002-0754
Kerberos 5 su (k5su) in FreeBSD 4.4 and previous versions relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.
Freebsd Heimdal 0.4e
Kth Heimdal 0.4e
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.3
Freebsd Freebsd 4.2
Freebsd Freebsd 4.1
Freebsd Freebsd 4.4
Freebsd Freebsd 4.0
NA
CVE-2004-0125
The jail system call in FreeBSD 4.x prior to 4.10-RELEASE does not verify that an attempt to manipulate routing tables originated from a non-jailed process, which could allow local users to modify the routing table.
Freebsd Freebsd 4.3
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.6
Freebsd Freebsd 4.4
Freebsd Freebsd 4.8
Freebsd Freebsd 4.7
Freebsd Freebsd 4.5
Freebsd Freebsd 4.2
Freebsd Freebsd 4.1
Freebsd Freebsd 4.9
Freebsd Freebsd 4.0
Freebsd Freebsd 4.10
Freebsd Freebsd 4.6.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »