Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbsd netbsd 3.0 vulnerabilities and exploits
(subscribe to this query)
151
VMScore
CVE-2006-6655
The procfs implementation in NetBSD-current prior to 20061023, NetBSD 3.0 and 3.0.1 prior to 20061024, and NetBSD 2.x prior to 20061029 allows local users to cause a denial of service (kernel panic) by attempting to access /emul/linux/proc/0/stat on a procfs filesystem that was m...
Netbsd Netbsd 3.0
Netbsd Netbsd 3.0.1
Netbsd Netbsd 2.0
Netbsd Netbsd 2.1
383
VMScore
CVE-2006-6654
The sendmsg function in NetBSD-current prior to 20061023, NetBSD 3.0 and 3.0.1 prior to 20061024, and NetBSD 2.x prior to 20061029, when run on a 64-bit architecture, allows malicious users to cause a denial of service (kernel panic) via an invalid msg_controllen parameter to the...
Netbsd Netbsd 2.0
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 3.0.1
187
VMScore
CVE-2006-6656
Unspecified vulnerability in ptrace in NetBSD-current prior to 20061027, NetBSD 3.0 and 3.0.1 prior to 20061027, and NetBSD 2.x prior to 20061119 allows local users to read kernel memory and obtain sensitive information via certain manipulations of a PT_LWPINFO request, which lea...
Netbsd Netbsd 2.0
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 3.0.1
187
VMScore
CVE-2006-6657
The if_clone_list function in NetBSD-current prior to 20061027, NetBSD 3.0 and 3.0.1 prior to 20061027, and NetBSD 2.x prior to 20061119 allows local users to read potentially sensitive, uninitialized stack memory via unspecified vectors.
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 3.0.1
Netbsd Netbsd 2.0
151
VMScore
CVE-2006-6653
The accept function in NetBSD-current prior to 20061023, NetBSD 3.0 and 3.0.1 prior to 20061024, and NetBSD 2.x prior to 20061029 allows local users to cause a denial of service (socket consumption) via an invalid (1) name or (2) namelen parameter, which may result in the socket ...
Netbsd Netbsd 2.0
Netbsd Netbsd 3.0
Netbsd Netbsd 3.0.1
Netbsd Netbsd Current
187
VMScore
CVE-2007-3654
The display driver allocattr functions in NetBSD 3.0 up to and including 4.0_BETA2, and NetBSD-current prior to 20070728, allow local users to cause a denial of service (panic) via a (1) negative or (2) large value in an ioctl call, as demonstrated by the vga_allocattr function.
Netbsd Netbsd 3.0.1
Netbsd Netbsd 3.0.2
Netbsd Netbsd 4.0
Netbsd Netbsd 3.0
828
VMScore
CVE-2008-3584
NetBSD 3.0, 3.1, and 4.0, when a pppoe instance exists, does not properly check the length of a PPPoE packet tag, which allows remote malicious users to cause a denial of service (system crash) via a crafted PPPoE packet.
Netbsd Netbsd 3.0
Netbsd Netbsd 3.1
Netbsd Netbsd 4.0
436
VMScore
CVE-2006-3202
The ip6_savecontrol function in NetBSD 2.0 up to and including 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service (crash) by creating an IPv4-m...
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.0
436
VMScore
CVE-2006-1589
The elf_load_file function in NetBSD 2.0 up to and including 3.0 allows local users to cause a denial of service (kernel crash) via an ELF interpreter that does not have a PT_LOAD section in its header, which triggers a null dereference.
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.1
Netbsd Netbsd 2.0
187
VMScore
CVE-2006-1588
The bridge ioctl (if_bridge code) in NetBSD 1.6 up to and including 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to obtain portions of kernel memory.
Netbsd Netbsd 1.6
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 1.6.1
Netbsd Netbsd 1.6.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »