Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

openbsd openbsd 4.6 vulnerabilities and exploits

(subscribe to this query)
4.9
CVSSv2
CVE-2009-3572
OpenBSD 4.4, 4.5, and 4.6, when running on an i386 kernel, does not properly handle XMM exceptions, which allows local users to cause a denial of service (kernel panic) via unspecified vectors.
Openbsd Openbsd 4.5Openbsd Openbsd 4.4Openbsd Openbsd 4.6
5
CVSSv2
CVE-2010-4816
It was found in FreeBSD 8.0, 6.3 and 4.9, and OpenBSD 4.6 that a null pointer dereference in ftpd/popen.c may lead to remote denial of service of the ftpd service.
Openbsd Openbsd 4.6Openbsd Openbsd 4.9Openbsd Openbsd 6.3Openbsd Openbsd 8.0
6.5
CVSSv2
CVE-2008-1657
OpenSSH 4.4 up to versions prior to 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file.
Openbsd Openssh 4.4Openbsd Openssh 4.4p1Openbsd Openssh 4.5Openbsd Openssh 4.6Openbsd Openssh 4.7Openbsd Openssh 4.8
5
CVSSv2
CVE-2011-2168
Multiple integer overflows in the glob implementation in libc in OpenBSD prior to 4.9 might allow context-dependent malicious users to have an unspecified impact via a crafted string, related to the GLOB_APPEND and GLOB_DOOFFS flags, a different issue than CVE-2011-0418.
Openbsd Openbsd 4.1Openbsd Openbsd 3.7Openbsd Openbsd 2.8Openbsd Openbsd 3.8Openbsd Openbsd 4.4Openbsd Openbsd 3.1Openbsd Openbsd 3.3Openbsd Openbsd 2.9Openbsd Openbsd 4.7Openbsd Openbsd 2.1Openbsd Openbsd 2.2Openbsd Openbsd 3.9Openbsd Openbsd 2.0Openbsd Openbsd 2.7Openbsd Openbsd 3.2Openbsd Openbsd 4.5Openbsd Openbsd 2.4Openbsd Openbsd 4.2Openbsd Openbsd 3.6Openbsd Openbsd 3.0Openbsd Openbsd 4.0Openbsd Openbsd 3.5
5
CVSSv2
CVE-2002-1220
BIND 8.3.x up to and including 8.3.3 allows remote malicious users to cause a denial of service (termination due to assertion failure) via a request for a subdomain that does not exist, with an OPT resource record with a large UDP payload size.
Isc Bind 8.3.3Isc Bind 8.3.1Isc Bind 8.3.2Isc Bind 8.3.0Openbsd Openbsd 3.2Openbsd Openbsd 3.0Openbsd Openbsd 3.1Freebsd Freebsd 4.4Freebsd Freebsd 4.5Freebsd Freebsd 4.6Freebsd Freebsd 4.7
3.5
CVSSv2
CVE-2011-5000
The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and previous versions, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may...
Openbsd Openssh 5.5Openbsd Openssh 5.4Openbsd Openssh 4.6Openbsd Openssh 4.5Openbsd Openssh 4.0Openbsd Openssh 4.1Openbsd Openssh 3.8.1p1Openbsd Openssh 3.9Openbsd Openssh 3.0p1Openbsd Openssh 3.0.2Openbsd Openssh 3.5p1Openbsd Openssh 3.6Openbsd Openssh 3.2.2Openbsd Openssh 3.2.2p1Openbsd Openssh 1.2.3Openbsd Openssh 1.2.1Openbsd OpensshOpenbsd Openssh 5.1Openbsd Openssh 5.0Openbsd Openssh 4.1p1Openbsd Openssh 4.3p2Openbsd Openssh 4.4
1.2
CVSSv2
CVE-2008-3259
OpenSSH prior to 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
Openbsd Openssh 1.2.3Openbsd Openssh 1.3Openbsd Openssh 2.3.1Openbsd Openssh 2.5Openbsd Openssh 2.9p2Openbsd Openssh 3.0Openbsd Openssh 3.1p1Openbsd Openssh 3.2Openbsd Openssh 3.5Openbsd Openssh 3.5p1Openbsd Openssh 3.7.1p1Openbsd Openssh 3.7.1p2Openbsd Openssh 4.0Openbsd Openssh 4.0p1Openbsd Openssh 4.4Openbsd Openssh 4.4p1Openbsd Openssh 1.5Openbsd Openssh 1.5.7Openbsd Openssh 2.5.1Openbsd Openssh 2.5.2Openbsd Openssh 3.0.1Openbsd Openssh 3.0.1p1
5
CVSSv2
CVE-2007-2243
OpenSSH 4.6 and previous versions, when ChallengeResponseAuthentication is enabled, allows remote malicious users to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a different response if the user account exists, a similar issue t...
Openbsd Openssh 2.1Openbsd Openssh 2.1.1Openbsd Openssh 2.9.9Openbsd Openssh 2.9.9p2Openbsd Openssh 3.0p1Openbsd Openssh 3.1Openbsd Openssh 3.3p1Openbsd Openssh 3.4Openbsd Openssh 3.6.1p2Openbsd Openssh 3.7Openbsd Openssh 3.9.1Openbsd Openssh 3.9.1p1Openbsd Openssh 4.3Openbsd Openssh 4.3p1Openbsd Openssh 1.2.27Openbsd Openssh 1.2.3Openbsd Openssh 2.5.2Openbsd Openssh 2.9Openbsd Openssh 3.0.2Openbsd Openssh 3.0.2p1Openbsd Openssh 3.2.3p1Openbsd Openssh 3.3
2.1
CVSSv2
CVE-2011-4327
ssh-keysign.c in ssh-keysign in OpenSSH prior to 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
Openbsd Openssh 5.4Openbsd Openssh 5.3Openbsd Openssh 5.2Openbsd Openssh 5.1Openbsd Openssh 4.1p1Openbsd Openssh 4.1Openbsd Openssh 4.0p1Openbsd Openssh 4.0Openbsd Openssh 3.6.1Openbsd Openssh 3.6Openbsd Openssh 3.5p1Openbsd Openssh 3.5Openbsd Openssh 3.0.1p1Openbsd Openssh 3.0.1Openbsd Openssh 3.0Openbsd Openssh 2.9p2Openbsd Openssh 1.5.8Openbsd Openssh 1.5.7Openbsd Openssh 1.5Openbsd Openssh 1.3Openbsd Openssh 4.6Openbsd Openssh 4.5
3.5
CVSSv2
CVE-2012-0814
The auth_parse_options function in auth-options.c in sshd in OpenSSH prior to 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by ...
Openbsd Openssh 5.4Openbsd Openssh 2Openbsd Openssh 3.8Openbsd Openssh 3.8.1p1Openbsd Openssh 4.3p2Openbsd Openssh 3.2.2Openbsd Openssh 3.1Openbsd Openssh 5.5Openbsd Openssh 3.0.2p1Openbsd Openssh 1.5.8Openbsd Openssh 5.3Openbsd Openssh 4.1Openbsd Openssh 3.8.1Openbsd Openssh 2.1.1Openbsd Openssh 3.7.1p2Openbsd Openssh 4.8Openbsd Openssh 4.9Openbsd Openssh 3.2.3p1Openbsd Openssh 3.1p1Openbsd Openssh 2.5.1Openbsd Openssh 2.9.9p2Openbsd Openssh 3.6.1p2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook