Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbsd netbsd 1.6 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4741
NetBSD 1.6, NetBSD 2.0 up to and including 2.1, and NetBSD-current prior to 20051031 allows local users to gain privileges by attaching a debugger to a setuid/setgid (P_SUGID) process that performs an exec without a reset of real credentials.
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.2
Netbsd Netbsd 2.1
Netbsd Netbsd 1.6.1
NA
CVE-2006-0145
The kernfs_xread function in kernfs in NetBSD 1.6 up to and including 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges vi...
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.1
Netbsd Netbsd 2.1
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 1.6.2
NA
CVE-2006-1814
NetBSD 1.6, 2.0, 2.1 and 3.0 allows local users to cause a denial of service (memory exhaustion) by using the sysctl system call to lock a large buffer into physical memory.
Netbsd Netbsd 1.6.2
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.1
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
NA
CVE-2002-1490
NetBSD 1.4 up to and including 1.6 beta allows local users to cause a denial of service (kernel panic) via a series of calls to the TIOCSCTTY ioctl, which causes an integer overflow in a structure counter and sets the counter to zero, which frees memory that is still in use by ot...
Netbsd Netbsd 1.4.1
Netbsd Netbsd 1.4.2
Netbsd Netbsd 1.6
Netbsd Netbsd 1.4.3
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5
Netbsd Netbsd 1.4
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.3
NA
CVE-2006-1833
Intel RNG Driver in NetBSD 1.6 up to and including 3.0 may incorrectly detect the presence of the pchb interface, which will cause it to always generate the same random number, which allows remote malicious users to more easily crack encryption keys generated from the interface.
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.1
Netbsd Netbsd 1.6.2
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.1
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
NA
CVE-2006-1587
NetBSD 1.6 up to 3.0, when a user has "set record" in .mailrc with the default umask set, creates the record file with 0644 permissions, which allows local users to read the record file.
Netbsd Netbsd 1.6.2
Netbsd Netbsd 1.6
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 1.6.1
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
NA
CVE-2006-1588
The bridge ioctl (if_bridge code) in NetBSD 1.6 up to and including 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to obtain portions of kernel memory.
Netbsd Netbsd 1.6
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 1.6.1
Netbsd Netbsd 1.6.2
NA
CVE-2006-1797
The kernel in NetBSD-current before September 28, 2005 allows local users to cause a denial of service (system crash) by using the SIOCGIFALIAS ioctl to gather information on a non-existent alias of a network interface, which causes a NULL pointer dereference.
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 1.6
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.1
Netbsd Netbsd 2.0
Netbsd Netbsd 1.6.1
Netbsd Netbsd 1.6.2
Netbsd Netbsd 3.0
NA
CVE-2003-0730
Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote malicious users to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks.
Xfree86 Project X11r6 4.2.1
Xfree86 Project X11r6 4.3.0
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.1
NA
CVE-2002-2245
ftpd in NetBSD 1.5 up to and including 1.5.3 and 1.6 does not properly quote a digit in response to a STAT command for a filename that contains a carriage return followed by a digit, which can cause firewalls and other intermediary devices to lose proper track of the FTP session.
Netbsd Ftpd 1.5.1
Netbsd Ftpd 1.5.2
Netbsd Ftpd 1.5.3
Netbsd Ftpd 1.6
Netbsd Ftpd 1.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »