Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbsd vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2001-1091
The (1) dump and (2) dump_lfs commands in NetBSD 1.4.x up to and including 1.5.1 do not properly drop privileges, which could allow local users to gain privileges via the RCMD_CMD environment variable.
Netbsd Netbsd 1.4
Netbsd Netbsd 1.4.1
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.4.2
Netbsd Netbsd 1.4.3
436
VMScore
CVE-2006-1589
The elf_load_file function in NetBSD 2.0 up to and including 3.0 allows local users to cause a denial of service (kernel crash) via an ELF interpreter that does not have a PT_LOAD section in its header, which triggers a null dereference.
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.1
Netbsd Netbsd 2.0
187
VMScore
CVE-2005-4691
imake in NetBSD prior to 2.0.3, NetBSD-current prior to 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatte...
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.2
Netbsd Netbsd 1.6.1
641
VMScore
CVE-2005-4776
Integer overflow in the FreeBSD compatibility code (freebsd_misc.c) in NetBSD-current, NetBSD-3, NetBSD-2.0, and NetBSD-2 prior to 20050913; and NetBSD-1.6 prior to 20050914; allows local users to cause a denial of service (heap corruption or system crash) and possibly gain root ...
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.1
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 1.6.2
Netbsd Netbsd 2.0
445
VMScore
CVE-2003-0653
The OSI networking kernel (sys/netiso) in NetBSD 1.6.1 and previous versions does not use a BSD-required "PKTHDR" mbuf when sending certain error responses to the sender of an OSI packet, which allows remote malicious users to cause a denial of service (kernel panic or ...
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.6
Netbsd Netbsd 1.5
Netbsd Netbsd 1.6.1
409
VMScore
CVE-2002-1476
Buffer overflow in setlocale in libc on NetBSD 1.4.x up to and including 1.6, and possibly other operating systems, when called with the LC_ALL category, allows local malicious users to execute arbitrary code via a user-controlled locale string that has more than 6 elements, whic...
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.6
Netbsd Netbsd 1.4
685
VMScore
CVE-2011-1547
Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 prior to 5.0.3, and 5.1 prior to 5.1.1, when IPsec is enabled, allow remote malicious users to cause a denial of service (memory corruption and panic) or possibly have unspecified other impact via a craft...
Netbsd Netbsd 5.0
Netbsd Netbsd 5.0.1
Netbsd Netbsd 5.0.2
Netbsd Netbsd 5.1
Netbsd Netbsd 4.0
1 EDB exploit
668
VMScore
CVE-2002-1194
Buffer overflow in talkd on NetBSD 1.6 and previous versions, and possibly other operating systems, may allow remote malicious users to execute arbitrary code via a long inbound message.
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.6
436
VMScore
CVE-2005-4782
NetBSD 2.0 prior to 2.0.4, 2.1 prior to 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service (kernel assertion panic) via a negative linger time in the SO_LINGER socket option.
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.1
436
VMScore
CVE-2006-3202
The ip6_savecontrol function in NetBSD 2.0 up to and including 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service (crash) by creating an IPv4-m...
Netbsd Netbsd 2.1
Netbsd Netbsd 3.0
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »