Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2014-1452
Stack-based buffer overflow in lib/snmpagent.c in bsnmpd, as used in FreeBSD 8.3 up to and including 10.0, allows remote malicious users to cause a denial of service (daemon crash) and possibly execute arbitrary code via a crafted GETBULK PDU request.
Freebsd Freebsd 10.0
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 9.2
Freebsd Freebsd 8.4
Freebsd Freebsd 8.3
6.9
CVSSv2
CVE-2008-0217
The script program in FreeBSD 5.0 up to and including 7.0-PRERELEASE invokes openpty, which creates a pseudo-terminal with world-readable and world-writable permissions when it is not run as root, which allows local users to read data from the terminal of the user running script.
Freebsd Freebsd 6.0
Freebsd Freebsd 6.1
Freebsd Freebsd 6.2
Freebsd Freebsd 7.0
Freebsd Freebsd 5.0
Freebsd Freebsd 5.5
3.6
CVSSv2
CVE-2004-0435
Certain "programming errors" in the msync system call for FreeBSD 5.2.1 and previous versions, and 4.10 and previous versions, do not properly handle the MS_INVALIDATE operation, which leads to cache consistency problems that allow a local user to prevent certain change...
Freebsd Freebsd 4.8
Freebsd Freebsd 4.10
Freebsd Freebsd 4.9
Freebsd Freebsd 5.2
Freebsd Freebsd 5.2.1
Freebsd Freebsd 4.0
7.2
CVSSv2
CVE-2005-2218
The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process.
Freebsd Freebsd 5.1
Freebsd Freebsd 5.0
Freebsd Freebsd 5.2
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.4
Freebsd Freebsd 5.3
4
CVSSv2
CVE-2014-1453
The NFS server (nfsserver) in FreeBSD 8.3 up to and including 10.0 does not acquire locks in the proper order when converting a directory file handle to a vnode, which allows remote authenticated users to cause a denial of service (deadlock) via vectors involving a thread that us...
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 8.4
Freebsd Freebsd 9.2
Freebsd Freebsd 10.0
Freebsd Freebsd 8.3
1.2
CVSSv2
CVE-2002-1674
procfs on FreeBSD prior to 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to.
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
Freebsd Freebsd 4.5
Freebsd Freebsd 4.1
Freebsd Freebsd 4.1.1
7.2
CVSSv2
CVE-2006-4172
Integer overflow vulnerability in the i386_set_ldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2006-4178.
Freebsd Freebsd 5.2
Freebsd Freebsd 5.4
Freebsd Freebsd
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.3
1 Github repository
4.9
CVSSv2
CVE-2006-4178
Integer signedness error in the i386_set_ldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service (crash) via unspecified arguments that use negative signed integers to cause the bzero function to be called with a large l...
Freebsd Freebsd 5.4
Freebsd Freebsd
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.3
Freebsd Freebsd 5.2
1 EDB exploit
1 Github repository
7.5
CVSSv2
CVE-2000-0388
Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable.
Freebsd Freebsd 3.3
Freebsd Freebsd 3.4
Freebsd Freebsd 3.0
Freebsd Freebsd 3.2
Freebsd Freebsd 3.1
7.2
CVSSv2
CVE-2010-2693
FreeBSD 7.1 up to and including 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.
Freebsd Freebsd 7.1
Freebsd Freebsd 7.2
Freebsd Freebsd 7.3
Freebsd Freebsd 8.0
Freebsd Freebsd 8.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »