Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 4.4 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2002-1669
pkg_add in FreeBSD 4.2 up to and including 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.
Freebsd Freebsd 4.4
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
2.1
CVSSv2
CVE-2002-1125
FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and previous versions, including (1) asmon, (2) ascpu, (3) bubblemon, (4) wmmon, and (5) wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.6
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
4 EDB exploits
2.1
CVSSv2
CVE-2002-0831
The kqueue mechanism in FreeBSD 4.3 up to and including 4.6 STABLE allows local users to cause a denial of service (kernel panic) via a pipe call in which one end is terminated and an EVFILT_WRITE filter is registered for the other end.
Freebsd Freebsd 4.6
Freebsd Freebsd 4.4
Freebsd Freebsd 4.5
Freebsd Freebsd 4.3
2.1
CVSSv2
CVE-2001-1029
libutil in OpenSSH on FreeBSD 4.4 and previous versions does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or...
Openbsd Openssh 4.5
Freebsd Freebsd
1 EDB exploit
2.1
CVSSv2
CVE-1999-1394
BSD 4.4 based operating systems, when running at security level 1, allow the root user to clear the immutable and append-only flags for files by unmounting the file system and using a file system editor such as fsdb to directly modify the file through a device.
Bsd Bsd 4.4
1 EDB exploit
2.1
CVSSv2
CVE-1999-1214
The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID.
Sgi Irix
Bsd Bsd
Bsd Bsd 4.4
Openbsd Openbsd 2.1
Freebsd Freebsd 6.2
Netbsd Netbsd 2.0.4
2.1
CVSSv2
CVE-1999-1402
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems prior to 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.
Freebsd Freebsd 2.2.5
Freebsd Freebsd 2.2.6
Sun Solaris 2.5.1
Freebsd Freebsd 2.2.3
Freebsd Freebsd 2.2.4
Sun Sunos 5.5
Sun Sunos 5.5.1
Freebsd Freebsd 2.2.8
Freebsd Freebsd 3.0
Sun Solaris 2.5
Sun Solaris 2.6
Freebsd Freebsd 2.2.2
Freebsd Freebsd 3.1
Sun Sunos 5.0
Sun Sunos -
Sun Sunos 4.0
1 EDB exploit
1.2
CVSSv2
CVE-2002-1674
procfs on FreeBSD prior to 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to.
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
Freebsd Freebsd 4.5
Freebsd Freebsd 4.1
Freebsd Freebsd 4.1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6