Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openbsd openbsd vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2006-6164
The _dl_unsetenv function in loader.c in the ELF ld.so in OpenBSD 3.9 and 4.0 does not properly remove duplicate environment variables, which allows local users to pass dangerous variables such as LD_PRELOAD to loading processes, which might be leveraged to gain privileges.
Openbsd Openbsd 4.0
Openbsd Openbsd 3.9
4.6
CVSSv2
CVE-2004-0482
Multiple integer overflows in (1) procfs_cmdline.c, (2) procfs_fpregs.c, (3) procfs_linux.c, (4) procfs_regs.c, (5) procfs_status.c, and (6) procfs_subr.c in procfs for OpenBSD 3.5 and previous versions allow local users to read sensitive kernel memory and possibly perform other ...
Openbsd Openbsd 3.5
Openbsd Openbsd 3.4
4.9
CVSSv2
CVE-2002-2188
OpenBSD prior to 3.2 allows local users to cause a denial of service (kernel crash) via a call to getrlimit(2) with invalid arguments, possibly due to an integer signedness error.
Openbsd Openbsd 3.0
Openbsd Openbsd 3.1
7.2
CVSSv2
CVE-2002-1420
Integer signedness error in select() on OpenBSD 3.1 and previous versions allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a...
Openbsd Openbsd 3.1
Openbsd Openbsd 3.0
4.9
CVSSv2
CVE-2016-6350
OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (NULL pointer dereference and panic) via a sysctl call with a path starting with 10,9.
Openbsd Openbsd 5.9
Openbsd Openbsd 5.8
7.8
CVSSv2
CVE-2008-1058
The tcp_respond function in netinet/tcp_subr.c in OpenBSD 4.1 and 4.2 allows malicious users to cause a denial of service (panic) via crafted TCP packets. NOTE: some of these details are obtained from third party information.
Openbsd Openbsd 4.1
Openbsd Openbsd 4.2
5
CVSSv2
CVE-2006-4436
isakmpd in OpenBSD 3.8, 3.9, and possibly earlier versions, creates Security Associations (SA) with a replay window of size 0 when isakmpd acts as a responder during SA negotiation, which allows remote malicious users to replay IPSec packets and bypass the replay protection.
Openbsd Openbsd 3.8
Openbsd Openbsd 3.9
5
CVSSv2
CVE-2005-0960
Multiple vulnerabilities in the SACK functionality in (1) tcp_input.c and (2) tcp_usrreq.c OpenBSD 3.5 and 3.6 allow remote malicious users to cause a denial of service (memory exhaustion or system crash).
Openbsd Openbsd 3.5
Openbsd Openbsd 3.6
4.9
CVSSv2
CVE-2006-4435
OpenBSD 3.8, 3.9, and possibly earlier versions allows context-dependent malicious users to cause a denial of service (kernel panic) by allocating more semaphores than the default.
Openbsd Openbsd 3.9
Openbsd Openbsd 3.8
5
CVSSv2
CVE-2009-0780
The aspath_prepend function in rde_attr.c in bgpd in OpenBSD 4.3 and 4.4 allows remote malicious users to cause a denial of service (application crash) via an Autonomous System (AS) advertisement containing a long AS path.
Openbsd Openbsd 4.4
Openbsd Openbsd 4.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »