Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-1184
telnetd in FreeBSD 4.2 and previous versions, and possibly other operating systems, allows remote malicious users to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources as the server processes the file.
Freebsd Freebsd 4.1
Freebsd Freebsd 3.5.1
Freebsd Freebsd 3.0
Freebsd Freebsd 4.0
Freebsd Freebsd 4.1.1
7.2
CVSSv2
CVE-2010-2693
FreeBSD 7.1 up to and including 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.
Freebsd Freebsd 7.1
Freebsd Freebsd 8.0
Freebsd Freebsd 7.3
Freebsd Freebsd 7.2
Freebsd Freebsd 8.1
1 EDB exploit
2.1
CVSSv2
CVE-2007-6150
The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 up to and including 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accessed random values, which could be leveraged to bypass protection mechanisms that re...
Freebsd Freebsd 6.1
Freebsd Freebsd 6.3
Freebsd Freebsd 5.5
Freebsd Freebsd 6.2
Freebsd Freebsd 7.0
2.1
CVSSv2
CVE-2002-1125
FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and previous versions, including (1) asmon, (2) ascpu, (3) bubblemon, (4) wmmon, and (5) wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.4
Freebsd Freebsd 4.2
Freebsd Freebsd 4.6
Freebsd Freebsd 4.3
4 EDB exploits
7.5
CVSSv2
CVE-2000-1167
ppp utility in FreeBSD 4.1.1 and previous versions does not properly restrict access as specified by the "nat deny_incoming" command, which allows remote malicious users to connect to the target system.
Freebsd Freebsd 4.1.1
Freebsd Freebsd 3.5.1
Freebsd Freebsd 4.1
Freebsd Freebsd 4.0
Freebsd Freebsd 3.5
7.2
CVSSv2
CVE-2000-0998
Format string vulnerability in top program allows local malicious users to gain root privileges via the "kill" or "renice" function.
Freebsd Freebsd 3.5
Freebsd Freebsd 3.5.1
Freebsd Freebsd 4.1
Freebsd Freebsd 4.0
Freebsd Freebsd 4.1.1
2 EDB exploits
1 Github repository
10
CVSSv2
CVE-2014-3954
Stack-based buffer overflow in rtsold in FreeBSD 9.1 up to and including 10.1-RC2 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via crafted DNS parameters in a router advertisement message.
Freebsd Freebsd 10.0
Freebsd Freebsd 9.3
Freebsd Freebsd 10.1
Freebsd Freebsd 9.1
Freebsd Freebsd 9.2
7.5
CVSSv2
CVE-2016-6559
Improper bounds checking of the obuf variable in the link_ntoa() function in linkaddr.c of the BSD libc library may allow an malicious user to read or write from memory. The full impact and severity depends on the method of exploit and how the library is used by applications. Acc...
Freebsd Freebsd 11.0
Freebsd Freebsd 10.3
Freebsd Freebsd 10.2
Freebsd Freebsd 9.3
Freebsd Freebsd 10.1
7.2
CVSSv2
CVE-2002-0754
Kerberos 5 su (k5su) in FreeBSD 4.4 and previous versions relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.
Freebsd Heimdal 0.4e
Kth Heimdal 0.4e
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.3
Freebsd Freebsd 4.2
Freebsd Freebsd 4.1
Freebsd Freebsd 4.4
Freebsd Freebsd 4.0
3.6
CVSSv2
CVE-2009-2208
FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFO_IN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU.
Freebsd Freebsd 6.4
Freebsd Freebsd 6.3
Freebsd Freebsd 6.3 Releng
Freebsd Freebsd 7.1
Freebsd Freebsd 7.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29824
CVE-2024-30095
CVE-2024-30104
client side
CVE-2024-5840
CVE-2024-34405
unprivileged
wireless
CVE-2024-4577
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »