Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 4.4 vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2002-1669
pkg_add in FreeBSD 4.2 up to and including 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.
Freebsd Freebsd 4.4
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
641
VMScore
CVE-2002-0755
Kerberos 5 su (k5su) in FreeBSD 4.5 and previous versions does not verify that a user is a member of the wheel group before granting superuser privileges, which could allow unauthorized users to execute commands as root.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.4
187
VMScore
CVE-2002-0831
The kqueue mechanism in FreeBSD 4.3 up to and including 4.6 STABLE allows local users to cause a denial of service (kernel panic) via a pipe call in which one end is terminated and an EVFILT_WRITE filter is registered for the other end.
Freebsd Freebsd 4.6
Freebsd Freebsd 4.4
Freebsd Freebsd 4.5
Freebsd Freebsd 4.3
230
VMScore
CVE-2002-1125
FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and previous versions, including (1) asmon, (2) ascpu, (3) bubblemon, (4) wmmon, and (5) wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.6
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
4 EDB exploits
107
VMScore
CVE-2002-1674
procfs on FreeBSD prior to 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to.
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
Freebsd Freebsd 4.5
Freebsd Freebsd 4.1
Freebsd Freebsd 4.1.1
641
VMScore
CVE-2001-1034
Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for (1) faxrm or (2) faxalter.
Freebsd Freebsd 4.4
625
VMScore
CVE-2001-1185
Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges.
Freebsd Freebsd 4.4
1 EDB exploit
409
VMScore
CVE-2002-0973
Integer signedness error in several system calls for FreeBSD 4.6.1 RELEASE-p10 and previous versions may allow malicious users to access sensitive kernel memory via large negative values to the (1) accept, (2) getsockname, and (3) getpeername system calls, and the (4) vesa FBIO_G...
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.2
Freebsd Freebsd 4.5
Freebsd Freebsd 4.3
Freebsd Freebsd 4.6
Freebsd Freebsd 4.0
Freebsd Freebsd 4.1
Freebsd Freebsd 4.6.1
Freebsd Freebsd 4.4
641
VMScore
CVE-2002-0754
Kerberos 5 su (k5su) in FreeBSD 4.4 and previous versions relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.
Freebsd Heimdal 0.4e
Kth Heimdal 0.4e
Freebsd Freebsd 4.0
Freebsd Freebsd 4.1
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
641
VMScore
CVE-2004-0125
The jail system call in FreeBSD 4.x prior to 4.10-RELEASE does not verify that an attempt to manipulate routing tables originated from a non-jailed process, which could allow local users to modify the routing table.
Freebsd Freebsd 4.0
Freebsd Freebsd 4.1
Freebsd Freebsd 4.3
Freebsd Freebsd 4.5
Freebsd Freebsd 4.6
Freebsd Freebsd 4.8
Freebsd Freebsd 4.2
Freebsd Freebsd 4.4
Freebsd Freebsd 4.6.2
Freebsd Freebsd 4.7
Freebsd Freebsd 4.9
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.10
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »