CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2013-5209 – FreeBSD Security Advisory - sctp Kernel Memory Disclosure
https://notcve.org/view.php?id=CVE-2013-5209
23 Aug 2013 — The sctp_send_initiate_ack function in sys/netinet/sctp_output.c in the SCTP implementation in the kernel in FreeBSD 8.3 through 9.2-PRERELEASE does not properly initialize the state-cookie data structure, which allows remote attackers to obtain sensitive information from kernel stack memory by reading packet data in INIT-ACK chunks. La función sctp_send_initiate_ack en sys/netinet/sctp_output.c en la implementación SCTP en el núcleo de FreeBSD v8.3 hasta v9.2-PRERELEASE, no inicializa correctamente la estr... • http://svnweb.freebsd.org/base?view=revision&revision=254338 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2013-3077 – FreeBSD Security Advisory - IP_MSFILTER Integer Overflow
https://notcve.org/view.php?id=CVE-2013-3077
23 Aug 2013 — Multiple integer overflows in the IP_MSFILTER and IPV6_MSFILTER features in (1) sys/netinet/in_mcast.c and (2) sys/netinet6/in6_mcast.c in the multicast implementation in the kernel in FreeBSD 8.3 through 9.2-PRERELEASE allow local users to bypass intended restrictions on kernel-memory read and write operations, and consequently gain privileges, via vectors involving a large number of source-filter entries. Múltiples desbordamientos de entero en funcionalidades IP_MSFILTER y IPV6_MSFILTER en (1) sys/netinet... • http://svnweb.freebsd.org/base?view=revision&revision=254629 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2013-4851 – FreeBSD Security Advisory - NFS Incorrect Privilege Validation
https://notcve.org/view.php?id=CVE-2013-4851
28 Jul 2013 — The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entries on the basis of group information sent by the client, which allows remote attackers to bypass file permissions on NFS filesystems via crafted requests. La función vfs_hang_addrlist en sys/kern/vfs_export.c en la implementación del servidor NFS en el kernel de FreeBSD 8.3 y 9.x a la 9.1-RELEASE-p5 controla la... • http://svnweb.freebsd.org/base?view=revision&revision=244226 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 70%CPEs: 109EXPL: 0CVE-2013-4854 – ISC BIND rdata Denial Of Service Vulnerability
https://notcve.org/view.php?id=CVE-2013-4854
26 Jul 2013 — The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013. La implementación RFC en rdata.c en ISC BIND 9.7.x y 9.8.x anterior a 9.8.5-P2, ... • http://archives.neohapsis.com/archives/bugtraq/2013-08/0030.html •
CVSS: 7.8EPSS: 24%CPEs: 3EXPL: 7CVE-2013-2171 – FreeBSD 9 Address Space Manipulation Privilege Escalation
https://notcve.org/view.php?id=CVE-2013-2171
18 Jun 2013 — The vm_map_lookup function in sys/vm/vm_map.c in the mmap implementation in the kernel in FreeBSD 9.0 through 9.1-RELEASE-p4 does not properly determine whether a task should have write access to a memory location, which allows local users to bypass filesystem write permissions and consequently gain privileges via a crafted application that leverages read permissions, and makes mmap and ptrace system calls. La función vm_map_lookup en sys/vm/vm_map.c en la ejecución de "mmap" en el kernel en FreeBSD v9.0 ha... • https://packetstorm.news/files/id/122135 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 2%CPEs: 6EXPL: 0CVE-2013-3266 – Debian Security Advisory 2672-1
https://notcve.org/view.php?id=CVE-2013-3266
30 Apr 2013 — The nfsrvd_readdir function in sys/fs/nfsserver/nfs_nfsdport.c in the new NFS server in FreeBSD 8.0 through 9.1-RELEASE-p3 does not verify that a READDIR request is for a directory node, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by specifying a plain file instead of a directory. La función nfsrvd_readdir en sys/fs/nfsserver/nfs_nfsdport.c en el nuevo servidor NFS en FreeBSD v8.0 a través de v9.1-RELEASE-p3 no verifica que la solicitud R... • http://secunia.com/advisories/53241 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 1%CPEs: 9EXPL: 0CVE-2013-0211 – Gentoo Linux Security Advisory 201406-02
https://notcve.org/view.php?id=CVE-2013-0211
19 Apr 2013 — Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers to cause a denial of service (crash) via unspecified vectors, which triggers an improper conversion between unsigned and signed types, leading to a buffer overflow. Error de signo de enteros en la función archive_write_zip_data de archive_write_set_format_zip.c en la versión 3.1.2 y anteriores, cuando se ejecuta... • http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101687.html • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2012-4576 – FreeBSD Security Advisory - Linux Input Validation
https://notcve.org/view.php?id=CVE-2012-4576
23 Nov 2012 — FreeBSD: Input Validation Flaw allows local users to gain elevated privileges FreeBSD: un Fallo de Comprobación de Entrada permite a usuarios locales alcanzar privilegios elevados. FreeBSD is binary-compatible with the Linux operating system through a loadable kernel module/optional kernel component. A programming error in the handling of some Linux system calls may result in memory locations being accessed without proper validation. It is possible for a local attacker to overwrite portions of kernel memory... • http://archives.neohapsis.com/archives/bugtraq/2012-11/0089.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 12%CPEs: 1EXPL: 3CVE-2012-3549 – FreeBSD - SCTP Remote NULL Ptr Dereference Denial of Service
https://notcve.org/view.php?id=CVE-2012-3549
09 Oct 2012 — The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted ASCONF chunk. La implementación SCTP ??en FreeBSD v8.2, permite a atacantes remotos provocar una denegación de servicio (desreferencia de puntero NULL y un "kernel panic") a través de un chunk ASCONF modificado para este fin. • https://www.exploit-db.com/exploits/20226 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2012-4578
https://notcve.org/view.php?id=CVE-2012-4578
21 Aug 2012 — The geli encryption provider 7 before r239184 on FreeBSD 10 uses a weak Master Key, which makes it easier for local users to defeat a cryptographic protection mechanism via a brute-force attack. Geli Encription Provider v7 anterior a r239184 on FreeBSD v10 usa una clave máster débil, lo que provoca que sea fácil para usuarios locales saltarse el mecanismo de protección criptográfico a través de un ataque por fuerza bruta. • http://lists.freebsd.org/pipermail/freebsd-security/2012-August/006541.html • CWE-310: Cryptographic Issues •