CVSS: 10.0EPSS: 35%CPEs: 51EXPL: 4CVE-2001-0247 – FreeBSD 2.2-4.2 / NetBSD 1.2-4.5 / OpenBSD 2.x - FTPd 'glob()' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0247
24 May 2001 — Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3. • https://www.exploit-db.com/exploits/20731 •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2001-0310
https://notcve.org/view.php?id=CVE-2001-0310
07 May 2001 — sort in FreeBSD 4.1.1 and earlier, and possibly other operating systems, uses predictable temporary file names and does not properly handle when the temporary file already exists, which causes sort to crash and possibly impacts security-sensitive scripts. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:13.sort.asc •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2001-0196
https://notcve.org/view.php?id=CVE-2001-0196
03 May 2001 — inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:11.inetd.v1.1.asc •
CVSS: 7.5EPSS: 8%CPEs: 11EXPL: 2CVE-2001-0183 – FreeBSD 3.x/4.x - 'ipfw' Filtering Evasion
https://notcve.org/view.php?id=CVE-2001-0183
26 Mar 2001 — ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection. • https://www.exploit-db.com/exploits/20593 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2001-0061
https://notcve.org/view.php?id=CVE-2001-0061
12 Feb 2001 — procfs in FreeBSD and possibly other operating systems does not properly restrict access to per-process mem and ctl files, which allows local users to gain root privileges by forking a child process and executing a privileged process from the child, while the parent retains access to the child's address space. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:77.procfs.v1.1.asc •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2001-0062
https://notcve.org/view.php?id=CVE-2001-0062
12 Feb 2001 — procfs in FreeBSD and possibly other operating systems allows local users to cause a denial of service by calling mmap on the process' own mem file, which causes the kernel to hang. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:77.procfs.v1.1.asc •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2001-0063
https://notcve.org/view.php?id=CVE-2001-0063
12 Feb 2001 — procfs in FreeBSD and possibly other operating systems allows local users to bypass access control restrictions for a jail environment and gain additional privileges. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:77.procfs.v1.1.asc •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2000-1167
https://notcve.org/view.php?id=CVE-2000-1167
09 Jan 2001 — ppp utility in FreeBSD 4.1.1 and earlier does not properly restrict access as specified by the "nat deny_incoming" command, which allows remote attackers to connect to the target system. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:70.ppp-nat.asc •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2000-1184
https://notcve.org/view.php?id=CVE-2000-1184
09 Jan 2001 — telnetd in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources as the server processes the file. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:69.telnetd.v1.1.asc •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2000-0915
https://notcve.org/view.php?id=CVE-2000-0915
19 Dec 2000 — fingerd in FreeBSD 4.1.1 allows remote attackers to read arbitrary files by specifying the target file name instead of a regular user name. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:54.fingerd.asc •