Page 18 of 101 results (0.010 seconds)

CVSS: 7.2EPSS: 0%CPEs: 12EXPL: 0

The setlocale function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc •

CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 1

FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP connections. • https://www.exploit-db.com/exploits/19522 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:52.tcp-iss.asc http://www.securityfocus.com/bid/1766 •

CVSS: 7.2EPSS: 0%CPEs: 13EXPL: 1

Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS. • http://www.calderasystems.com/support/security/advisories/CSSA-2000-036.0.txt http://www.securityfocus.com/archive/1/138550 http://www.securityfocus.com/bid/1142 https://exchange.xforce.ibmcloud.com/vulnerabilities/44487 •

CVSS: 7.2EPSS: 0%CPEs: 12EXPL: 0

The catopen function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0

Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges. • http://archives.neohapsis.com/archives/freebsd/2000-09/0110.html http://www.osvdb.org/1559 http://www.securityfocus.com/bid/1686 https://exchange.xforce.ibmcloud.com/vulnerabilities/5248 •