CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 2CVE-2001-1029 – FreeBSD 4.3/4.4 - Login Capabilities Privileged File Reading
https://notcve.org/view.php?id=CVE-2001-1029
libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files. • https://www.exploit-db.com/exploits/21114 http://archives.neohapsis.com/archives/bugtraq/2001-09/0173.html http://www.osvdb.org/6073 https://exchange.xforce.ibmcloud.com/vulnerabilities/8697 •
CVSS: 5.0EPSS: 1%CPEs: 2EXPL: 1CVE-2001-0710
https://notcve.org/view.php?id=CVE-2001-0710
NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:52.fragment.asc ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-006.txt.asc http://www.securityfocus.com/bid/2799 https://exchange.xforce.ibmcloud.com/vulnerabilities/6636 •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2001-1017
https://notcve.org/view.php?id=CVE-2001-1017
rmuser utility in FreeBSD 4.2 and 4.3 creates a copy of the master.passwd file with world-readable permissions while updating the original file, which could allow local users to gain privileges by reading the copied file while rmuser is running, obtain the password hashes, and crack the passwords. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:59.rmuser.v1.1.asc http://www.osvdb.org/1947 http://www.securityfocus.com/bid/3282 https://exchange.xforce.ibmcloud.com/vulnerabilities/7086 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1155
https://notcve.org/view.php?id=CVE-2001-1155
TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:56.tcp_wrappers.asc http://www.osvdb.org/5454 • CWE-863: Incorrect Authorization •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2001-1166
https://notcve.org/view.php?id=CVE-2001-1166
linprocfs on FreeBSD 4.3 and earlier does not properly restrict access to kernel memory, which allows one process with debugging rights on a privileged process to read restricted memory from that process. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:55.procfs.asc http://www.iss.net/security_center/static/7017.php http://www.osvdb.org/1938 http://www.securityfocus.com/bid/3217 •