CVSS: 10.0EPSS: 1%CPEs: 51EXPL: 4CVE-2001-0247 – FreeBSD 2.2-4.2 / NetBSD 1.2-4.5 / OpenBSD 2.x - FTPd 'glob()' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0247
Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3. • https://www.exploit-db.com/exploits/20731 https://www.exploit-db.com/exploits/20732 https://www.exploit-db.com/exploits/20733 ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-018.txt.asc ftp://patches.sgi.com/support/free/security/advisories/20010802-01-P http://archives.neohapsis.com/archives/freebsd/2001-04/0466.html http://www.cert.org/advisories/CA-2001-07.html http://www.nai.com/research/covert/advisories/048.asp http://www.securityfocus.com&#x •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2001-0196
https://notcve.org/view.php?id=CVE-2001-0196
inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:11.inetd.v1.1.asc http://www.osvdb.org/1753 http://www.securityfocus.com/bid/2324 https://exchange.xforce.ibmcloud.com/vulnerabilities/6052 •
CVSS: 7.5EPSS: 2%CPEs: 11EXPL: 2CVE-2001-0183 – FreeBSD 3.x/4.x - 'ipfw' Filtering Evasion
https://notcve.org/view.php?id=CVE-2001-0183
ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection. • https://www.exploit-db.com/exploits/20593 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:08.ipfw.asc http://www.ciac.org/ciac/bulletins/l-029.shtml http://www.osvdb.org/1743 http://www.security-express.com/archives/bugtraq/2001-01/0424.html http://www.securityfocus.com/bid/2293 https://exchange.xforce.ibmcloud.com/vulnerabilities/5998 •
CVSS: 7.2EPSS: 0%CPEs: 15EXPL: 0CVE-2001-0128
https://notcve.org/view.php?id=CVE-2001-0128
Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:06.zope.asc http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000365 http://www.debian.org/security/2000/20001219 http://www.linux-mandrake.com/en/updates/2000/MDKSA-2000-083.php3 http://www.osvdb.org/6284 http://www.redhat.com/support/errata/RHSA-2000-127.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5777 •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2001-0063
https://notcve.org/view.php?id=CVE-2001-0063
procfs in FreeBSD and possibly other operating systems allows local users to bypass access control restrictions for a jail environment and gain additional privileges. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:77.procfs.v1.1.asc http://www.osvdb.org/1691 http://www.securityfocus.com/bid/2132 https://exchange.xforce.ibmcloud.com/vulnerabilities/6108 •