CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 2CVE-2001-1185 – FreeBSD 4.4 - AIO Library Cross Process Memory Write
https://notcve.org/view.php?id=CVE-2001-1185
Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges. Algunas operaciones AIO en FreeBSD 4.4 podrían ser retrasadas hasta la llamada a execve, lo cual, podría permitir a usuarios locales la sobreescritura en memorioa de nuevos procesos y la obtención de privilegios. • https://www.exploit-db.com/exploits/21176 http://www.iss.net/security_center/static/7693.php http://www.osvdb.org/2001 http://www.securityfocus.com/archive/1/244583 http://www.securityfocus.com/bid/3661 •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2001-0796
https://notcve.org/view.php?id=CVE-2001-0796
SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers to cause a denial of service via a malformed IGMP multicast packet with a small response delay. SGI IRIX 6.5 a 6.5.12f y posiblemente versiones anteriores, y FreeBSD 3.0, permiten a un atacante remoto producir una denegación de servicio mediante un paquete un paquete IGMP malformado con un pequeño retardo de respuesta. • ftp://patches.sgi.com/support/free/security/advisories/20011001-01-P http://www.freebsd.org/cgi/query-pr.cgi?pr=8990 http://www.securityfocus.com/bid/3463 https://exchange.xforce.ibmcloud.com/vulnerabilities/7332 •
CVSS: 7.5EPSS: 19%CPEs: 4EXPL: 0CVE-2001-0670
https://notcve.org/view.php?id=CVE-2001-0670
Buffer overflow in BSD line printer daemon (in.lpd or lpd) in various BSD-based operating systems allows remote attackers to execute arbitrary code via an incomplete print job followed by a request to display the printer queue. • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-018.txt.asc ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.20/CSSA-2001-SCO.20.txt http://www.cert.org/advisories/CA-2001-30.html http://www.kb.cert.org/vuls/id/274043 http://www.openbsd.com/errata28.html http://www.redhat.com/support/errata/RHSA-2001-147.html http://www.securityfocus.com/bid/3252 http://xforce.iss.net/alerts/advise94.php https://exchange.xforce.ibmcloud.com/vulnera •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1034
https://notcve.org/view.php?id=CVE-2001-1034
Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for (1) faxrm or (2) faxalter. • http://www.securityfocus.com/archive/1/215984 http://www.securityfocus.com/bid/3357 https://exchange.xforce.ibmcloud.com/vulnerabilities/7164 •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 2CVE-2001-1029 – FreeBSD 4.3/4.4 - Login Capabilities Privileged File Reading
https://notcve.org/view.php?id=CVE-2001-1029
libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files. • https://www.exploit-db.com/exploits/21114 http://archives.neohapsis.com/archives/bugtraq/2001-09/0173.html http://www.osvdb.org/6073 https://exchange.xforce.ibmcloud.com/vulnerabilities/8697 •