Page 35 of 255 results (0.005 seconds)

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0

inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:11.inetd.v1.1.asc http://www.osvdb.org/1753 http://www.securityfocus.com/bid/2324 https://exchange.xforce.ibmcloud.com/vulnerabilities/6052 •

CVSS: 7.5EPSS: 2%CPEs: 11EXPL: 2

ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection. • https://www.exploit-db.com/exploits/20593 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:08.ipfw.asc http://www.ciac.org/ciac/bulletins/l-029.shtml http://www.osvdb.org/1743 http://www.security-express.com/archives/bugtraq/2001-01/0424.html http://www.securityfocus.com/bid/2293 https://exchange.xforce.ibmcloud.com/vulnerabilities/5998 •

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files. • http://www.osvdb.org/6084 •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0

procfs in FreeBSD and possibly other operating systems allows local users to bypass access control restrictions for a jail environment and gain additional privileges. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:77.procfs.v1.1.asc http://www.osvdb.org/1691 http://www.securityfocus.com/bid/2132 https://exchange.xforce.ibmcloud.com/vulnerabilities/6108 •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

Buffer overflow in kdc_reply_cipher of libkrb (Kerberos 4 authentication library) in NetBSD 1.5 and FreeBSD 4.2 and earlier, as used in Kerberised applications such as telnetd and login, allows local users to gain root privileges. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:25.kerberosIV.asc ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-017.txt.asc https://exchange.xforce.ibmcloud.com/vulnerabilities/5734 •