CVSS: 10.0EPSS: 35%CPEs: 51EXPL: 4CVE-2001-0247 – FreeBSD 2.2-4.2 / NetBSD 1.2-4.5 / OpenBSD 2.x - FTPd 'glob()' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0247
24 May 2001 — Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3. • https://www.exploit-db.com/exploits/20731 •
CVSS: 9.1EPSS: 4%CPEs: 5EXPL: 1CVE-2000-0916 – Linux Kernel 2.2 - Predictable TCP Initial Sequence Number
https://notcve.org/view.php?id=CVE-2000-0916
29 Nov 2000 — FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP connections. • https://www.exploit-db.com/exploits/19522 •
CVSS: 5.5EPSS: 0%CPEs: 31EXPL: 0CVE-2000-0461
https://notcve.org/view.php?id=CVE-2000-0461
29 May 2000 — The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:19.semconfig.asc •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-1999-0761
https://notcve.org/view.php?id=CVE-1999-0761
04 Jan 2000 — Buffer overflow in FreeBSD fts library routines allows local user to modify arbitrary files via the periodic program. • http://www.osvdb.org/1074 •
CVSS: 7.5EPSS: 1%CPEs: 23EXPL: 0CVE-1999-0001
https://notcve.org/view.php?id=CVE-1999-0001
30 Dec 1999 — ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets. ip_input.c en implementaciones de TCP/IP derivadas de BSD permiten a atacantes remotos causar una denegación de servicio (cuelgue o caída) mediante paquetes artesanales. • http://www.openbsd.org/errata23.html#tcpfix • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 4%CPEs: 20EXPL: 2CVE-1999-1518 – BSD/Linux Kernel 2.3 (BSD/OS 4.0 / FreeBSD 3.2 / NetBSD 1.4) - Shared Memory Denial of Service
https://notcve.org/view.php?id=CVE-1999-1518
15 Jul 1999 — Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults. • https://www.exploit-db.com/exploits/19423 •
CVSS: 7.8EPSS: 0%CPEs: 28EXPL: 2CVE-1999-0405 – Debian 2.0/2.0 r5 / FreeBSD 3.2 / OpenBSD 2.4 / RedHat 5.2 i386 / S.u.S.E 6.1 - 'Lsof' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0405
18 Feb 1999 — A buffer overflow in lsof allows local users to obtain root privilege. • https://www.exploit-db.com/exploits/19373 •
CVSS: 7.5EPSS: 1%CPEs: 13EXPL: 0CVE-1999-0052
https://notcve.org/view.php?id=CVE-1999-0052
04 Nov 1998 — IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash. • http://www.osvdb.org/908 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-1999-0305
https://notcve.org/view.php?id=CVE-1999-0305
01 Feb 1998 — The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the (1) dosourceroute or (2) forwarding variables are set, which allows remote attackers to spoof TCP connections. • http://www.openbsd.org/advisories/sourceroute.txt •
CVSS: 7.5EPSS: 25%CPEs: 33EXPL: 1CVE-1999-0513 – Linux Kernel 2.0/2.1 (Digital UNIX 4.0 D / FreeBSD 2.2.4 / HP HP-UX 10.20/11.0 / IBM AIX 3.2.5 / NetBSD 1.2 / Solaris 2.5.1) - Smurf Denial of Service
https://notcve.org/view.php?id=CVE-1999-0513
05 Jan 1998 — ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service. • https://www.exploit-db.com/exploits/19117 •