NotCVE - vendor:"Freebsd" product:"Freebsd" version:"5.2"

Page 8 of 92 results (0.003 seconds)

CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0

CVE-2004-0919

https://notcve.org/view.php?id=CVE-2004-0919

31 Dec 2004 — The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordinates or (2) large coordinates. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:15.syscons.asc •

CVSS: 9.8EPSS: 5%CPEs: 111EXPL: 1

CVE-2004-1471 – CVS 1.11.x - Multiple Vulnerabilities

https://notcve.org/view.php?id=CVE-2004-1471

31 Dec 2004 — Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line. • https://www.exploit-db.com/exploits/24182 •

CVSS: 5.5EPSS: 0%CPEs: 23EXPL: 0

CVE-2004-1066

https://notcve.org/view.php?id=CVE-2004-1066

05 Dec 2004 — The cmdline pseudofiles in (1) procfs on FreeBSD 4.8 through 5.3, and (2) linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a denial of service (panic) or read portions of kernel memory. NOTE: this candidate might be SPLIT into 2 separate items in the future. Los pseudoficheros cmdline en procfs en FreeBSD 4.8 a 5.3, y linprocfs en FreeBSD 5.x a 5.3 no validan adecuadamente un vector de argumento de proceso, lo que permite a usuarios ... • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:17.procfs.asc •

CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 2

CVE-2004-0618 – FreeBSD 4.10/5.x - 'execve()' Unaligned Memory Access Denial of Service

https://notcve.org/view.php?id=CVE-2004-0618

30 Jun 2004 — FreeBSD 5.1 for the Alpha processor allows local users to cause a denial of service (crash) via an execve system call with an unaligned memory address as an argument. FreeBSD 5.1 para procesadores Alfa permite a usuarios locales causar una denegación de servicio (caída) mediante una llamada de sistema con una dirección de memoria no alineada como argumento. • https://www.exploit-db.com/exploits/24233 •

CVSS: 7.1EPSS: 0%CPEs: 14EXPL: 0

CVE-2004-0435

https://notcve.org/view.php?id=CVE-2004-0435

03 Jun 2004 — Certain "programming errors" in the msync system call for FreeBSD 5.2.1 and earlier, and 4.10 and earlier, do not properly handle the MS_INVALIDATE operation, which leads to cache consistency problems that allow a local user to prevent certain changes to files from being committed to disk. Ciertos "errores de programacíón" en la llamada al sistema msync de FreeBSD 5.2.1 y anteriores y 4.10 y anteriores, no maneja adecuadamente la operación MS_INVALIDATE, lo que lleva a problemas de consistencia de caché que... • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:11.msync.asc •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2004-0370

https://notcve.org/view.php?id=CVE-2004-0370

06 Apr 2004 — The setsockopt call in the KAME Project IPv6 implementation, as used in FreeBSD 5.2, does not properly handle certain IPv6 socket options, which could allow attackers to read kernel memory and cause a system panic. La llamada setsockopt en el Proyecto KAME de implementación de IPv6, usado en FreeBSD 5.2, no maneja adecuadamente ciertas opciones de sockets IPv6, lo que podría permitir a atacantes leer memoria del kernel y causar una excepción "pánico del sistema". • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:06.ipv6.asc •

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0

CVE-2004-0126

https://notcve.org/view.php?id=CVE-2004-0126

29 Mar 2004 — The jail_attach system call in FreeBSD 5.1 and 5.2 changes the directory of a calling process even if the process doesn't have permission to change directory, which allows local users to gain read/write privileges to files and directories within another jail. La llamada de sistema jail_attach de FreeBSD 5.1 y 5.2 cambia el directorio de un proceso llamante incluso si el proceso no tiene permisos para cambiar el directorio, lo que permite a usuarios locales ganar privilegios de lectura y escritura dentro de ... • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:03.jail.asc •

CVSS: 7.5EPSS: 5%CPEs: 252EXPL: 0

CVE-2004-0079

https://notcve.org/view.php?id=CVE-2004-0079

18 Mar 2004 — The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. La función do_change_cipher_spec en OpenSSL 0.9.6c hasta 0.9.6.k y 0.9.7a hasta 0.9.7c permite que atacantes remotos provoquen una denegación de servicio (caída) mediante una hábil unión SSL/TLS que provoca un puntero nulo. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:05.openssl.asc • CWE-476: NULL Pointer Dereference •

CVSS: 7.5EPSS: 3%CPEs: 252EXPL: 0

CVE-2004-0081

https://notcve.org/view.php?id=CVE-2004-0081

18 Mar 2004 — OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. OpenSSL 0.9.6 anteriores a la 0.9.6d no manejan adecuadamente los tipos de mensajes desconocidos, lo que permite a atacantes remotos causar una denegación de servicios (por bucle infinito), como se demuestra utilizando la herramienta de testeo Codenomicon TLS. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txt •

CVSS: 7.5EPSS: 1%CPEs: 245EXPL: 0

CVE-2004-0112

https://notcve.org/view.php?id=CVE-2004-0112

18 Mar 2004 — The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read. El código que une SSL/TLS en OpenSSL 0.9.7a, 0.9.7b y 0.9.7c, usando Kerberos, no comprueba adecuadamente la longitud de los tickets de Kerberos, lo que permite que atacantes remotos provoquen una dene... • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-005.txt.asc • CWE-125: Out-of-bounds Read •

1...6 7 8 9 10