CVSS: 3.6EPSS: 0%CPEs: 3EXPL: 0CVE-2005-4779
https://notcve.org/view.php?id=CVE-2005-4779
verifiedexecioctl in verified_exec.c in NetBSD 2.0.2 calls NDINIT with UIO_USERSPACE rather than UID_SYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs. • http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/dev/verified_exec.c.diff?r1=1.4&r2=1.4.2.1&f=h http://mail-index.netbsd.org/netbsd-announce/2005/10/31/0000.html http://releng.netbsd.org/cgi-bin/req-2-0.cgi?show=1988 http://www.osvdb.org/20725 •
CVSS: 4.9EPSS: 0%CPEs: 5EXPL: 0CVE-2005-4782
https://notcve.org/view.php?id=CVE-2005-4782
NetBSD 2.0 before 2.0.4, 2.1 before 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service (kernel assertion panic) via a negative linger time in the SO_LINGER socket option. • http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/kern/uipc_socket.c.diff?r1=1.111&r2=1.112 http://mail-index.netbsd.org/netbsd-announce/2005/11/08/0010.html http://mail-index.netbsd.org/source-changes/2005/10/21/0038.html http://www.securityfocus.com/bid/15289 •
CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 0CVE-2005-4776
https://notcve.org/view.php?id=CVE-2005-4776
Integer overflow in the FreeBSD compatibility code (freebsd_misc.c) in NetBSD-current, NetBSD-3, NetBSD-2.0, and NetBSD-2 before 20050913; and NetBSD-1.6 before 20050914; allows local users to cause a denial of service (heap corruption or system crash) and possibly gain root privileges. • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2005-008.txt.asc http://mail-index.netbsd.org/source-changes/2005/09/13/0024.html http://www.osvdb.org/20757 •
CVSS: 2.1EPSS: 0%CPEs: 7EXPL: 0CVE-2005-4691
https://notcve.org/view.php?id=CVE-2005-4691
imake in NetBSD before 2.0.3, NetBSD-current before 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatted manual page. • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2005-009.txt.asc http://mail-index.netbsd.org/netbsd-announce/2005/10/31/0000.html http://mail-index.netbsd.org/source-changes/2005/09/12/0043.html http://securitytracker.com/id?1015132 http://www.osvdb.org/20731 http://www.securityfocus.com/bid/15263 •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2005-4733
https://notcve.org/view.php?id=CVE-2005-4733
NetBSD 2.0 before 20050316 and NetBSD-current before 20050112 allow local users to cause a denial of service (infinite loop and system hang) by calling the F_CLOSEM fcntl with a parameter value of 0. • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2005-003.txt.asc http://mail-index.netbsd.org/source-changes/2005/01/12/0059.html http://www.osvdb.org/20755 •