Openbsd

Openbsd

194 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2006-6397

  • EPSS 0.15%
  • Published 08.12.2006 01:28:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner is not setuid, an exploit would not cross privilege...

7.2

CVE-2006-6164

  • EPSS 0.05%
  • Published 29.11.2006 01:28:00
  • Last modified 09.04.2025 00:30:58

The _dl_unsetenv function in loader.c in the ELF ld.so in OpenBSD 3.9 and 4.0 does not properly remove duplicate environment variables, which allows local users to pass dangerous variables such as LD_PRELOAD to loading processes, which might be lever...

4.9

CVE-2006-5550

Exploit
  • EPSS 0.18%
  • Published 26.10.2006 17:07:00
  • Last modified 09.04.2025 00:30:58

The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspecified vectors involving certain ioctl requests to /dev/crypto.

4.6

CVE-2006-5218

Exploit
  • EPSS 0.08%
  • Published 10.10.2006 04:06:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in the systrace_preprepl function (STRIOCREPLACE) in systrace in OpenBSD 3.9 and NetBSD 3 allows local users to cause a denial of service (crash), gain privileges, or read arbitrary kernel memory via large numeric arguments to the sy...

4.9

CVE-2006-4435

  • EPSS 0.06%
  • Published 29.08.2006 00:04:00
  • Last modified 03.04.2025 01:03:51

OpenBSD 3.8, 3.9, and possibly earlier versions allows context-dependent attackers to cause a denial of service (kernel panic) by allocating more semaphores than the default.

5

CVE-2006-4436

  • EPSS 0.67%
  • Published 29.08.2006 00:04:00
  • Last modified 03.04.2025 01:03:51

isakmpd in OpenBSD 3.8, 3.9, and possibly earlier versions, creates Security Associations (SA) with a replay window of size 0 when isakmpd acts as a responder during SA negotiation, which allows remote attackers to replay IPSec packets and bypass the...

10

CVE-2006-4304

  • EPSS 6.86%
  • Published 24.08.2006 01:04:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the sppp driver in FreeBSD 4.11 through 6.1, NetBSD 2.0 through 4.0 beta before 20060823, and OpenBSD 3.8 and 3.9 before 20060902 allows remote attackers to cause a denial of service (panic), obtain sensitive information, and possi...

4.6

CVE-2006-0098

  • EPSS 0.08%
  • Published 06.01.2006 11:03:00
  • Last modified 03.04.2025 01:03:51

The dupfdopen function in sys/kern/kern_descrip.c in OpenBSD 3.7 and 3.8 allows local users to re-open arbitrary files by using setuid programs to access file descriptors using /dev/fd/.

4.3

CVE-2005-4351

Exploit
  • EPSS 0.13%
  • Published 31.12.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while th...

5

CVE-2005-0356

Exploit
  • EPSS 80.86%
  • Published 31.05.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes ...