Openbsd

Openbsd

194 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2009-3572

  • EPSS 0.05%
  • Published 06.10.2009 20:30:00
  • Last modified 09.04.2025 00:30:58

OpenBSD 4.4, 4.5, and 4.6, when running on an i386 kernel, does not properly handle XMM exceptions, which allows local users to cause a denial of service (kernel panic) via unspecified vectors.

7.8

CVE-2009-0687

  • EPSS 12.33%
  • Published 11.08.2009 10:30:00
  • Last modified 09.04.2025 00:30:58

The pf_test_rule function in OpenBSD Packet Filter (PF), as used in OpenBSD 4.2 through 4.5, NetBSD 5.0 before RC3, MirOS 10 and earlier, and MidnightBSD 0.3-current allows remote attackers to cause a denial of service (panic) via crafted IP packets ...

6.8

CVE-2009-0689

Exploit
  • EPSS 41.05%
  • Published 01.07.2009 13:00:01
  • Last modified 09.04.2025 00:30:58

Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD...

4.9

CVE-2009-0537

Exploit
  • EPSS 3.66%
  • Published 09.03.2009 21:30:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service (application crash) via a deep directory tree, ...

5

CVE-2009-0780

  • EPSS 1.19%
  • Published 04.03.2009 11:30:00
  • Last modified 09.04.2025 00:30:58

The aspath_prepend function in rde_attr.c in bgpd in OpenBSD 4.3 and 4.4 allows remote attackers to cause a denial of service (application crash) via an Autonomous System (AS) advertisement containing a long AS path.

7.1

CVE-2008-4609

  • EPSS 0.48%
  • Published 20.10.2008 17:59:26
  • Last modified 09.04.2025 00:30:58

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vect...

9.3

CVE-2008-2476

  • EPSS 14.85%
  • Published 03.10.2008 15:07:10
  • Last modified 09.04.2025 00:30:58

The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River VxWorks 5.x through 6.4 does not validate the origi...

7.5

CVE-2008-4247

Exploit
  • EPSS 11.1%
  • Published 25.09.2008 19:25:18
  • Last modified 09.04.2025 00:30:58

ftpd in OpenBSD 4.3, FreeBSD 7.0, NetBSD 4.0, Solaris, and possibly other operating systems interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and execu...

4.6

CVE-2008-1215

Exploit
  • EPSS 0.4%
  • Published 09.03.2008 02:44:00
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in the command_Expand_Interpret function in command.c in ppp (aka user-ppp), as distributed in FreeBSD 6.3 and 7.0, OpenBSD 4.1 and 4.2, and the net/userppp package for NetBSD, allows local users to gain privileges via lon...

7.8

CVE-2008-1057

  • EPSS 0.39%
  • Published 28.02.2008 19:44:00
  • Last modified 09.04.2025 00:30:58

The ip6_check_rh0hdr function in netinet6/ip6_input.c in OpenBSD 4.2 allows attackers to cause a denial of service (panic) via malformed IPv6 routing headers.