CVE-2007-5365
- EPSS 80.27%
- Veröffentlicht 11.10.2007 10:17:00
- Zuletzt bearbeitet 16.06.2026 22:45:58
Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemo...
CVE-2007-1351
- EPSS 5.59%
- Veröffentlicht 06.04.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:24
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflo...
CVE-2007-1352
- EPSS 1.52%
- Veröffentlicht 06.04.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:24
Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.
- EPSS 17.79%
- Veröffentlicht 10.03.2007 21:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:26
Buffer overflow in kern/uipc_mbuf2.c in OpenBSD 3.9 and 4.0 allows remote attackers to execute arbitrary code via fragmented IPv6 packets due to "incorrect mbuf handling for ICMP6 packets." NOTE: this was originally reported as a denial of service.
- EPSS 2.21%
- Veröffentlicht 18.01.2007 02:28:00
- Zuletzt bearbeitet 16.06.2026 22:35:23
OpenBSD before 20070116 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via certain IPv6 ICMP (aka ICMP6) echo request packets.
- EPSS 0.54%
- Veröffentlicht 05.01.2007 11:28:00
- Zuletzt bearbeitet 16.06.2026 22:34:53
Unspecified vulnerability in sys/dev/pci/vga_pci.c in the VGA graphics driver for wscons in OpenBSD 3.9 and 4.0, when the kernel is compiled with the PCIAGP option and a non-AGP device is being used, allows local users to gain privileges via unspecif...
CVE-2006-6730
- EPSS 0.25%
- Veröffentlicht 26.12.2006 23:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:40
OpenBSD and NetBSD permit usermode code to kill the display server and write to the X.Org /dev/xf86 device, which allows local users with root privileges to reduce securelevel by replacing the System Management Mode (SMM) handler via a write to an SM...
CVE-2006-6397
- EPSS 0.26%
- Veröffentlicht 08.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:03
Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner is not setuid, an exploit would not cross privilege...
CVE-2006-6164
- EPSS 0.33%
- Veröffentlicht 29.11.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:32:35
The _dl_unsetenv function in loader.c in the ELF ld.so in OpenBSD 3.9 and 4.0 does not properly remove duplicate environment variables, which allows local users to pass dangerous variables such as LD_PRELOAD to loading processes, which might be lever...
CVE-2006-5550
- EPSS 0.94%
- Veröffentlicht 26.10.2006 17:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:25
The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspecified vectors involving certain ioctl requests to /dev/crypto.