Freebsd

Freebsd

503 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2001-0554

Exploit
  • EPSS 16.67%
  • Veröffentlicht 14.08.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

7.2

CVE-2001-1180

Exploit
  • EPSS 0.15%
  • Veröffentlicht 10.07.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

FreeBSD 4.3 does not properly clear shared signal handlers when executing a process, which allows local users to gain privileges by calling rfork with a shared signal handler, having the child process execute a setuid program, and sending a signal to...

5

CVE-2001-1244

Exploit
  • EPSS 20.36%
  • Veröffentlicht 07.07.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets ...

7.2

CVE-2001-0424

  • EPSS 0.06%
  • Veröffentlicht 02.07.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id.

7.5

CVE-2001-0439

  • EPSS 1.08%
  • Veröffentlicht 02.07.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.

10

CVE-2001-0388

  • EPSS 0.99%
  • Veröffentlicht 27.06.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

time server daemon timed allows remote attackers to cause a denial of service via malformed packets.

5

CVE-2001-0469

  • EPSS 0.74%
  • Veröffentlicht 27.06.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

rwho daemon rwhod in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service via malformed packets with a short length.

10

CVE-2001-0247

Exploit
  • EPSS 35.17%
  • Veröffentlicht 18.06.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functi...

6.2

CVE-2001-0371

  • EPSS 0.05%
  • Veröffentlicht 18.06.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted infor...

7.5

CVE-2001-0402

  • EPSS 3.36%
  • Veröffentlicht 18.06.2001 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted port after sending unfragmented packets to an unrestri...