Freebsd

Freebsd

503 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2005-1036

  • EPSS 0.09%
  • Published 02.05.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

FreeBSD 5.x to 5.4 on AMD64 does not properly initialize the IO permission bitmap used to allow user access to certain hardware, which allows local users to bypass intended access restrictions to cause a denial of service, obtain sensitive informatio...

2.1

CVE-2005-1126

  • EPSS 0.07%
  • Published 15.04.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

The SIOCGIFCONF ioctl (ifconf function) in FreeBSD 4.x through 4.11 and 5.x through 5.4 does not properly clear a buffer before using it, which allows local users to obtain portions of sensitive kernel memory.

7.2

CVE-2005-0610

  • EPSS 0.05%
  • Published 12.04.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Multiple symlink vulnerabilities in portupgrade before 20041226_2 in FreeBSD allow local users to (1) overwrite arbitrary files and possibly replace packages to execute arbitrary code via pkg_fetch, (2) overwrite arbitrary files via temporary files w...

5.6

CVE-2005-0109

  • EPSS 0.14%
  • Published 05.03.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain ...

3.6

CVE-2004-1066

  • EPSS 0.06%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The cmdline pseudofiles in (1) procfs on FreeBSD 4.8 through 5.3, and (2) linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a denial of service (panic) or read portions of kern...

4.6

CVE-2004-0919

  • EPSS 0.09%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordinates or (2) large coordinates.

7.1

CVE-2004-1471

  • EPSS 5.95%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format strin...

2.1

CVE-2004-0602

  • EPSS 0.06%
  • Published 06.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

The binary compatibility mode for FreeBSD 4.x and 5.x does not properly handle certain Linux system calls, which could allow local users to access kernel memory to gain privileges or cause a system panic.

2.1

CVE-2004-0618

Exploit
  • EPSS 0.23%
  • Published 06.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

FreeBSD 5.1 for the Alpha processor allows local users to cause a denial of service (crash) via an execve system call with an unaligned memory address as an argument.

7.5

CVE-2004-0079

  • EPSS 2.06%
  • Published 23.11.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.