|
371
|
-
7.2
|
HIGH
|
rmuser utility in FreeBSD 4.2 and 4.3 creates a copy of the master.passwd file with world-readable permissions while updating the original file, which could allow local users to gain privileges by re…
|
NVD-CWE-Other
|
CVE-2001-1017
|
cpe:2.3:o:freebsd:freebsd:4.3:* cpe:2.3:o:freebsd:freebsd:4.2:*
|
|
|
|
|
2017-10-10 10:29
2001-09-4
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
372
|
-
10.0
|
HIGH
|
ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts.
|
NVD-CWE-Other
|
CVE-2001-0969
|
cpe:2.3:o:freebsd:freebsd:4.3:*
|
|
|
|
|
2017-10-10 10:29
2001-08-31
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
373
|
9.8
7.5
|
CRITICAL
Network
|
TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass …
|
CWE-863
Incorrect Authorization
|
CVE-2001-1155
|
cpe:2.3:o:freebsd:freebsd:*:*
|
4.1.1
|
4.3
|
|
|
2024-02-17 01:51
2001-08-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
374
|
-
5.0
|
MEDIUM
|
linprocfs on FreeBSD 4.3 and earlier does not properly restrict access to kernel memory, which allows one process with debugging rights on a privileged process to read restricted memory from that pro…
|
NVD-CWE-Other
|
CVE-2001-1166
|
cpe:2.3:o:freebsd:freebsd:4.3:* cpe:2.3:o:freebsd:freebsd:4.2:* cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:free…
|
|
|
|
|
2008-09-6 05:25
2001-08-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
375
|
-
6.2
|
MEDIUM
|
fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current…
|
NVD-CWE-Other
|
CVE-2001-1145
|
cpe:2.3:o:freebsd:freebsd:4.3:*
|
|
|
|
|
2008-09-11 04:09
2001-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
376
|
-
10.0
|
HIGH
|
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not …
|
CWE-120
Classic Buffer Overflow
|
CVE-2001-0554
|
cpe:2.3:o:freebsd:freebsd:4.3:* cpe:2.3:o:freebsd:freebsd:4.2:* cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:free…
|
|
|
|
|
2022-01-21 23:48
2001-08-14
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
377
|
-
7.2
|
HIGH
|
FreeBSD 4.3 does not properly clear shared signal handlers when executing a process, which allows local users to gain privileges by calling rfork with a shared signal handler, having the child proces…
|
NVD-CWE-Other
|
CVE-2001-1180
|
cpe:2.3:o:freebsd:freebsd:4.3:* cpe:2.3:o:freebsd:freebsd:4.2:* cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:free…
|
|
|
|
|
2017-10-10 10:30
2001-07-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
378
|
-
5.0
|
MEDIUM
|
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting l…
|
NVD-CWE-Other
|
CVE-2001-1244
|
cpe:2.3:o:freebsd:freebsd:4.3:*
|
|
|
|
|
2018-10-31 01:26
2001-07-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
379
|
-
7.2
|
HIGH
|
BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id.
|
NVD-CWE-Other
|
CVE-2001-0424
|
cpe:2.3:o:freebsd:freebsd:6.2:stable
|
|
|
|
|
2016-10-18 11:11
2001-07-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
380
|
-
7.5
|
HIGH
|
licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
|
NVD-CWE-Other
|
CVE-2001-0439
|
cpe:2.3:o:freebsd:freebsd:4.2:* cpe:2.3:o:freebsd:freebsd:3.5.1:*
|
|
|
|
|
2017-10-10 10:29
2001-07-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|