VYPR

OpenBSD

by OpenBSD

Source repositories

CVEs (196)

  • CVE-2003-0804Nov 17, 2003
    risk 0.00cvss epss 0.01

    The arplookup function in FreeBSD 5.1 and earlier, Mac OS X before 10.2.8, and possibly other BSD-based systems, allows remote attackers on a local subnet to cause a denial of service (resource starvation and panic) via a flood of spoofed ARP requests.

  • CVE-2003-0688Oct 20, 2003
    risk 0.00cvss epss 0.03

    The DNS map code in Sendmail 8.12.8 and earlier, when using the "enhdnsbl" feature, does not properly initialize certain data structures, which allows remote attackers to cause a denial of service (process crash) via an invalid DNS response that causes Sendmail to free incorrect…

  • CVE-2002-1420Apr 11, 2003
    risk 0.00cvss epss 0.00

    Integer signedness error in select() on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a data…

  • CVE-2002-2180Dec 31, 2002
    risk 0.00cvss epss 0.01

    The setitimer(2) system call in OpenBSD 2.0 through 3.1 does not properly check certain arguments, which allows local users to write to kernel memory and possibly gain root privileges, possibly via an integer signedness error.

  • CVE-2002-2092Dec 31, 2002
    risk 0.00cvss epss 0.00

    Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.

  • CVE-2002-2188Dec 31, 2002
    risk 0.00cvss epss 0.00

    OpenBSD before 3.2 allows local users to cause a denial of service (kernel crash) via a call to getrlimit(2) with invalid arguments, possibly due to an integer signedness error.

  • CVE-2002-2280Dec 31, 2002
    risk 0.00cvss epss 0.00

    syslogd on OpenBSD 2.9 through 3.2 does not change the source IP address of syslog packets when the machine's IP addressed is changed without rebooting, e.g. via ifconfig, which can cause incorrect information to be sent to the syslog server.

  • CVE-2002-2222Dec 31, 2002
    risk 0.00cvss epss 0.01

    isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out of sequence.

  • CVE-2002-1345Dec 23, 2002
    risk 0.00cvss epss 0.03

    Directory traversal vulnerabilities in multiple FTP clients on UNIX systems allow remote malicious FTP servers to create or overwrite files as the client user via filenames containing /absolute/path or .. (dot dot) sequences.

  • CVE-2002-0765Aug 12, 2002
    risk 0.00cvss epss 0.01

    sshd in OpenSSH 3.2.2, when using YP with netgroups and under certain conditions, may allow users to successfully authenticate and log in with another user's password.

  • CVE-2000-1208Aug 12, 2002
    risk 0.00cvss epss 0.00

    Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote() call.

  • CVE-2002-0766Aug 12, 2002
    risk 0.00cvss epss 0.01

    OpenBSD 2.9 through 3.1 allows local users to cause a denial of service (resource exhaustion) and gain root privileges by filling the kernel's file descriptor table and closing file descriptors 0, 1, or 2 before executing a privileged process, which is not properly handled when…

  • CVE-2002-0414Aug 12, 2002
    risk 0.00cvss epss 0.01

    KAME-derived implementations of IPsec on NetBSD 1.5.2, FreeBSD 4.5, and other operating systems, does not properly consult the Security Policy Database (SPD), which could cause a Security Gateway (SG) that does not use Encapsulating Security Payload (ESP) to forward forged IPv4…

  • CVE-2002-0514Aug 12, 2002
    risk 0.00cvss epss 0.02

    PF in OpenBSD 3.0 with the return-rst rule sets the TTL to 128 in the RST packet, which allows remote attackers to determine if a port is being filtered because the TTL is different than the default TTL.

  • CVE-2002-0701Jul 23, 2002
    risk 0.00cvss epss 0.00

    ktrace in BSD-based operating systems allows the owner of a process with special privileges to trace the process after its privileges have been lowered, which may allow the owner to obtain sensitive information that the process obtained while it was running with the extra…

  • CVE-2002-0557Jul 3, 2002
    risk 0.00cvss epss 0.01

    Vulnerability in OpenBSD 3.0, when using YP with netgroups in the password database, causes (1) rexec or (2) rsh to run another user's shell, or (3) atrun to change to a different user's directory, possibly due to memory allocation failures or an incorrect call to…

  • CVE-2002-0381Jun 25, 2002
    risk 0.00cvss epss 0.02

    The TCP implementation in various BSD operating systems (tcp_input.c) does not properly block connections to broadcast addresses, which could allow remote attackers to bypass intended filters via packets with a unicast link layer address and an IP broadcast address.

  • CVE-2001-1415Nov 13, 2001
    risk 0.00cvss epss 0.00

    vi.recover in OpenBSD before 3.1 allows local users to remove arbitrary zero-byte files such as device nodes.

  • CVE-2001-1145Aug 17, 2001
    risk 0.00cvss epss 0.00

    fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current directory is moved, which could cause scripts to perform dangerous actions on…

  • CVE-2001-1244Jul 7, 2001
    risk 0.00cvss epss 0.35

    Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that…

Page 8 of 10