Search Results (Refine Search)
- CPE Product Version: cpe:/o:openbsd:openbsd:2.4
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2000-0994 |
Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable. Published: December 19, 2000; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2000-0997 |
Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges. Published: December 19, 2000; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2000-1004 |
Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters. Published: December 11, 2000; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2000-1010 |
Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. Published: December 11, 2000; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-2000-0750 |
Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name. Published: October 20, 2000; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2000-0751 |
mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands. Published: October 20, 2000; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-1999-0001 |
ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets. Published: December 30, 1999; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-1999-0674 |
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve. Published: August 09, 1999; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-0481 |
Denial of service in "poll" in OpenBSD. Published: March 22, 1999; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-1999-0485 |
Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD. Published: February 19, 1999; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 2.6 LOW |
CVE-1999-0396 |
A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service. Published: February 17, 1999; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 2.6 LOW |
CVE-1999-0798 |
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type. Published: December 04, 1998; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-1999-0052 |
IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash. Published: November 04, 1998; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |