cbcvebase.

Bsdi Bsd Os vulnerabilities

31 known vulnerabilities affecting bsdi/bsd_os.

Total CVEs
31
CISA KEV
0
Public exploits
13
Exploited in wild
0
Severity breakdown
CRITICAL10HIGH13MEDIUM5LOW3

Vulnerabilities

Page 1 of 2
CVE-1999-0046P3CRITICALCVSS 10.0PoCv1.1v2.0+2 more1997-02-06
CVE-1999-0046 [CRITICAL] CWE-120 CVE-1999-0046: Buffer overflow of rlogin program using TERM environmental variable. Buffer overflow of rlogin program using TERM environmental variable.
nvd
CVE-1999-0002P3CRITICALCVSS 10.0PoCv1.11998-10-12
CVE-1999-0002 [CRITICAL] CWE-119 CVE-1999-0002: Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems. Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.
nvd
CVE-1999-0009P3CRITICALCVSS 10.0PoCv2.0v2.0.1+1 more1998-04-08
CVE-1999-0009 [CRITICAL] CVE-1999-0009: Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
nvd
CVE-1999-0879P3CRITICALCVSS 10.0PoCv2.1v3.01999-10-01
CVE-1999-0879 [CRITICAL] CVE-1999-0879: Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges v Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file.
nvd
CVE-1999-0042P3CRITICALCVSS 10.0PoCv2.1v3.01997-04-07
CVE-1999-0042 [CRITICAL] CVE-1999-0042: Buffer overflow in University of Washington's implementation of IMAP and POP servers. Buffer overflow in University of Washington's implementation of IMAP and POP servers.
nvd
CVE-1999-0043P3CRITICALCVSS 9.8v2.11996-12-04
CVE-1999-0043 [CRITICAL] CWE-78 CVE-1999-0043: Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" contro Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.
nvd
CVE-1999-0704P4CRITICALCVSS 9.3PoCv3.1v4.0.11999-09-16
CVE-1999-0704 [CRITICAL] CVE-1999-0704: Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.
nvd
CVE-1999-0130P4HIGHCVSS 7.2PoCv2.11996-11-16
CVE-1999-0130 [HIGH] CVE-1999-0130: Local users can start Sendmail in daemon mode and gain root privileges. Local users can start Sendmail in daemon mode and gain root privileges.
nvd
CVE-1999-0040P4HIGHCVSS 7.2PoCv2.0v2.0.1+1 more1997-05-01
CVE-1999-0040 [HIGH] CVE-1999-0040: Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
nvd
CVE-1999-0038P4HIGHCVSS 8.4PoCv2.11997-04-26
CVE-1999-0038 [HIGH] CWE-120 CVE-1999-0038: Buffer overflow in xlock program allows local users to execute commands as root. Buffer overflow in xlock program allows local users to execute commands as root.
nvd
CVE-1999-0032P4HIGHCVSS 7.2PoCv2.11996-10-25
CVE-1999-0032 [HIGH] CVE-1999-0032: Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.
nvd
CVE-2000-1103P4HIGHCVSS 7.2PoCv3.0v3.1+2 more2001-01-09
CVE-2000-1103 [HIGH] CVE-2000-1103: rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line.
nvd
CVE-2008-4609P3HIGHCVSS 7.1v1.1v2.0+9 more2008-10-20
CVE-2008-4609 [HIGH] CWE-16 CVE-2008-4609: The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cis The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.
nvd
CVE-1999-0034P4HIGHCVSS 7.2PoCv2.1v3.01997-05-29
CVE-1999-0034 [HIGH] CVE-1999-0034: Buffer overflow in suidperl (sperl), Perl 4.x and 5.x. Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.
nvd
CVE-1999-0099P3CRITICALCVSS 10.0v2.0v2.0.11995-10-19
CVE-1999-0099 [CRITICAL] CVE-1999-0099: Buffer overflow in syslog utility allows local or remote attackers to gain root privileges. Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.
nvd
CVE-1999-0047P4CRITICALCVSS 10.0v2.11997-01-28
CVE-1999-0047 [CRITICAL] CVE-1999-0047: MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.
nvd
CVE-2001-1133P4LOWCVSS 2.1PoCv3.0v3.12001-08-21
CVE-2001-1133 [LOW] CVE-2001-1133: Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service ( Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions.
nvd
CVE-1999-0323P4CRITICALCVSS 10.0v3.01998-02-20
CVE-1999-0323 [CRITICAL] CVE-1999-0323: FreeBSD mmap function allows users to modify append-only or immutable files. FreeBSD mmap function allows users to modify append-only or immutable files.
nvd
CVE-1999-0022P4HIGHCVSS 7.8v1.11996-07-03
CVE-1999-0022 [HIGH] CWE-125 CVE-1999-0022: Local user gains root privileges via buffer overflow in rdist, via expstr() function. Local user gains root privileges via buffer overflow in rdist, via expstr() function.
nvd
CVE-1999-0052P4HIGHCVSS 7.5v4.01998-11-04
CVE-1999-0052 [HIGH] CWE-476 CVE-1999-0052: IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash. IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash.
nvd