Freebsd: >> Freebsd >> 2.1.0 Security Vulnerabilities
The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.
CVSS Score
2.1
EPSS Score
0.001
Published
2000-05-29
Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults.
CVSS Score
5.0
EPSS Score
0.022
Published
1999-07-15
A buffer overflow in lsof allows local users to obtain root privilege.
CVSS Score
7.2
EPSS Score
0.002
Published
1999-02-18
IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash.
CVSS Score
7.5
EPSS Score
0.011
Published
1998-11-04
FreeBSD T/TCP Extensions for Transactions can be subjected to spoofing attacks.
CVSS Score
7.5
EPSS Score
0.005
Published
1998-05-01
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
CVSS Score
5.0
EPSS Score
0.256
Published
1998-01-05
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
CVSS Score
7.5
EPSS Score
0.011
Published
1997-12-10
The open() function in FreeBSD allows local attackers to write to arbitrary files.
CVSS Score
2.1
EPSS Score
0.001
Published
1997-10-29
Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, which could allow attackers to gain access to certain system resources.
CVSS Score
7.5
EPSS Score
0.005
Published
1997-04-07
Buffer overflow of rlogin program using TERM environmental variable.
CVSS Score
10.0
EPSS Score
0.035
Published
1997-02-06