Shodan
Vulnerabilities
Vulnerable Software
Freebsd:  >> Freebsd  >> 4.0  Security Vulnerabilities
CVE-2001-0183
ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection.
CVSS Score
7.5
EPSS Score
0.089
Published
2001-03-26
CVE-2000-1167
ppp utility in FreeBSD 4.1.1 and earlier does not properly restrict access as specified by the "nat deny_incoming" command, which allows remote attackers to connect to the target system.
CVSS Score
7.5
EPSS Score
0.007
Published
2001-01-09
CVE-2000-1184
telnetd in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources as the server processes the file.
CVSS Score
5.0
EPSS Score
0.007
Published
2001-01-09
CVE-2000-0916
FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP connections.
CVSS Score
7.5
EPSS Score
0.083
Published
2000-12-19
CVE-2000-0963
Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS.
CVSS Score
7.2
EPSS Score
0.002
Published
2000-12-19
CVE-2000-0993
Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.
CVSS Score
7.2
EPSS Score
0.002
Published
2000-12-19
CVE-2000-0998
Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function.
CVSS Score
7.2
EPSS Score
0.003
Published
2000-12-11
CVE-2000-1011
Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-12-11
CVE-2000-1012
The catopen function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.
CVSS Score
7.2
EPSS Score
0.0
Published
2000-12-11
CVE-2000-1013
The setlocale function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.
CVSS Score
7.2
EPSS Score
0.0
Published
2000-12-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved