Openbsd: >> Openbsd >> 4.8 Security Vulnerabilities
The TCP implementation in various BSD operating systems (tcp_input.c) does not properly block connections to broadcast addresses, which could allow remote attackers to bypass intended filters via packets with a unicast link layer address and an IP broadcast address.
CVSS Score
5.0
EPSS Score
0.008
Published
2002-06-25
Buffer overflow in BSD line printer daemon (in.lpd or lpd) in various BSD-based operating systems allows remote attackers to execute arbitrary code via an incomplete print job followed by a request to display the printer queue.
CVSS Score
7.5
EPSS Score
0.162
Published
2001-10-03
Format string vulnerability in OpenBSD yp_passwd program (and possibly other BSD-based operating systems) allows attackers to gain root privileges a malformed name.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-12-19
Format string vulnerability in OpenBSD su program (and possibly other BSD-based operating systems) allows local attackers to gain root privileges via a malformed shell.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-12-19
OpenBSD kernel crash through TSS handling, as caused by the crashme program.
CVSS Score
5.0
EPSS Score
0.005
Published
1999-03-21
OpenBSD crash using nlink value in FFS and EXT2FS filesystems.
CVSS Score
2.1
EPSS Score
0.001
Published
1999-02-25
Buffer overflow in OpenBSD ping.
CVSS Score
2.1
EPSS Score
0.001
Published
1999-02-23
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
CVSS Score
5.0
EPSS Score
0.005
Published
1997-08-24
Page 3