Openbsd: >> Openbsd >> 2.1 Security Vulnerabilities
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-08-09
OpenBSD kernel crash through TSS handling, as caused by the crashme program.
CVSS Score
5.0
EPSS Score
0.005
Published
1999-03-21
OpenBSD crash using nlink value in FFS and EXT2FS filesystems.
CVSS Score
2.1
EPSS Score
0.001
Published
1999-02-25
Buffer overflow in OpenBSD ping.
CVSS Score
2.1
EPSS Score
0.001
Published
1999-02-23
Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.
CVSS Score
4.6
EPSS Score
0.001
Published
1998-05-21
The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the (1) dosourceroute or (2) forwarding variables are set, which allows remote attackers to spoof TCP connections.
CVSS Score
5.0
EPSS Score
0.007
Published
1998-02-01
File creation and deletion, and remote execution, in the BSD line printer daemon (lpd).
CVSS Score
5.1
EPSS Score
0.017
Published
1997-10-02
The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID.
CVSS Score
2.1
EPSS Score
0.001
Published
1997-09-15
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
CVSS Score
5.0
EPSS Score
0.005
Published
1997-08-24
Page 6