.:[ packet storm ]:.
                             
the one stop shop
the one stop shop

 Section:  .. / advisories / freebsd  /

Page 3 of 11
<< 1 2 3 4 5 6 7 8 9 10 11 >> Files 50 - 75 of 257
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: freebsd.sa-99.06.amd
Description:
 remote amd attack
File Size:6550
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:547e4f3265370ac3f59971a834501935

 ///  File Name: sa97-05
Description:
 security compromise via open()
File Size:6511
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:b7f827112cb02e22d1e65ed7c046f172

 ///  File Name: FreeBSD-SA-00:42
Description:
 FreebSD Security Advisory FreeBSD-SA-00:42 - The linux binary-compatability module implements a "shadow" filesystem hierarchy rooted in /compat/linux, which is overlayed against the regular filesystem hierarchy so that Linux binaries "see" files in the shadow hierarchy which can mask the native files. Filenames in this shadow hierarchy are treated incorrectly by the linux kernel module under certain circumstances, and a kernel stack overflow leading to a system compromise by an unprivileged user may be possible when very long filenames are used. ~
Homepage:http://www.freebsd.org/security
File Size:6470
Last Modified:Aug 28 23:53:40 2000
MD5 Checksum:95bd1c70fc53119659146bf82588b081

 ///  File Name: FreeBSD-SA-01:07.xfree86
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:07 - The XFree86-3.3.6 port, versions prior to 3.3.6_1, has multiple vulnerabilities that may allow local or remote users to cause a denial of service attack against a vulnerable X server. Additionally, local users can often obtain elevated privileges. A malformed packet to TCP port 6000 causes the X server to freeze for several minutes. Due to various coding flaws in libX11, privileged programs linked against libX11 allow local users to obtain privileged access. In addition, any application using libICE to listen on a network port can be crashed due to inadequate bounds checking in libICE.
Homepage:http://www.freebsd.org/security
File Size:6465
Last Modified:Feb 1 01:44:56 2001
MD5 Checksum:00cd49abff2b6a4bdf775d92d318191d

 ///  File Name: FreeBSD-SA-06-20.bind.txt
Description:
 FreeBSD Security Advisory - BIND 9 suffers from multiple denial of service vulnerabilities.
Homepage:http://www.freebsd.org/security/
File Size:6384
Related CVE(s):CVE-2006-4095, CVE-2006-4096
Last Modified:Sep 8 07:28:51 2006
MD5 Checksum:8417e3c29fcdaa164cdf36aa7fc72fa1

 ///  File Name: sa96-14
Description:
 Firewall filter leak with user level ipfw
File Size:6251
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:8f7b17a0f90f7fb13cd77b8c8314d3a4

 ///  File Name: FreeBSD-SA-06-19.openssl.txt
Description:
 FreeBSD Security Advisory - When verifying a PKCS#1 version 1.5 signature, OpenSSL ignores any bytes which follow the cryptographic hash being signed. In a valid signature there will be no such bytes.
Homepage:http://www.freebsd.org/security/
File Size:6222
Related CVE(s):CVE-2006-4339
Last Modified:Sep 8 07:27:29 2006
MD5 Checksum:566eca5458df286607558cd7ea7fe723

 ///  File Name: FreeBSD-SA-01:40.fts
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:40 - The fts routines are vulnerable to a race condition when ascending a file hierarchy, which allows an attacker who has control over part of the hierarchy into which fts is descending to cause the application to ascend beyond the starting point of the file traversal, and enter other parts of the filesystem. If the fts routines are being used by an application to perform operations on the filesystem hierarchy, such as find(1) with a keyword such as -exec or -delete, or rm(1) with the -r flag, these operations can be incorrectly applied to files outside the intended hierarchy, which may result in system damage or compromise. All versions of FreeBSD prior to the correction date including 4.3-RELEASE are vulnerable to this problem.
Homepage:http://www.freebsd.org/security
File Size:6211
Last Modified:Aug 19 07:30:07 2001
MD5 Checksum:34e66ac78db53f168cc3f5f43a8336e0

 ///  File Name: FreeBSD-SA-00:76.tcsh-csh
Description:
 FreeBSD Security Advisory FreeBSD-SA-00:76 - The csh and tcsh code creates temporary files when the double less than operator is used, however these are created insecurely and use a predictable filename based on the process ID of the shell. An attacker can exploit this vulnerability to overwrite an arbitrary file writable by the user running the shell. The contents of the file are overwritten with the text being entered using the double less than operator, so it will usually not be under the control of the attacker, limiting the scope of this vulnerability to denial of service.
Homepage:http://www.freebsd.org/security
File Size:6135
Last Modified:Nov 26 04:31:01 2000
MD5 Checksum:cfa8155a8788755b09c66be7885c154d

 ///  File Name: sa96-17
Description:
 "Trojan Horse" vulnerability via rz program
File Size:6061
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:2ba02ac8d933b463a041eccc07404955

 ///  File Name: FreeBSD-SA-06-16.smbfs.txt
Description:
 FreeBSD Security Advisory FreeBSD-SA-06:16.smbfs: smbfs does not properly sanitize paths containing a backslash character; in particular the directory name '..\' is interpreted as the parent directory by the SMB/CIFS server, but smbfs handles it in the same manner as any other directory.
Homepage:http://www.freebsd.org/security/
File Size:6001
Last Modified:Jun 2 00:49:20 2006
MD5 Checksum:6b5fe29e9c5f65d1e385ac5d1c9cce4b

 ///  File Name: FreeBSD-SA-01:62.uucp
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:62.uucp - Taylor UUCP is incorrectly configured by default, allowing local users to run commands as the uucp user and dialer group, allowing local root access.
Homepage:http://www.freebsd.org/security
File Size:5972
Last Modified:Oct 11 06:25:15 2001
MD5 Checksum:725c3b6b92572c199d8624d6f2c806e0

 ///  File Name: FreeBSD-SN-02:03
Description:
 The following FreeBSD ports prior to the listed version have security vulnerabilities: amanda-2.3.0.4, fetchmail-5.9.11, gaim-0.58, gnokii-0.4.0.p20, horde-1.2.8, imap-uw (not fixed), imp-2.2.8, linux-netscape 6.2.3, mnogosearch-3.1.19_2, mpg321-0.2.9, ssh2 password auth issue, tinyproxy-1.5.0, and webmin-0.970.
Homepage:http://www.freebsd.org/security
File Size:5969
Last Modified:Jun 3 08:13:22 2002
MD5 Checksum:977f1a291e94483e10d6ea3c8f67ae6b

 ///  File Name: FreeBSD-SA-01:51.openssl
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:51.openssl - OpenSSL prior to v0.9.6b contains random number errors which allow the key to be computed. An attack taking advantage of this flaw has been identified that can recover the complete state of the PRNG from the output of one carefully sized PRNG request followed by a few hundred consecutive 1-byte PRNG requests.
Homepage:http://www.freebsd.org/security
File Size:5835
Last Modified:Aug 1 02:41:39 2001
MD5 Checksum:8217be25c3fb2b305bcbbb1787e5af66

 ///  File Name: FreeBSD-SA-01:54.telnetd.ports
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:54 - Three optional 3rd party telnetd daemons included in the FreeBSD ports collection have remote root vulnerabilities. They are MIT Kerberos V (security/krb5) prior to version 1.2.2_2, Heimdal (security/heimdal) prior to version 0.4b_1, and SSLtelnet (net/SSLtelnet) (not fixed yet).
Homepage:http://www.freebsd.org/security
File Size:5817
Last Modified:Aug 21 04:47:00 2001
MD5 Checksum:eeee15e9eb6bfb5cfd851c724d0a74b1

 ///  File Name: freebsd.sa-00.05.libmytinfo
Description:
 FreeBSD Security Advisory - A buffer overflow in libmytinfo may yield increased privileges with third-party software.
Homepage:http://www.freebsd.org
File Size:5802
Last Modified:May 9 23:16:00 2000
MD5 Checksum:14ec5af243c48c0a19080c1da3a7ca7a

 ///  File Name: FreeBSD-SA-00:23.ip-options
Description:
 FreeBSD Security Advisory FreeBSD-SA-00:23 - There are several bugs in the processing of IP options in the FreeBSD IP stack, which fail to correctly bounds-check arguments and contain other coding errors leading to the possibility of data corruption and a kernel panic upon reception of certain invalid IP packets. Patch included.
Homepage:http://www.freebsd.org/security
File Size:5776
Last Modified:Jul 15 23:05:02 2000
MD5 Checksum:8ba6728a06798f7c786281201403b8b0

 ///  File Name: freebsd.sa-99.05.fts
Description:
 fts library routine vulnerability
File Size:5695
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:760d79722109234dca735d54e7323652

 ///  File Name: FreeBSD-SA-03:04.sendmail
Description:
 FreeBSD Security Advisory FreeBSD-SA-03:04.sendmail - ISS has identified a buffer overflow that may occur during header parsing in all versions of sendmail after version 5.79 through v8.12.7. Patch available here.
Homepage:http://www.freebsd.org/security
File Size:5645
Last Modified:Mar 3 19:14:45 2003
MD5 Checksum:282a5839a77da73bf290adf649ac1a1c

 ///  File Name: FreeBSD-SA-01:31.ntpd
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:31.ntpd - An overflowable buffer exists in the ntpd daemon related to the building of a response for a query with a large readvar argument. Due to insufficient bounds checking, a remote attacker may be able to cause arbitrary code to be executed as the user running the ntpd daemon, usually root. All versions of FreeBSD prior to the correction date, including FreeBSD 3.5.1 and 4.2, and versions of the ntpd port prior to ntp-4.0.99k_2 contain this problem.
Homepage:http://www.freebsd.org/security
File Size:5600
Last Modified:Apr 15 17:12:37 2001
MD5 Checksum:d864a26e6213f1b5aaec55118c817579

 ///  File Name: FreeBSD-SA-06-08.ppp.txt
Description:
 FreeBSD Security Advisory - While processing Link Control Protocol (LCP) configuration options received from the remote host, ppp fails to correctly validate option lengths. This may result in data being read or written beyond the allocated kernel memory buffer.
Homepage:http://www.freebsd.org/security/
File Size:5596
Related CVE(s):CVE-2006-4304
Last Modified:Aug 28 02:01:06 2006
MD5 Checksum:e2f563d2dd4b544cc0d5325972985e5e

 ///  File Name: FreeBSD-SA-06-12.opie.txt
Description:
 FreeBSD-SA-06:12.opie - The opiepasswd(1) program uses getlogin(2) to identify the user calling opiepasswd(1). In some circumstances getlogin(2) will return "root" even when running as an unprivileged user. This causes opiepasswd(1) to allow an unpriviled user to configure OPIE authentication for the root user.
Homepage:http://www.freebsd.org/security/
File Size:5587
Last Modified:Mar 23 21:52:17 2006
MD5 Checksum:a879cb7f04f38109a9c6770703b3deab

 ///  File Name: FreeBSD-SA-01:58.lpd
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:58 - Users on the local machine or on remote systems which are allowed to access the local line printer daemon may be able to cause a buffer overflow. Submitting a specially-crafted incomplete print job and subsequently requesting a display of the printer queue, a static buffer overflow may be triggered, causing arbitrary code to be executed on the machine as root. In order to remotely exploit this vulnerability, the remote machine must be given access to the local printer daemon via a hostname entry in /etc/hosts.lpd or /etc/hosts.equiv. lpd is not enabled on FreeBSD by default.
Homepage:http://www.freebsd.org/security
File Size:5555
Last Modified:Sep 1 06:55:51 2001
MD5 Checksum:b05f641195df2f38d5f2ae76e66d966d

 ///  File Name: FreeBSD-SA-02:05.pine
Description:
 FreeBSD Security Advisory FreeBSD-SA-02:05 - The pine port, versions previous to pine-4.40, handles URLs in messages insecurely. PINE allows users to launch a web browser to visit a URL embedded in a message. Due to a programming error, PINE does not properly escape meta-characters in the URL before passing it to the command shell as an argument to the web browser.
Homepage:http://www.freebsd.org/security
File Size:5521
Last Modified:Jan 11 07:18:46 2002
MD5 Checksum:8b8ab8367a586b71c4575f237d8b0141

 ///  File Name: FreeBSD-SA-02:35.ffs
Description:
 FreeBSD Security Advisory FreeBSD-SA-02:35 - FFS, the default FreeBSD filesystem has an overflow in the maximum permitted FFS file size which allows users to create files that are larger than FreeBSD's virtual memory system can handle. The integer overflows that result when such files are accessed can map filesystem metadata into the user file, permitting access to arbitrary filesystem blocks. The bug is encountered only on FFS filesystems with a block size of 16k or greater on the i386 architecture, or 32k or greater on the alpha architecture.
Homepage:http://www.freebsd.org
File Size:5498
Last Modified:Aug 6 08:03:09 2002
MD5 Checksum:ab3dbf13df753d41c31c26c3cae4cfae
 

 ///  Last 10 Files
  1. :· pacpoll-disclose.txt
  2. :· USN-682-1.txt
  3. :· USN-681-1.txt
  4. :· BMSA-2008-09.txt
  5. :· webhub-bypass.txt
  6. :· infinite-bypass.txt
  7. :· VA_VD_87_08_XRDP.pdf
  8. :· TKADV2008-013.txt
  9. :· sqlinj-insouts.txt
  10. :· bcoos1013-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· USN-682-1.txt
  2. :· USN-681-1.txt
  3. :· VA_VD_87_08_XRDP.pdf
  4. :· TKADV2008-013.txt
  5. :· dsa-1675-1.txt
  6. :· dsa-1674-1.txt
  7. :· dsa-1673-1.txt
  8. :· dsa-1672-1.txt
  9. :· USN-679-1.txt
  10. :· USN-680-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· pacpoll-disclose.txt
  2. :· BMSA-2008-09.txt
  3. :· webhub-bypass.txt
  4. :· infinite-bypass.txt
  5. :· bcoos1013-sql.txt
  6. :· preonline-cmsqlxss.txt
  7. :· preclass-sqlxss.txt
  8. :· aspportal-disclose.txt
  9. :· preshoppingmall-cmsqlxss.txt
  10. :· ezpoll-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· vncrush.txt
  2. :· rshatter.txt
  3. :· Exomind-v0.2.tar.gz
  4. :· clamav-0.94.2.tar.gz
  5. :· cadfile.zip
  6. :· anehta-v0.6.0fixed2.zip
  7. :· tagfuzz.txt
  8. :· BrowserRider.20081124.tar.bz2
  9. :· mp3nema-v0_2.tar.gz
  10. :· squid-nufw-helper-1.1.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· sqlinj-insouts.txt
  2. :· format-string-linux.txt
  3. :· frame-pointer-overwrite-linux.txt
  4. :· iptablesf.txt
  5. :· nufw-2.2.19.tar.gz
  6. :· frhack2009-cfp.txt
  7. :· oracle-forensics-scns.pdf
  8. :· cansecwest-2009.txt
  9. :· A5.1.zip
  10. :· a51-php.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice