Netbsd : Security Vulnerabilities, CVEs,
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
Max CVSS
10.0
EPSS Score
9.01%
Published
1998-04-08
Updated
2018-10-30
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
Max CVSS
5.0
EPSS Score
0.29%
Published
1998-04-08
Updated
2018-10-30
Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.
Max CVSS
10.0
EPSS Score
1.15%
Published
1998-04-08
Updated
2018-10-30
Teardrop IP denial of service.
Max CVSS
5.0
EPSS Score
0.13%
Published
1997-12-16
Updated
2018-05-03
Land IP denial of service.
Max CVSS
5.0
EPSS Score
0.15%
Published
1997-12-01
Updated
2008-09-09
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
Max CVSS
7.5
EPSS Score
1.65%
Published
1997-12-10
Updated
2022-08-17
Buffer overflow of rlogin program using TERM environmental variable.
Max CVSS
10.0
EPSS Score
0.94%
Published
1997-02-06
Updated
2024-02-09
Listening TCP ports are sequentially allocated, allowing spoofing attacks.
Max CVSS
6.4
EPSS Score
0.24%
Published
1997-07-01
Updated
2022-08-17
Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname.
Max CVSS
7.5
EPSS Score
2.17%
Published
1996-08-21
Updated
2018-05-03
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
1996-12-12
Updated
2022-08-17
Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.
Max CVSS
4.6
EPSS Score
0.04%
Published
1998-05-21
Updated
2022-08-17
mmap function in BSD allows local attackers in the kmem group to modify memory through devices.
Max CVSS
7.2
EPSS Score
0.04%
Published
1998-02-01
Updated
2022-08-17
FreeBSD mmap function allows users to modify append-only or immutable files.
Max CVSS
10.0
EPSS Score
1.06%
Published
1998-02-20
Updated
2008-09-09
NetBSD netstat command allows local users to access kernel memory.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-02-09
Updated
2008-09-09
A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service.
Max CVSS
2.6
EPSS Score
0.17%
Published
1999-02-17
Updated
2022-08-17
umapfs allows local users to gain root privileges by changing their uid through a malicious mount_umap program.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-03-17
Updated
2022-08-17
In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-03-17
Updated
2022-08-17
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-03-21
Updated
2022-08-17
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
Max CVSS
7.5
EPSS Score
0.33%
Published
1999-03-30
Updated
2008-09-09
Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-04-12
Updated
2008-09-09
The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-04-21
Updated
2008-09-09
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
Max CVSS
5.0
EPSS Score
14.31%
Published
1998-01-05
Updated
2022-08-17
The rwho/rwhod service is running, which exposes machine status and user information.
Max CVSS
5.0
EPSS Score
0.37%
Published
1997-07-01
Updated
2022-08-17
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-08-09
Updated
2018-10-30
NetBSD on a multi-homed host allows ARP packets on one network to modify ARP entries on another connected network.
Max CVSS
6.4
EPSS Score
0.70%
Published
1999-05-01
Updated
2008-09-09