Vulnerabilities > Freebsd > Freebsd > 4.0

DATE CVE VULNERABILITY TITLE RISK
2000-10-20 CVE-2000-0749 Unspecified vulnerability in Freebsd
Buffer overflow in the Linux binary compatibility module in FreeBSD 3.x through 5.x allows local users to gain root privileges via long filenames in the linux shadow file system.
local
low complexity
freebsd
7.2
7.2
2000-10-20 CVE-2000-0729 Unspecified vulnerability in Freebsd
FreeBSD 5.x, 4.x, and 3.x allows local users to cause a denial of service by executing a program with a malformed ELF image header.
local
low complexity
freebsd
2.1
2.1
2000-07-05 CVE-2000-0595 Unspecified vulnerability in Freebsd
libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in another directory.
local
low complexity
freebsd
4.6
4.6
2000-07-04 CVE-2000-0594 BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.
network
low complexity
caldera freebsd mandrakesoft
5.0
5.0
2000-06-12 CVE-2000-0535 OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken.
network
low complexity
openssl freebsd
5.0
5.0
2000-06-07 CVE-2000-0532 Unspecified vulnerability in Freebsd 4.0
A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered.
network
low complexity
freebsd
7.5
7.5
2000-05-29 CVE-2000-0461 The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.
local
low complexity
freebsd netbsd
2.1
2.1
2000-05-01 CVE-2000-0440 NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.
network
low complexity
freebsd netbsd
5.0
5.0