Vulnerabilities > Freebsd > Freebsd > 8.1.prerelease
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-05-28 | CVE-2010-2022 | Permissions, Privileges, and Access Controls vulnerability in Freebsd 8.0/8.1Prerelease jail.c in jail in FreeBSD 8.0 and 8.1-PRERELEASE, when the "-l -U root" options are omitted, does not properly restrict access to the current working directory, which might allow local users to read, modify, or create arbitrary files via standard filesystem operations. | 3.3 |
2010-05-28 | CVE-2010-2020 | Improper Input Validation vulnerability in Freebsd 7.2/8.0/8.1Prerelease sys/nfsclient/nfs_vfsops.c in the NFS client in the kernel in FreeBSD 7.2 through 8.1-PRERELEASE, when vfs.usermount is enabled, does not validate the length of a certain fhsize parameter, which allows local users to gain privileges via a crafted mount request. | 6.9 |
2010-05-28 | CVE-2010-1938 | Numeric Errors vulnerability in multiple products Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long username, as demonstrated by a long USER command to the FreeBSD 8.0 ftpd. | 9.3 |