Vulnerabilities > Freebsd

DATE CVE VULNERABILITY TITLE RISK
2017-02-15 CVE-2016-1889 Integer Overflow or Wraparound vulnerability in Freebsd
Integer overflow in the bhyve hypervisor in FreeBSD 10.1, 10.2, 10.3, and 11.0 when configured with a large amount of guest memory, allows local users to gain privilege via a crafted device descriptor.
local
low complexity
freebsd CWE-190
7.2
2017-02-15 CVE-2016-1888 Improper Authentication vulnerability in Freebsd
The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows remote attackers to inject arguments to login and bypass authentication via vectors involving a "sequence of memory allocation failures."
network
low complexity
freebsd CWE-287
5.0
2017-02-15 CVE-2016-1883 Permissions, Privileges, and Access Controls vulnerability in Freebsd 10.1/10.2/9.3
The issetugid system call in the Linux compatibility layer in FreeBSD 9.3, 10.1, and 10.2 allows local users to gain privilege via unspecified vectors.
local
low complexity
freebsd CWE-264
7.2
2017-02-15 CVE-2016-1881 Permissions, Privileges, and Access Controls vulnerability in Freebsd 10.1/10.2/9.3
The kernel in FreeBSD 9.3, 10.1, and 10.2 allows local users to cause a denial of service (crash) or potentially gain privilege via a crafted Linux compatibility layer setgroups system call.
local
low complexity
freebsd CWE-264
7.2
2017-02-15 CVE-2016-1880 Permissions, Privileges, and Access Controls vulnerability in Freebsd 10.1/10.2/9.3
The Linux compatibility layer in the kernel in FreeBSD 9.3, 10.1, and 10.2 allows local users to read portions of kernel memory and potentially gain privilege via unspecified vectors, related to "handling of Linux futex robust lists."
local
low complexity
freebsd CWE-264
7.2
2017-02-07 CVE-2015-5677 Information Exposure vulnerability in Freebsd 10.1/10.2/9.3
bsnmpd, as used in FreeBSD 9.3, 10.1, and 10.2, uses world-readable permissions on the snmpd.config file, which allows local users to obtain the secret key for USM authentication by reading the file.
local
low complexity
freebsd CWE-200
2.1
2017-01-30 CVE-2016-2518 Out-of-bounds Read vulnerability in multiple products
The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.
network
low complexity
ntp debian netapp oracle redhat freebsd siemens CWE-125
5.0
2017-01-30 CVE-2015-7977 NULL Pointer Dereference vulnerability in multiple products
ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.
4.3
2017-01-30 CVE-2015-7973 7PK - Security Features vulnerability in multiple products
NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network.
5.8
2016-08-07 CVE-2016-5766 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via crafted chunk dimensions in an image.
6.8