1.3.1

DATE	CVE	VULNERABILITY TITLE	RISK
2001-05-03	CVE-2001-0268	The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the Local Descriptor Table (LDT) with a target that specifies an arbitrary kernel address. local low complexity netbsd openbsd	7.2
2001-03-12	CVE-2000-0315	traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks. network low complexity debian digital netbsd redhat slackware	5.0
2001-03-12	CVE-2000-0314	traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero. network low complexity debian digital netbsd redhat slackware	5.0
1999-08-09	CVE-1999-0674	The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve. local low complexity netbsd openbsd sun	7.2
1999-07-15	CVE-1999-1518	Denial of Service vulnerability in Multiple Vendor Shared Memory Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults. network low complexity freebsd netbsd	5.0
1999-04-21	CVE-1999-0466	Unspecified vulnerability in Netbsd The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device. local low complexity netbsd	7.2
1999-04-12	CVE-1999-0446	Unspecified vulnerability in Netbsd 1.3.1/1.3.2/1.3.3 Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS. local low complexity netbsd	2.1
1998-07-03	CVE-1999-1409	The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbitrary files by submitting the file to at with the -f argument, which generates error messages that at sends to the user via e-mail. local low complexity sgi netbsd	2.1
1998-05-21	CVE-1999-0303	Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames. local low complexity sun netbsd digital openbsd	4.6
1998-04-08	CVE-1999-0011	Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer. network low complexity data-general isc ibm nec netbsd redhat sco sun critical	10.0