Vulnerabilities > Netbsd > Netbsd

DATE CVE VULNERABILITY TITLE RISK
2001-06-18 CVE-2001-0247 Buffer Overflow vulnerability in Multiple Vendor BSD ftpd glob()
Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.
network
low complexity
mit sgi freebsd netbsd openbsd
critical
 10.0
10
2001-05-03 CVE-2001-0268 The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the Local Descriptor Table (LDT) with a target that specifies an arbitrary kernel address.
local
low complexity
netbsd openbsd
7.2
7.2
2001-03-12 CVE-2000-0315 traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.
network
low complexity
debian digital netbsd redhat slackware
5.0
5.0
2001-03-12 CVE-2000-0314 traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.
network
low complexity
debian digital netbsd redhat slackware
5.0
5.0
2001-02-16 CVE-2001-0033 KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the user to gain additional privileges.
local
low complexity
kth netbsd
7.2
7.2
2001-02-12 CVE-2001-0053 One-byte buffer overflow in replydirname function in BSD-based ftpd allows remote attackers to gain root privileges.
network
low complexity
david-madore netbsd openbsd
critical
 10.0
10
2000-12-19 CVE-2000-0997 Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges.
local
low complexity
netbsd openbsd
7.2
7.2
2000-12-19 CVE-2000-0993 Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.
local
low complexity
freebsd netbsd openbsd
7.2
7.2
2000-10-20 CVE-2000-0751 mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands.
network
low complexity
netbsd openbsd redhat
7.5
7.5
2000-10-20 CVE-2000-0750 Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name.
network
low complexity
netbsd openbsd redhat
7.5
7.5