Vulnerabilities > Netbsd

DATE CVE VULNERABILITY TITLE RISK
1998-01-05 CVE-1999-0513 ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
network
low complexity
sun digital ibm freebsd linux hp netbsd
5.0
1997-12-16 CVE-1999-0015 Teardrop IP denial of service.
network
low complexity
hp microsoft netbsd sun
5.0
1997-12-10 CVE-1999-0017 FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. 7.5
1997-12-01 CVE-1999-0016 Land IP denial of service.
network
low complexity
cisco gnu microsoft hp netbsd sun
5.0
1997-09-15 CVE-1999-1214 Credentials Management vulnerability in multiple products
The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID.
local
low complexity
sgi bsd freebsd netbsd openbsd CWE-255
2.1
1997-08-24 CVE-1999-1225 rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
network
low complexity
digital linux netbsd openbsd sun
5.0
1997-07-01 CVE-1999-0628 The rwho/rwhod service is running, which exposes machine status and user information.
network
low complexity
netbsd ibm freebsd linux
5.0
1997-07-01 CVE-1999-0074 Listening TCP ports are sequentially allocated, allowing spoofing attacks.
network
low complexity
netbsd microsoft freebsd linux
6.4
1996-12-12 CVE-1999-0297 Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
local
low complexity
paul-vixie netbsd redhat bsdi freebsd
7.2
1996-08-21 CVE-1999-0085 Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname.
network
low complexity
freebsd ibm netbsd
7.5