Vulnerabilities > Openbsd > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-06-19 | CVE-2017-1000372 | Security Bypass vulnerability in OpenBSD A flaw exists in OpenBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using setuid binaries such as /usr/bin/at. | 7.5 |
2017-03-27 | CVE-2017-5850 | Allocation of Resources Without Limits or Throttling vulnerability in Openbsd 6.0 httpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a series of requests for a large file using an HTTP Range header. | 7.8 |
2017-03-07 | CVE-2016-6241 | Integer Overflow or Wraparound vulnerability in Openbsd 5.8/5.9 Integer overflow in the amap_alloc1 function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value. | 7.2 |
2017-03-07 | CVE-2016-6240 | Numeric Errors vulnerability in Openbsd 5.8/5.9 Integer truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value. | 7.2 |
2017-03-07 | CVE-2016-6244 | Improper Input Validation vulnerability in Openbsd 5.9 The sys_thrsigdivert function in kern/kern_sig.c in the OpenBSD kernel 5.9 allows remote attackers to cause a denial of service (panic) via a negative "ts.tv_sec" value. | 7.8 |
2017-01-05 | CVE-2016-10012 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Openbsd Openssh The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures. | 7.8 |
2017-01-05 | CVE-2016-10010 | Permissions, Privileges, and Access Controls vulnerability in Openbsd Openssh sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c. | 7.0 |
2017-01-05 | CVE-2016-10009 | Untrusted Search Path vulnerability in Openbsd Openssh Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket. | 7.3 |
2016-12-09 | CVE-2016-8858 | Resource Management Errors vulnerability in Openbsd Openssh The kex_input_kexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate KEXINIT requests. | 7.5 |
2016-08-07 | CVE-2016-6515 | Improper Input Validation vulnerability in multiple products The auth_password function in auth-passwd.c in sshd in OpenSSH before 7.3 does not limit password lengths for password authentication, which allows remote attackers to cause a denial of service (crypt CPU consumption) via a long string. | 7.5 |