Computer Security

Search:Software:FreeBSD 6.1
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



See also
  FREEBSD : FreeBSD 5.2
Name:FREEBSD : FreeBSD 6.1

6!BSD systems kevent race conditions
updated since 24.08.2009
document Race conditions on SMP systems.
 FreeBSD sendfile() privilege escalation
document Syscall allows read access to write-only files.
 FreeBSD pty hijacking
document 'script' users openpty in insecure way, ptsname incorrectly extracts device name.
6!FreeBSD pseudo-random numbers generator weakness
document SAme PRNG sequence may be reproduced twice under some conditions.
 libarchive multiple security vulnerabilities
document Memory corruption, buffer overflow, NULL pointer dereference.
6!Linux and BSD based Unix system IPv6 traffic amplification
document IPv6 routing header allows to set route in a way to trasmit packet for multiple times over the same link.
6!Mac OS X / Apple Finder multiple file system parsing vulnerabilities
updated since 11.01.2007
document Buffer overflow on oversized DMG volume label in Apple Finder. Integer overflows on UFS DMG image parsing. DoS on processing UFS and HFS+ volumes.
 FreeBSD jail rc.d symbolic links problem
document Multiple conditions allow to write files begind jailed environment, as an example symbolic link /var/log/console.log.
 FreeBSD sppp buffer overflow
updated since 24.08.2006
document Buffer overflow on synchronous PPP LCP option parsing.
6!Linux / FreeBSD kernel SMBFS/CIFSFS chroot restriction bypass
updated since 28.04.2006
document It's possible to traverse chroot directory.
6!FreeBSD ypserv NIS access protection bypass
document /var/yp/securenets access control restrictions do not work.
 FreeBSD floating-point unit information leak
document Internal registers state is not completely saved/restored during context switching.
9!Sendmail mail server race conditions
updated since 22.03.2006
document Race conditions on signals processing with setjmp/longjmp allow remote code execution.
6!FreeBSD IPSec replay attack
document fast_ipsec implementation doesn't increment packet sequence number, allowing replay attack for captured packet.
6!opie one time password system privilege escalation
document Under some conditions unprivileged user can be validated as 'root'.
                    
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server