MidnightBSD

Advisories for netbsd

CVE-1999-0009 HIGH

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sgi irix 4.0.5d
isc bind 8.1
sco open_desktop 5.0
netbsd netbsd 1.1
netbsd netbsd 1.2.1
sgi irix 4.0.2
sun solaris 2.5.1
ibm aix 4.1.1
sgi irix 4.0.5_iop
ibm aix 4.1.4
sgi irix 4.0.4b
sgi irix 4.0.4t
nec asl_ux_4800 64
sgi irix 5.1.1
sgi irix 4.0.5f
netbsd netbsd 1.2
sgi irix 4.0.5
sgi irix 4.0.5e
sgi irix 6.1
ibm aix 4.2.1
ibm aix 4.1.3
isc bind 8.1.1
sun solaris 2.5
sun solaris 2.6
sun sunos -
ibm aix 4.1
sun sunos 5.5.1
data_general dg_ux 5.4_3.1
bsdi bsd_os 2.0
sgi irix 5.0
sco unixware 2.1
sgi irix 5.0.1
sgi irix 4.0.1
redhat linux 4.0
data_general dg_ux 5.4_4.11
ibm aix 4.3
sgi irix 4.0.5a
sgi irix 3.3.2
redhat linux 4.2
netbsd netbsd 1.3.1
sgi irix 6.0
redhat linux 5.0
sun sunos 5.3
sco unixware 7.0
isc bind 4.9.6
sgi irix 3.2
ibm aix 4.2
data_general dg_ux 5.4_3.0
redhat linux 4.1
sgi irix 5.1
sun sunos 5.4
sgi irix 3.3.3
netbsd netbsd 1.0
bsdi bsd_os 2.0.1
sgi irix 4.0.5_ipr
sgi irix 3.3.1
sgi irix 5.3
ibm aix 4.1.5
sgi irix 4.0.1t
data_general dg_ux 5.4_4.1
netbsd netbsd 1.3
sgi irix 5.2
sun sunos 5.5
sgi irix 4.0.4
sgi irix 4.0
sco open_desktop 3.0
ibm aix 4.1.2
sgi irix 4.0.5g
sgi irix 4.0.5h
bsdi bsd_os 2.1
sgi irix 6.2
caldera openlinux 1.0
sgi irix 6.3
sgi irix 3.3
sgi irix 4.0.3
CVE-1999-0010 MEDIUM

Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ibm aix 4.3
redhat linux 4.2
netbsd netbsd 1.3.1
sco unix 3.2v4
redhat linux 5.0
sun sunos 5.3
sco unixware 7.0
nec asl_ux_4800 13
ibm aix 4.2
sun sunos 5.4
netbsd netbsd 1.3
data_general dg_ux y2k_patchr4.20mu03
sun sunos 5.5
nec asl_ux_4800 11
sco open_desktop 3.0
data_general dg_ux y2k_patchr4.20mu02
isc bind 8
data_general dg_ux y2k_patchr4.12mu03
ibm aix 4.1
sun sunos 5.5.1
isc bind 4.9
sun sunos 5.6
data_general dg_ux y2k_patchr4.11mu05
sco unixware 2.1
sco openserver 5.0
data_general dg_ux y2k_patchr4.20mu01
CVE-1999-0011 HIGH

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,CWE-1067,

Products Affected

Vendor Product Version
ibm aix 4.3
redhat linux 4.2
netbsd netbsd 1.3.1
sco unix 3.2v4
redhat linux 5.0
sun sunos 5.3
sco unixware 7.0
nec asl_ux_4800 13
ibm aix 4.2
sun sunos 5.4
netbsd netbsd 1.3
data_general dg_ux y2k_patchr4.20mu03
sun sunos 5.5
nec asl_ux_4800 11
sco open_desktop 3.0
data_general dg_ux y2k_patchr4.20mu02
isc bind 8
data_general dg_ux y2k_patchr4.12mu03
ibm aix 4.1
sun sunos 5.5.1
isc bind 4.9
sun sunos 5.6
data_general dg_ux y2k_patchr4.11mu05
sco unixware 2.1
sco openserver 5.0
data_general dg_ux y2k_patchr4.20mu01
CVE-1999-0015 MEDIUM

Teardrop IP denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
hp hp-ux 9.04
hp hp-ux 10.01
sun sunos 4.1.3u1
hp hp-ux 10.20
netbsd netbsd 1.1
microsoft windows_nt 4.0
microsoft windows_nt 3.5.1
netbsd netbsd 1.2.1
hp hp-ux 11.00
hp hp-ux 9.05
hp hp-ux 9.03
hp hp-ux 10
sun sunos 4.1.4
hp hp-ux 9.00
netbsd netbsd 1.2
hp hp-ux 10.30
hp hp-ux 10.16
netbsd netbsd 1.0
hp hp-ux 9.01
hp hp-ux 9.07
hp hp-ux 10.24
microsoft windows_95 0.0a
CVE-1999-0016 MEDIUM

Land IP denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
hp hp-ux 9.04
hp hp-ux 10.01
sun sunos 4.1.3u1
microsoft windows_95 *
hp hp-ux 10.20
netbsd netbsd 1.1
microsoft windows_nt 4.0
hp hp-ux 11.00
hp hp-ux 9.05
hp hp-ux 9.03
sun sunos 4.1.4
hp hp-ux 10.10
hp hp-ux 9.00
cisco ios 7000
hp hp-ux 10.00
hp hp-ux 10.30
hp hp-ux 10.16
netbsd netbsd 1.0
hp hp-ux 9.01
hp hp-ux 9.07
hp hp-ux 10.24
gnu inet 5.01
microsoft winsock 2.0
CVE-1999-0017 HIGH

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ibm aix 4.3
sun sunos 4.1.3u1
netbsd netbsd 1.1
gnu inet 6.02
netbsd netbsd 1.2.1
siemens reliant_unix *
sun sunos 5.3
sun sunos 4.1.4
netbsd netbsd 1.2
ibm aix 4.2
sun sunos 5.4
gnu inet 6.01
netbsd netbsd 1.0
caldera openlinux 1.2
gnu inet 5.01
sun sunos 5.5
freebsd freebsd 1.0
sco open_desktop 3.0
freebsd freebsd 1.2
washington_university wu-ftpd 2.4
freebsd freebsd 1.1
ibm aix 3.2
ibm aix 4.1
sun sunos 5.5.1
freebsd freebsd 2.0
sco unixware 2.1
freebsd freebsd 2.1.0
sco openserver 5.0.4
freebsd freebsd 2.1.7
CVE-1999-0046 HIGH

Buffer overflow of rlogin program using TERM environmental variable.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
hp hp-ux 10.01
next nextstep 3.0
data_general dg_ux 2.0
digital unix 4.0b
data_general dg_ux 3.0
netbsd netbsd 1.1
bsdi bsd_os 1.1
freebsd freebsd 2.1.5
sun solaris 2.5.1
hp hp-ux 10.09
digital ultrix 4.3a
ibm aix 4.1.1
ibm aix 4.1.4
sun sunos 4.1.4
digital ultrix 2.2
digital ultrix 4.1
next nextstep 3.3
debian debian_linux 0.93
ibm aix 4.1.3
sun solaris 2.5
digital ultrix 4.2
data_general dg_ux 1.0
next nextstep 2.1
digital ultrix 4.5
ibm aix 4.1
sun sunos 5.5.1
hp hp-ux 10.10
digital ultrix 4.3
bsdi bsd_os 2.0
hp hp-ux 10.16
freebsd freebsd 2.1.0
hp hp-ux 10.24
digital ultrix -
next nextstep 1.0a
sun solaris 2.4
sun sunos 4.1.3u1
hp hp-ux 10.20
next nextstep 1.0
next nextstep 3.2
sun sunos 5.3
digital ultrix 4.4
hp hp-ux 10.34
digital unix 4.0a
next nextstep 2.0
oracle solaris 2.6
next nextstep -
hp hp-ux 10.00
data_general dg_ux 4.0
hp hp-ux 10.30
oracle solaris 7.0
sun sunos 5.4
next nextstep 4.0
next nextstep 3.1
netbsd netbsd 1.0
bsdi bsd_os 2.0.1
freebsd freebsd 2.0.5
ibm aix 4.1.5
sun sunos 5.5
digital unix 4.0
digital ultrix 3.0
oracle solaris 8
ibm aix 4.1.2
freebsd freebsd 1.1.5.1
hp hp-ux 10.08
digital unix 3.2g
oracle solaris -
bsdi bsd_os 2.1
ibm aix 3.2
freebsd freebsd 2.0
digital ultrix 4.0
CVE-1999-0074 MEDIUM

Listening TCP ports are sequentially allocated, allowing spoofing attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 6.2
netbsd netbsd 2.0.4
linux linux_kernel 2.6.20.1
microsoft windows_nt *
CVE-1999-0085 HIGH

Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 6.2
ibm aix 4.2
netbsd netbsd 2.0.4
CVE-1999-0297 HIGH

Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.4
redhat linux *
paul_vixie vixie_cron 3.0
freebsd freebsd 2.1.0
bsdi bsd_os 2.1
CVE-1999-0303 MEDIUM

Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun solaris 2.4
netbsd netbsd 1.3
netbsd netbsd 1.3.1
sun sunos 5.5
sun sunos 5.2
sun solaris 2.5
sun solaris *
sun sunos 5.3
sun solaris 1.1.4
sun sunos -
digital osf_1 1.1
sun sunos 4.1.3
sun sunos 5.5.1
sun sunos 4.1.4
sun sunos 5.0
sun sunos 5.4
sun solaris 1.1.3
sun sunos 5.1
openbsd openbsd 2.1
openbsd openbsd 2.2
CVE-1999-0304 HIGH

mmap function in BSD allows local attackers in the kmem group to modify memory through devices.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
bsdi bsd_os 3.0
freebsd freebsd 2.2
netbsd netbsd 2.0.4
openbsd openbsd 2.2
CVE-1999-0323 HIGH

FreeBSD mmap function allows users to modify append-only or immutable files.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
bsdi bsd_os 3.0
freebsd freebsd 2.2
netbsd netbsd 2.0.4
openbsd openbsd 2.2
CVE-1999-0367 LOW

NetBSD netstat command allows local users to access kernel memory.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.4
CVE-1999-0396 LOW

A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.4
openbsd openbsd 2.4
CVE-1999-0420 HIGH

umapfs allows local users to gain root privileges by changing their uid through a malicious mount_umap program.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd umapfs *
CVE-1999-0422 MEDIUM

In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.3.3
CVE-1999-0433 MEDIUM

XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.6
netbsd netbsd 1.3.2
slackware slackware_linux 3.3
netbsd netbsd 1.3.3
redhat linux 5.2
suse suse_linux 6.0
suse suse_linux 6.1
xfree86_project x11r6 3.3.3
redhat linux 5.1
slackware slackware_linux 3.5
suse suse_linux 5.2
slackware slackware_linux 3.4
slackware slackware_linux 4.0
suse suse_linux 5.1
CVE-1999-0434 HIGH

XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat linux 5.1
debian debian_linux 2.1
suse suse_linux 5.3
caldera openlinux 1.2
debian debian_linux 2.0
netbsd netbsd 1.3.3
CVE-1999-0446 LOW

Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.3.2
netbsd netbsd 1.3.1
netbsd netbsd 1.3.3
CVE-1999-0466 HIGH

The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.3
netbsd netbsd 1.3.2
netbsd netbsd 1.3.1
netbsd netbsd 1.3.3
CVE-1999-0513 MEDIUM

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun solaris 2.4
freebsd freebsd 2.1.7.1
hp hp-ux 10.20
digital unix 4.0b
ibm aix 3.1
freebsd freebsd 2.1.5
sun solaris 2.5.1
digital unix 4.0a
ibm aix 3.2.4
netbsd netbsd 1.2
sun sunos 5.4
freebsd freebsd 2.0.5
linux linux_kernel 2.1
freebsd freebsd 2.2.4
sun sunos 5.5
digital unix 4.0
digital unix 4.0c
ibm aix 3.2.5
sun solaris 2.5
freebsd freebsd 2.1.6
freebsd freebsd 1.1.5.1
hp hp-ux 11.00
sun solaris 2.6
sun sunos -
digital unix 3.2g
ibm aix 3.2
sun sunos 5.5.1
freebsd freebsd 2.2.3
digital unix 4.0d
freebsd freebsd 2.2.2
linux linux_kernel 2.0
freebsd freebsd 2.1.0
CVE-1999-0628 MEDIUM

The rwho/rwhod service is running, which exposes machine status and user information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 6.2
ibm aix 4.2
netbsd netbsd 2.0.4
linux linux_kernel 2.6.20.1
CVE-1999-0674 HIGH

The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun solaris 2.4
netbsd netbsd 1.3.2
netbsd netbsd 1.3.1
sun sunos 5.2
netbsd netbsd 1.1
netbsd netbsd 1.2.1
sun sunos 5.3
openbsd openbsd 2.3
sun sunos 5.7
openbsd openbsd 2.5
netbsd netbsd 1.2
sun sunos 5.4
netbsd netbsd 1.0
openbsd openbsd 2.1
openbsd openbsd 2.4
netbsd netbsd 1.3
sun sunos 5.5
sun solaris 2.5
sun solaris 7.0
sun solaris 2.6
sun sunos -
netbsd netbsd 1.3.3
netbsd netbsd 1.4
sun sunos 5.5.1
openbsd openbsd 2.0
sun sunos 5.1
openbsd openbsd 2.2
CVE-1999-0763 MEDIUM

NetBSD on a multi-homed host allows ARP packets on one network to modify ARP entries on another connected network.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.3
CVE-1999-0764 MEDIUM

NetBSD allows ARP packets to overwrite static ARP entries.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.3
CVE-1999-1214 LOW

The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID.

CVSS 2.0

Severity: LOW

Problem Type: CWE-255,

Products Affected

Vendor Product Version
bsd bsd 4.4
bsd bsd *
sgi irix *
freebsd freebsd 6.2
netbsd netbsd 2.0.4
openbsd openbsd 2.1
CVE-1999-1225 MEDIUM

rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.4
linux linux_kernel 2.6.20.1
openbsd openbsd *
sun solaris *
digital ultrix *
CVE-1999-1409 LOW

The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbitrary files by submitting the file to at with the -f argument, which generates error messages that at sends to the user via e-mail.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sgi irix 6.2
netbsd netbsd 1.3
sgi irix 6.5
netbsd netbsd 1.3.1
netbsd netbsd 1.2
netbsd netbsd 1.1
netbsd netbsd *
netbsd netbsd 1.2.1
sgi irix 6.4
netbsd netbsd 1.0
sgi irix 6.5.1
CVE-1999-1518 MEDIUM

Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 3.0
freebsd freebsd 2.1.7.1
freebsd freebsd 2.2.8
netbsd netbsd 1.3.2
freebsd freebsd 2.2.4
netbsd netbsd 1.3.1
freebsd freebsd 2.2.5
freebsd freebsd 3.1
freebsd freebsd 2.1.6
freebsd freebsd 1.1.5.1
freebsd freebsd 2.1.5
netbsd netbsd 1.3.3
netbsd netbsd 1.4
freebsd freebsd 2.0
freebsd freebsd 2.2.3
freebsd freebsd 3.2
freebsd freebsd 2.2.2
freebsd freebsd 2.1.0
freebsd freebsd 2.0.5
freebsd freebsd 2.2.6
CVE-2000-0092 MEDIUM

The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openbsd openbsd 2.6
netbsd netbsd 1.4.1
freebsd freebsd 3.4
CVE-2000-0094 HIGH

procfs in BSD systems allows local users to gain root privileges by modifying the /proc/pid/mem interface via a modified file descriptor for stderr.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.1
CVE-2000-0157 HIGH

NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.1
CVE-2000-0314 MEDIUM

traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat linux 2.0.34
digital unix 4.0
netbsd netbsd *
debian debian_linux 2.0.34
slackware slackware_linux 2.0.34
CVE-2000-0315 MEDIUM

traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat linux 2.0.34
digital unix 4.0
netbsd netbsd *
debian debian_linux 2.0.34
slackware slackware_linux 2.0.34
CVE-2000-0440 MEDIUM

NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.2
freebsd freebsd 4.0
freebsd freebsd 5.0
netbsd netbsd 1.4.1
freebsd freebsd 3.4
CVE-2000-0456 LOW

NetBSD 1.4.2 and earlier allows local users to cause a denial of service by repeatedly running certain system calls in the kernel which do not yield the CPU, aka "cpu-hog".

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.2
netbsd netbsd 1.4.1
CVE-2000-0461 LOW

The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 3.0
freebsd freebsd 2.1.7.1
freebsd freebsd 2.2
freebsd freebsd 2.2.5
freebsd freebsd 3.1
freebsd freebsd 2.1.5
freebsd freebsd 5.0
freebsd freebsd 2.0.5
freebsd freebsd 2.2.8
freebsd freebsd 2.2.4
netbsd netbsd 1.4.2
freebsd freebsd 3.3
freebsd freebsd 2.1.6
freebsd freebsd 1.1.5.1
freebsd freebsd 3.4
freebsd freebsd 2.0
freebsd freebsd 2.2.3
freebsd freebsd 3.2
freebsd freebsd 2.2.2
freebsd freebsd 4.0
freebsd freebsd 2.1.0
netbsd netbsd 1.4.1
freebsd freebsd 2.1.6.1
freebsd freebsd 2.2.6
CVE-2000-0462 LOW

ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access other files outside of their home directory.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.2
CVE-2000-0489 LOW

FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 3.0
netbsd netbsd 1.4.2
freebsd freebsd 3.3
freebsd freebsd 3.1
freebsd freebsd 3.4
netbsd netbsd 1.4
openbsd openbsd 2.6
freebsd freebsd 3.2
openbsd openbsd 2.5
freebsd freebsd 3.5
freebsd freebsd 4.0
openbsd openbsd 2.7
freebsd freebsd 5.0
netbsd netbsd 1.4.1
CVE-2000-0750 HIGH

Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openbsd openbsd 2.6
openbsd openbsd 2.5
redhat linux 6.1
netbsd netbsd 1.4.2
openbsd openbsd 2.7
redhat linux 6.0
netbsd netbsd 1.4.1
redhat linux 6.2
openbsd openbsd 2.4
CVE-2000-0751 HIGH

mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openbsd openbsd 2.6
openbsd openbsd 2.5
redhat linux 6.1
netbsd netbsd 1.4.2
openbsd openbsd 2.7
redhat linux 6.0
netbsd netbsd 1.4.1
redhat linux 6.2
openbsd openbsd 2.4
CVE-2000-0993 HIGH

Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.2
freebsd freebsd 3.3
freebsd freebsd 3.4
netbsd netbsd 1.4
openbsd openbsd 2.3
openbsd openbsd 2.6
freebsd freebsd 3.2
openbsd openbsd 2.5
freebsd freebsd 3.5
freebsd freebsd 4.0
openbsd openbsd 2.7
netbsd netbsd 1.4.1
openbsd openbsd 2.4
CVE-2000-0997 HIGH

Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openbsd openbsd 2.3
openbsd openbsd 2.6
openbsd openbsd 2.5
netbsd netbsd 1.4.2
openbsd openbsd 2.7
netbsd netbsd 1.4.1
openbsd openbsd 2.4
netbsd netbsd 1.4
CVE-2000-1208 HIGH

Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote() call.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.2
openbsd openbsd 2.7
redhat linux 7.0
immunix immunix 6.2
netbsd netbsd 1.4.1
netbsd netbsd 1.4
CVE-2001-0033 HIGH

KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the user to gain additional privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5
kth kth_kerberos 4
CVE-2001-0053 HIGH

One-byte buffer overflow in replydirname function in BSD-based ftpd allows remote attackers to gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openbsd openbsd 2.6
openbsd openbsd 2.5
netbsd netbsd 1.4.2
netbsd netbsd 1.5
openbsd openbsd 2.7
openbsd openbsd 2.8
netbsd netbsd 1.4.1
david_madore ftpd-bsd 0.2.3
openbsd openbsd 2.4
netbsd netbsd 1.4
CVE-2001-0247 HIGH

Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 3.0
netbsd netbsd 1.3.2
freebsd freebsd 2.2
mit kerberos_5 1.2.1
freebsd freebsd 2.2.5
netbsd netbsd 1.2.1
openbsd openbsd 2.8
sgi irix 6.5.8
sgi irix 6.5.3
sgi irix 6.5.7
freebsd freebsd 4.2
sgi irix 6.1
freebsd freebsd 4.1.1
openbsd openbsd 2.4
sgi irix 6.5.5
freebsd freebsd 4.1
freebsd freebsd 2.2.4
sgi irix 6.5.3f
freebsd freebsd 3.3
netbsd netbsd 1.4
freebsd freebsd 2.2.3
freebsd freebsd 3.2
sgi irix 6.5.2m
netbsd netbsd 1.5
freebsd freebsd 4.0
netbsd netbsd 1.4.1
sgi irix 6.5.1
netbsd netbsd 1.3.1
mit kerberos_5 1.2
sgi irix 6.5.4
freebsd freebsd 3.1
sgi irix 6.5.6
freebsd freebsd 3.5.1
openbsd openbsd 2.3
openbsd openbsd 2.5
netbsd netbsd 1.4.3
openbsd openbsd 2.7
mit kerberos_5 1.1.1
netbsd netbsd 1.3
freebsd freebsd 2.2.8
sgi irix 6.5.3m
netbsd netbsd 1.4.2
freebsd freebsd 3.4
netbsd netbsd 1.3.3
openbsd openbsd 2.6
freebsd freebsd 2.2.2
freebsd freebsd 3.5
sgi irix 6.5.10
mit kerberos_5 1.2.2
sgi irix 6.5.11
freebsd freebsd 2.2.6
CVE-2001-0268 HIGH

The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the Local Descriptor Table (LDT) with a target that specifies an arbitrary kernel address.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd *
openbsd openbsd *
CVE-2001-0554 HIGH

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
freebsd freebsd 3.0
freebsd freebsd 2.1
freebsd freebsd 2.1.7.1
sgi irix 6.5
netbsd netbsd 1.3.2
freebsd freebsd 2.2
netbsd netbsd 1.1
mit kerberos_5 1.2.1
freebsd freebsd 2.2.5
netbsd netbsd 1.2.1
openbsd openbsd 2.8
freebsd freebsd 2.1.5
sun sunos 5.7
netbsd netbsd 1.2
freebsd freebsd 4.2
freebsd freebsd 4.1.1
openbsd openbsd 2.1
openbsd openbsd 2.4
freebsd freebsd 4.1
freebsd freebsd 2.2.4
sun sunos 5.8
freebsd freebsd 3.3
netkit linux_netkit 0.10
freebsd freebsd 2.1.6
sun solaris 2.6
freebsd freebsd 2.2.1
ibm aix 5.1
netbsd netbsd 1.4
sun sunos 5.5.1
freebsd freebsd 2.2.7
freebsd freebsd 2.2.3
freebsd freebsd 3.2
netbsd netbsd 1.5
freebsd freebsd 4.0
openbsd openbsd 2.0
freebsd freebsd 2.1.0
ibm aix 4.3.2
netbsd netbsd 1.4.1
freebsd freebsd 2.1.6.1
ibm aix 4.3
netbsd netbsd 1.3.1
mit kerberos_5 1.2
sun sunos 5.2
freebsd freebsd 3.1
freebsd freebsd 3.5.1
sun sunos 5.3
netbsd netbsd 1.5.1
ibm aix 4.3.3
openbsd openbsd 2.3
openbsd openbsd 2.5
netbsd netbsd 1.4.3
mit kerberos_5 1.1
openbsd openbsd 2.7
sun sunos 5.4
netbsd netbsd 1.0
freebsd freebsd 2.0.5
freebsd freebsd 2.0.1
mit kerberos_5 1.1.1
netbsd netbsd 1.3
mit kerberos 1.0
freebsd freebsd 2.2.8
netkit linux_netkit 0.12
netbsd netbsd 1.4.2
sun sunos 5.5
debian debian_linux 2.2
ibm aix 4.3.1
netkit linux_netkit 0.11
freebsd freebsd 3.4
netbsd netbsd 1.3.3
freebsd freebsd 2.0
openbsd openbsd 2.6
sun sunos 5.0
freebsd freebsd 4.3
freebsd freebsd 2.2.2
freebsd freebsd 3.5
mit kerberos_5 1.2.2
freebsd freebsd 2.1.7
freebsd freebsd 2.2.6
sun sunos 5.1
openbsd openbsd 2.2
CVE-2001-0670 HIGH

Buffer overflow in BSD line printer daemon (in.lpd or lpd) in various BSD-based operating systems allows remote attackers to execute arbitrary code via an incomplete print job followed by a request to display the printer queue.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
bsd bsd *
netbsd netbsd *
openbsd openbsd *
freebsd freebsd *
CVE-2001-0710 MEDIUM

NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd *
freebsd freebsd *
CVE-2001-0734 HIGH

Hitachi Super-H architecture in NetBSD 1.5 and 1.4.1 allows a local user to gain privileges via modified Status Register contents, which are not properly handled by (1) the sigreturn system call or (2) the process_write_regs kernel routine.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5
netbsd netbsd 1.4.1
CVE-2001-0993 LOW

sendmsg function in NetBSD 1.3 through 1.5 allows local users to cause a denial of service (kernel trap or panic) via a msghdr structure with a large msg_controllen length.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.3
netbsd netbsd 1.3.2
netbsd netbsd 1.3.1
netbsd netbsd 1.4.2
netbsd netbsd 1.5
netbsd netbsd 1.4.3
netbsd netbsd 1.4.1
netbsd netbsd 1.3.3
netbsd netbsd 1.4
CVE-2001-1091 HIGH

The (1) dump and (2) dump_lfs commands in NetBSD 1.4.x through 1.5.1 do not properly drop privileges, which could allow local users to gain privileges via the RCMD_CMD environment variable.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.4.2
netbsd netbsd 1.5
netbsd netbsd 1.4.3
netbsd netbsd 1.4.1
netbsd netbsd 1.4
netbsd netbsd 1.5.1
CVE-2001-1145 MEDIUM

fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current directory is moved, which could cause scripts to perform dangerous actions on the wrong directories.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 4.3
netbsd netbsd 1.5
openbsd openbsd *
netbsd netbsd 1.5.1
CVE-2001-1244 MEDIUM

Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
microsoft windows_2000 *
sun sunos 5.8
microsoft windows_nt 4.0
openbsd openbsd 2.8
hp hp-ux 11.00
linux linux_kernel 2.4.0
netbsd netbsd 1.5.1
sun sunos 5.5.1
sun sunos 5.7
freebsd freebsd 4.3
linux linux_kernel 2.4.5
netbsd netbsd 1.5
hp vvos 11.04
linux linux_kernel 2.4.3
hp hp-ux 11.0.4
linux linux_kernel 2.4.1
openbsd openbsd 2.9
hp hp-ux 11.11
linux linux_kernel 2.4.4
linux linux_kernel 2.4.2
CVE-2002-0004 HIGH

Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
caldera openlinux_server 3.1
caldera openlinux_workstation 3.1
suse suse_linux 7.0
debian debian_linux 2.2
suse suse_linux 7.3
redhat linux 7.0
redhat linux 7.1
suse suse_linux 7.2
redhat linux 7.2
slackware slackware_linux 7.1
freebsd freebsd 4.3
netbsd netbsd 1.5.2
mandrakesoft mandrake_linux 8.1
freebsd freebsd 4.2
suse suse_linux 6.4
freebsd freebsd 4.4
slackware slackware_linux 7.0
suse suse_linux 7.1
freebsd freebsd 4.1.1
redhat linux 6.2
mandrakesoft mandrake_linux 8.0
slackware slackware_linux 8.0
CVE-2002-0381 MEDIUM

The TCP implementation in various BSD operating systems (tcp_input.c) does not properly block connections to broadcast addresses, which could allow remote attackers to bypass intended filters via packets with a unicast link layer address and an IP broadcast address.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.4
openbsd openbsd *
freebsd freebsd *
CVE-2002-0414 HIGH

KAME-derived implementations of IPsec on NetBSD 1.5.2, FreeBSD 4.5, and other operating systems, does not properly consult the Security Policy Database (SPD), which could cause a Security Gateway (SG) that does not use Encapsulating Security Payload (ESP) to forward forged IPv4 packets.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openbsd openbsd 2.6
freebsd freebsd 4.5
freebsd freebsd 4.3
netbsd netbsd 1.5.2
netbsd netbsd 1.5
freebsd freebsd 4.2
freebsd freebsd 4.4
openbsd openbsd 2.7
netbsd netbsd 1.5.1
CVE-2002-0666 MEDIUM

IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) packets, which result in integer signedness errors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 4.6
frees_wan frees_wan 1.9.3
nec ix1020 *
netbsd netbsd 1.5.1
netbsd netbsd 1.5.2
frees_wan frees_wan 1.9.5
apple mac_os_x_server 10.2
frees_wan frees_wan 1.9.4
nec bluefire_ix1035_router *
nec ix1050 *
apple mac_os_x 10.2
frees_wan frees_wan 1.9
netbsd netbsd 1.5.3
global_technology_associates gnat_box_firmware 3.3
frees_wan frees_wan 1.9.2
nec ix2010 *
frees_wan frees_wan 1.9.1
frees_wan frees_wan 1.9.6
netbsd netbsd 1.5
nec ix1010 *
netbsd netbsd 1.6
global_technology_associates gnat_box_firmware 3.2
global_technology_associates gnat_box_firmware 3.1
nec ix1011 *
CVE-2002-1165 MEDIUM

Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, and possibly other versions after 8.11 from 5/19/1998, allows attackers to bypass the intended restrictions of smrsh by inserting additional commands after (1) "||" sequences or (2) "/" characters, which are not properly filtered or verified.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sendmail sendmail 8.12.2
sendmail sendmail 8.12.4
sendmail sendmail 8.12.5
sendmail sendmail 8.12.0
netbsd netbsd 1.5.3
sendmail sendmail 8.12.1
netbsd netbsd 1.5.1
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
sendmail sendmail 8.12.6
sendmail sendmail 8.12.3
CVE-2002-1192 MEDIUM

Multiple buffer overflows in rogue on NetBSD 1.6 and earlier, FreeBSD 4.6, and possibly other operating systems, allows local users to gain "games" group privileges via malformed entries in a game save file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
netbsd netbsd 1.5.3
netbsd netbsd 1.5.1
rogue rogue 5.3
CVE-2002-1194 HIGH

Buffer overflow in talkd on NetBSD 1.6 and earlier, and possibly other operating systems, may allow remote attackers to execute arbitrary code via a long inbound message.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
netbsd netbsd 1.5.3
netbsd netbsd 1.5.1
CVE-2002-1337 HIGH

Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
hp hp-ux 10.20
sendmail sendmail *
gentoo linux 1.4
oracle solaris 2.6
oracle solaris 9
netbsd netbsd 1.5.1
windriver platform_sa 1.0
sun sunos 5.7
netbsd netbsd 1.5.2
oracle solaris 7.0
hp hp-ux 11.11
hp alphaserver_sc *
sun sunos 5.8
oracle solaris 8
netbsd netbsd 1.5.3
windriver bsdos 4.3.1
hp hp-ux 11.22
hp hp-ux 11.00
sun sunos -
hp hp-ux 10.10
windriver bsdos 4.2
netbsd netbsd 1.5
netbsd netbsd 1.6
hp hp-ux 11.0.4
windriver bsdos 5.0
CVE-2002-1476 MEDIUM

Buffer overflow in setlocale in libc on NetBSD 1.4.x through 1.6, and possibly other operating systems, when called with the LC_ALL category, allows local attackers to execute arbitrary code via a user-controlled locale string that has more than 6 elements, which exceeds the boundaries of the new_categories category array, as exploitable through programs such as xterm and zsh.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
netbsd netbsd 1.5.3
netbsd netbsd 1.4
netbsd netbsd 1.5.1
CVE-2002-1490 LOW

NetBSD 1.4 through 1.6 beta allows local users to cause a denial of service (kernel panic) via a series of calls to the TIOCSCTTY ioctl, which causes an integer overflow in a structure counter and sets the counter to zero, which frees memory that is still in use by other processes.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.4.2
netbsd netbsd 1.5
netbsd netbsd 1.4.3
netbsd netbsd 1.6
netbsd netbsd 1.5.3
netbsd netbsd 1.4.1
netbsd netbsd 1.4
netbsd netbsd 1.5.1
CVE-2002-1500 HIGH

Buffer overflow in (1) mrinfo, (2) mtrace, and (3) pppd in NetBSD 1.4.x through 1.6 allows local users to gain privileges by executing the programs after filling the file descriptor tables, which produces file descriptors larger than FD_SETSIZE, which are not checked by FD_SET().

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.4.2
netbsd netbsd 1.5
netbsd netbsd 1.4.3
netbsd netbsd 1.5.3
netbsd netbsd 1.4.1
netbsd netbsd 1.4
netbsd netbsd 1.5.1
CVE-2002-1543 MEDIUM

Buffer overflow in trek on NetBSD 1.5 through 1.5.3 allows local users to gain privileges via long keyboard input.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
netbsd netbsd 1.5.3
netbsd netbsd 1.5.1
CVE-2002-1915 LOW

tip on multiple BSD-based operating systems allows local users to cause a denial of service (execution prevention) by using flock() to lock the /var/log/acculog file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-667,

Products Affected

Vendor Product Version
freebsd freebsd 4.6
netbsd netbsd 1.3.2
netbsd netbsd 1.3.1
netbsd netbsd 1.1
netbsd netbsd 1.2.1
freebsd freebsd 3.5.1
openbsd openbsd 2.8
netbsd netbsd 1.5.1
openbsd openbsd 2.3
freebsd freebsd 4.5
openbsd openbsd 2.5
netbsd netbsd 1.5.2
netbsd netbsd 1.2
freebsd freebsd 4.2
netbsd netbsd 1.4.3
openbsd openbsd 2.7
freebsd freebsd 5.0
netbsd netbsd 1.0
freebsd freebsd 4.1.1
openbsd openbsd 2.1
openbsd openbsd 2.4
netbsd netbsd 1.3
freebsd freebsd 4.1
netbsd netbsd 1.4.2
openbsd openbsd 3.0
netbsd netbsd 1.3.3
netbsd netbsd 1.4
openbsd openbsd 3.1
openbsd openbsd 2.6
freebsd freebsd 4.3
netbsd netbsd 1.5
freebsd freebsd 3.5
freebsd freebsd 4.4
freebsd freebsd 4.0
openbsd openbsd 2.0
netbsd netbsd 1.4.1
openbsd openbsd 2.9
openbsd openbsd 2.2
CVE-2002-2092 LOW

Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 3.0
netbsd netbsd 1.3.2
freebsd freebsd 2.2
netbsd netbsd 1.3.1
freebsd freebsd 2.2.5
freebsd freebsd 3.1
freebsd freebsd 3.5.1
openbsd openbsd 2.8
netbsd netbsd 1.5.1
openbsd openbsd 2.3
openbsd openbsd 2.5
netbsd netbsd 1.5.2
freebsd freebsd 4.2
netbsd netbsd 1.4.3
openbsd openbsd 2.7
freebsd freebsd 4.1.1
openbsd openbsd 2.1
openbsd openbsd 2.4
netbsd netbsd 1.3
freebsd freebsd 2.2.8
freebsd freebsd 4.1
freebsd freebsd 2.2.4
netbsd netbsd 1.4.2
freebsd freebsd 3.3
openbsd openbsd 3.0
freebsd freebsd 3.4
netbsd netbsd 1.3.3
netbsd netbsd 1.4
freebsd freebsd 2.0
freebsd freebsd 2.2.3
openbsd openbsd 2.6
freebsd freebsd 3.2
freebsd freebsd 4.3
netbsd netbsd 1.5
freebsd freebsd 2.2.2
freebsd freebsd 3.5
freebsd freebsd 4.4
freebsd freebsd 4.0
openbsd openbsd 2.0
freebsd freebsd 2.1.0
netbsd netbsd 1.4.1
openbsd openbsd 2.9
freebsd freebsd 2.2.6
openbsd openbsd 2.2
CVE-2002-2245 MEDIUM

ftpd in NetBSD 1.5 through 1.5.3 and 1.6 does not properly quote a digit in response to a STAT command for a filename that contains a carriage return followed by a digit, which can cause firewalls and other intermediary devices to lose proper track of the FTP session.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
netbsd ftpd 1.5.2
netbsd ftpd 1.5.3
netbsd ftpd 1.6
netbsd ftpd 1.5
netbsd ftpd 1.5.1
CVE-2003-0001 MEDIUM

Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
freebsd freebsd 4.6
linux linux_kernel 2.4.9
microsoft windows_2000 *
linux linux_kernel 2.4.14
netbsd netbsd 1.5.1
linux linux_kernel 2.4.20
microsoft windows_2000_terminal_services *
freebsd freebsd 4.5
netbsd netbsd 1.5.2
linux linux_kernel 2.4.8
freebsd freebsd 4.2
linux linux_kernel 2.4.3
linux linux_kernel 2.4.1
linux linux_kernel 2.4.4
freebsd freebsd 4.7
linux linux_kernel 2.4.6
linux linux_kernel 2.4.13
linux linux_kernel 2.4.10
netbsd netbsd 1.5.3
linux linux_kernel 2.4.15
linux linux_kernel 2.4.17
linux linux_kernel 2.4.11
linux linux_kernel 2.4.7
linux linux_kernel 2.4.18
freebsd freebsd 4.3
linux linux_kernel 2.4.5
netbsd netbsd 1.5
linux linux_kernel 2.4.16
netbsd netbsd 1.6
freebsd freebsd 4.4
linux linux_kernel 2.4.2
linux linux_kernel 2.4.19
linux linux_kernel 2.4.12
CVE-2003-0102 MEDIUM

Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
file file 3.34
file file 3.33
netbsd netbsd 1.5.3
file file 3.36
file file 3.37
file file 3.32
netbsd netbsd 1.5.1
file file 3.30
file file 3.35
netbsd netbsd 1.5.2
file file 3.39
netbsd netbsd 1.5
netbsd netbsd 1.6
file file 3.40
file file 3.28
CVE-2003-0466 HIGH

Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-193,

Products Affected

Vendor Product Version
redhat wu_ftpd 2.6.1-16
wuftpd wu-ftpd *
netbsd netbsd *
apple mac_os_x 10.2.6
openbsd openbsd *
freebsd freebsd *
sun solaris 9.0
apple mac_os_x_server 10.2.6
CVE-2003-0653 MEDIUM

The OSI networking kernel (sys/netiso) in NetBSD 1.6.1 and earlier does not use a BSD-required "PKTHDR" mbuf when sending certain error responses to the sender of an OSI packet, which allows remote attackers to cause a denial of service (kernel panic or crash) via certain OSI packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
netbsd netbsd 1.5.3
netbsd netbsd 1.6.1
netbsd netbsd 1.5.1
CVE-2003-0681 HIGH

A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 6.0
sendmail sendmail 8.10.2
gentoo linux 1.2
sendmail sendmail 8.12.4
sendmail sendmail 8.9.3
sendmail sendmail 3.0
gentoo linux 1.4
gentoo linux 0.5
sendmail sendmail_switch 2.1.5
apple mac_os_x 10.2.4
turbolinux turbolinux_workstation 8.0
apple mac_os_x_server 10.2.5
sendmail sendmail 8.12.2
sendmail sendmail_switch 2.2.2
hp hp-ux 11.22
sendmail sendmail 8.9.1
ibm aix 5.1
sendmail sendmail 8.11.3
netbsd netbsd 1.5
sendmail sendmail 8.12.3
sendmail sendmail_switch 3.0.3
apple mac_os_x_server 10.2.3
sendmail sendmail 2.6
sendmail sendmail 8.11.4
sendmail sendmail 2.6.1
ibm aix 4.3.3
sendmail sendmail_switch 2.1.3
hp hp-ux 11.11
sendmail sendmail 8.9.0
sendmail sendmail 8.11.6
sendmail sendmail 8.11.5
apple mac_os_x 10.2
sendmail sendmail 3.0.1
netbsd netbsd 1.5.3
sendmail sendmail 8.11.0
hp hp-ux 11.00
sendmail sendmail_switch 2.2
apple mac_os_x_server 10.2.6
sendmail advanced_message_server 1.2
sendmail sendmail_pro 8.9.2
turbolinux turbolinux_server 6.5
apple mac_os_x 10.2.6
sendmail sendmail_switch 3.0.2
apple mac_os_x 10.2.1
netbsd netbsd 1.6.1
turbolinux turbolinux_workstation 7.0
apple mac_os_x_server 10.2.1
sendmail sendmail_switch 2.1
sendmail sendmail 8.11.1
sendmail sendmail 8.12
gentoo linux 0.7
sendmail sendmail_switch 2.1.1
sendmail sendmail_switch 2.2.4
sendmail sendmail 8.12.7
netbsd netbsd 1.5.2
sendmail sendmail_pro 8.9.3
apple mac_os_x 10.2.2
gentoo linux 1.1a
openbsd openbsd 3.3
apple mac_os_x_server 10.2.2
sendmail sendmail_switch 2.2.1
sendmail sendmail 8.10.1
sendmail sendmail 3.0.2
sendmail sendmail 8.12.9
sendmail sendmail 8.12.0
sendmail sendmail 2.6.2
sendmail sendmail_switch 2.2.3
openbsd openbsd 3.2
turbolinux turbolinux_server 8.0
turbolinux turbolinux_server 7.0
hp hp-ux 11.0.4
sendmail sendmail 8.12.8
apple mac_os_x 10.2.3
sendmail sendmail 8.11.2
sendmail sendmail 8.12.5
apple mac_os_x 10.2.5
sendmail sendmail 8.12.1
sendmail sendmail_switch 3.0.1
sendmail sendmail 8.9.2
apple mac_os_x_server 10.2.4
netbsd netbsd 1.5.1
sendmail sendmail_switch 2.2.5
sendmail sendmail_switch 2.1.4
netbsd netbsd 1.4.3
apple mac_os_x_server 10.2
sendmail sendmail 8.10
turbolinux turbolinux_advanced_server 6.0
sendmail advanced_message_server 1.3
turbolinux turbolinux_server 6.1
netbsd netbsd 1.6
ibm aix 5.2
sendmail sendmail 8.12.6
sendmail sendmail 8.8.8
sendmail sendmail 3.0.3
sendmail sendmail_switch 3.0
sendmail sendmail_switch 2.1.2
CVE-2003-0694 HIGH

The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
turbolinux turbolinux_workstation 6.0
sendmail sendmail 8.10.2
gentoo linux 1.2
sendmail sendmail 8.12.4
sgi irix 6.5.17m
sendmail sendmail 8.9.3
sgi irix 6.5.18m
compaq tru64 5.1_pk5_bl19
sendmail sendmail 3.0
gentoo linux 1.4
gentoo linux 0.5
sun sunos 5.7
sendmail sendmail_switch 2.1.5
freebsd freebsd 4.8
apple mac_os_x 10.2.4
sgi irix 6.5.20m
compaq tru64 4.0g_pk4_bl22
sgi irix 6.5.21f
turbolinux turbolinux_workstation 8.0
apple mac_os_x_server 10.2.5
sendmail sendmail 8.12.2
sendmail sendmail_switch 2.2.2
hp hp-ux 11.22
sgi irix 6.5.18f
sendmail sendmail 8.9.1
sun sunos -
ibm aix 5.1
compaq tru64 5.1a_pk1_bl1
sendmail sendmail 8.11.3
netbsd netbsd 1.5
freebsd freebsd 4.0
compaq tru64 4.0g
sendmail sendmail 8.12.3
sendmail sendmail_switch 3.0.3
freebsd freebsd 4.6
freebsd freebsd 4.9
apple mac_os_x_server 10.2.3
sendmail sendmail 2.6
sgi irix 6.5.17f
sendmail sendmail 8.11.4
sendmail sendmail 2.6.1
compaq tru64 5.1a
ibm aix 4.3.3
sendmail sendmail_switch 2.1.3
compaq tru64 5.1a_pk3_bl3
compaq tru64 5.1a_pk5_bl23
hp hp-ux 11.11
sgi irix 6.5.20f
sendmail sendmail 8.9.0
freebsd freebsd 4.7
sendmail sendmail 8.11.6
sendmail sendmail 8.11.5
apple mac_os_x 10.2
sendmail sendmail 3.0.1
netbsd netbsd 1.5.3
sendmail sendmail 8.11.0
compaq tru64 5.1b_pk1_bl1
hp hp-ux 11.00
sendmail sendmail_switch 2.2
apple mac_os_x_server 10.2.6
sendmail advanced_message_server 1.2
compaq tru64 4.0f
sendmail sendmail_pro 8.9.2
turbolinux turbolinux_server 6.5
apple mac_os_x 10.2.6
sgi irix 6.5.15
compaq tru64 5.1_pk6_bl20
sendmail sendmail_switch 3.0.2
apple mac_os_x 10.2.1
freebsd freebsd 5.1
netbsd netbsd 1.6.1
turbolinux turbolinux_workstation 7.0
freebsd freebsd 3.0
apple mac_os_x_server 10.2.1
sendmail sendmail_switch 2.1
sendmail sendmail 8.11.1
sendmail sendmail 8.12
compaq tru64 4.0f_pk7_bl18
sgi irix 6.5.21m
gentoo linux 0.7
compaq tru64 5.1_pk4_bl18
sendmail sendmail_switch 2.1.1
sendmail sendmail_switch 2.2.4
sendmail sendmail 8.12.7
netbsd netbsd 1.5.2
compaq tru64 5.1a_pk2_bl2
sendmail sendmail_pro 8.9.3
apple mac_os_x 10.2.2
compaq tru64 5.1b_pk2_bl22
gentoo linux 1.1a
apple mac_os_x_server 10.2.2
sendmail sendmail_switch 2.2.1
sendmail sendmail 8.10.1
sendmail sendmail 3.0.2
sun sunos 5.8
sendmail sendmail 8.12.9
sendmail sendmail 8.12.0
sendmail sendmail 2.6.2
sendmail sendmail_switch 2.2.3
sun solaris 2.6
compaq tru64 5.1_pk3_bl17
sun solaris 9.0
turbolinux turbolinux_server 8.0
freebsd freebsd 4.4
turbolinux turbolinux_server 7.0
hp hp-ux 11.0.4
compaq tru64 4.0f_pk6_bl17
sun solaris 8.0
sendmail sendmail 8.12.8
compaq tru64 4.0f_pk8_bl22
apple mac_os_x 10.2.3
sendmail sendmail 8.11.2
sendmail sendmail 8.12.5
apple mac_os_x 10.2.5
sendmail sendmail 8.12.1
sendmail sendmail_switch 3.0.1
sendmail sendmail 8.9.2
apple mac_os_x_server 10.2.4
netbsd netbsd 1.5.1
sendmail sendmail_switch 2.2.5
sendmail sendmail_switch 2.1.4
freebsd freebsd 4.5
compaq tru64 5.1a_pk4_bl21
netbsd netbsd 1.4.3
apple mac_os_x_server 10.2
sendmail sendmail 8.10
freebsd freebsd 5.0
turbolinux turbolinux_advanced_server 6.0
sgi irix 6.5.19m
sendmail advanced_message_server 1.3
turbolinux turbolinux_server 6.1
sun solaris 7.0
sgi irix 6.5.19f
compaq tru64 5.1b
compaq tru64 4.0g_pk3_bl17
compaq tru64 5.1
freebsd freebsd 4.3
netbsd netbsd 1.6
ibm aix 5.2
sendmail sendmail 8.12.6
sendmail sendmail 8.8.8
sendmail sendmail 3.0.3
sendmail sendmail_switch 3.0
sgi irix 6.5.16
sendmail sendmail_switch 2.1.2
CVE-2003-0730 HIGH

Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
xfree86_project x11r6 4.2.1
netbsd netbsd 1.5.3
xfree86_project x11r6 4.3.0
netbsd netbsd 1.6.1
netbsd netbsd 1.5.1
CVE-2003-0914 MEDIUM

ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
compaq tru64 4.0f_pk7_bl18
compaq tru64 5.1_pk4_bl18
compaq tru64 5.1_pk5_bl19
isc bind 8.3.5
sco unixware 7.1.1
sun sunos 5.7
freebsd freebsd 4.8
compaq tru64 5.1a_pk2_bl2
compaq tru64 5.1b_pk2_bl22
compaq tru64 4.0g_pk4_bl22
isc bind 8.3.0
sun sunos 5.8
isc bind 8.3.4
isc bind 8.4.1
compaq tru64 5.1_pk3_bl17
nixu namesurfer suite_3.0.1
sun solaris 9.0
compaq tru64 5.1a_pk1_bl1
isc bind 8.3.6
freebsd freebsd 4.4
compaq tru64 4.0g
isc bind 8.2.7
compaq tru64 4.0f_pk6_bl17
sun solaris 8.0
compaq tru64 4.0f_pk8_bl22
netbsd netbsd current
freebsd freebsd 4.6
isc bind 8.2.3
freebsd freebsd 4.9
isc bind 8.2.6
isc bind 8.4
nixu namesurfer standard_3.0.1
compaq tru64 5.1a
freebsd freebsd 4.5
ibm aix 5.1l
compaq tru64 5.1a_pk4_bl21
compaq tru64 5.1a_pk3_bl3
isc bind 8.3.3
compaq tru64 5.1a_pk5_bl23
freebsd freebsd 5.0
hp hp-ux 11.11
freebsd freebsd 4.7
isc bind 8.3.1
sun solaris 7.0
compaq tru64 5.1b_pk1_bl1
hp hp-ux 11.00
compaq tru64 5.1b
compaq tru64 4.0g_pk3_bl17
freebsd freebsd 4.6.2
compaq tru64 5.1
isc bind 8.2.5
compaq tru64 4.0f
isc bind 8.2.4
isc bind 8.3.2
netbsd netbsd 1.6
compaq tru64 5.1_pk6_bl20
netbsd netbsd 1.6.1
CVE-2004-0114 MEDIUM

The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd *
openbsd openbsd *
freebsd freebsd *
CVE-2004-0230 MEDIUM

TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
juniper junos 11.4r13
microsoft windows_2000 -
oracle solaris 11
openpgp openpgp 2.6.2
oracle solaris 10
microsoft windows_98se -
netbsd netbsd 1.6.2
mcafee network_data_loss_prevention 9.2.0
juniper junos 12.1r
netbsd netbsd 1.5.1
mcafee network_data_loss_prevention 9.2.1
juniper junos 12.1
netbsd netbsd 1.5.2
microsoft windows_server_2003 -
juniper junos 13.3
juniper junos 11.4
juniper junos 12.1x45
xinuos openserver 5.0.7
juniper junos 13.2
netbsd netbsd 2.0
netbsd netbsd 1.5.3
juniper junos 12.1x47
xinuos openserver 5.0.6
juniper junos *
juniper junos 13.1
microsoft windows_xp -
xinuos unixware 7.1.3
juniper junos 12.2
netbsd netbsd 1.5
juniper junos 12.1x46
netbsd netbsd 1.6
xinuos unixware 7.1.1
microsoft windows_98 -
juniper junos 11.4x27
juniper junos 12.3
mcafee network_data_loss_prevention 9.2.2
juniper junos 12.1x44
netbsd netbsd 1.6.1
CVE-2004-0257 MEDIUM

OpenBSD 3.4 and NetBSD 1.6 and 1.6.1 allow remote attackers to cause a denial of service (crash) by sending an IPv6 packet with a small MTU to a listening port and then issuing a TCP connect to that port.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openbsd openbsd 3.1
openbsd openbsd 3.4
netbsd netbsd 1.6
openbsd openbsd 3.0
openbsd openbsd 3.2
netbsd netbsd 1.6.1
openbsd openbsd 3.3
CVE-2004-1323 LOW

Multiple syscalls in the compat subsystem for NetBSD before 2.0 allow local users to cause a denial of service (kernel crash) via a large signal number to (1) xxx_sys_kill, (2) xxx_sys_sigaction, and possibly other translation functions.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.6
netbsd netbsd 1.5.3
netbsd netbsd 1.6.2
netbsd netbsd 1.6.1
netbsd netbsd 1.5.1
CVE-2004-1374 HIGH

Multiple buffer overflows in NetBSD kernel may allow local users to execute arbitrary code and gain privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.4
CVE-2004-2012 HIGH

The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD ports, does not verify the owner of the /dec/systrace connection before setting euid to 0, which allows local users to gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
niels provos_systrace 1.1
niels provos_systrace 1.4
vladimir_kotal systrace_port_for_freebsd 2004-06-02
netbsd netbsd 2.0
niels provos_systrace 1.2
niels provos_systrace 1.3
niels provos_systrace 1.5
vladimir_kotal systrace_port_for_freebsd 2004-03-09
CVE-2005-2134 LOW

The (1) clcs and (2) emuxki drivers in NetBSD 1.6 through 2.0.2 allow local users to cause a denial of service (kernel crash) by using the set-parameters ioctl on an audio device to change the block size and set the pause state to "unpaused" in the same ioctl, which causes a divide-by-zero error.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2005-4352 LOW

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value (19 Jan 2038), which then wraps around to the minimum value (13 Dec 1901), which can then be set ahead to the desired time, aka "settimeofday() time wrap."

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.1
linux linux_kernel 2.6.4
linux linux_kernel 2.6.12.2
linux linux_kernel 2.6.3
linux linux_kernel 2.6.12.3
linux linux_kernel 2.6.14.2
linux linux_kernel 2.6.9
netbsd netbsd 1.6.2
linux linux_kernel 2.6.11.8
linux linux_kernel 2.6.14
linux linux_kernel 2.6.1
netbsd netbsd 2.0.1
linux linux_kernel 2.6.13
netbsd netbsd 2.0.2
linux linux_kernel 2.6.6
linux linux_kernel 2.6.14.3
linux linux_kernel 2.6.2
linux linux_kernel 2.6.12
netbsd netbsd 2.0.3
linux linux_kernel 2.6.12.1
linux linux_kernel 2.6.11.12
linux linux_kernel 2.6.5
linux linux_kernel 2.6.14.1
linux linux_kernel 2.6.11.5
linux linux_kernel 2.6.12.5
linux linux_kernel 2.6.7
linux linux_kernel 2.6.12.4
linux linux_kernel 2.6.13.1
netbsd netbsd 2.0
linux linux_kernel 2.6.10
linux linux_kernel 2.6.0
linux linux_kernel 2.6.15
linux linux_kernel 2.6.11.7
linux linux_kernel 2.6.11.6
linux linux_kernel 2.6.13.4
linux linux_kernel 2.6.13.2
linux linux_kernel 2.6.13.3
netbsd netbsd 1.6
linux linux_kernel 2.6_test9_cvs
linux linux_kernel 2.6.8
linux linux_kernel 2.6.11.11
linux linux_kernel 2.6.11
netbsd netbsd current
linux linux_kernel 2.6.12.6
netbsd netbsd 1.6.1
CVE-2005-4691 LOW

imake in NetBSD before 2.0.3, NetBSD-current before 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatted manual page.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2005-4733 MEDIUM

NetBSD 2.0 before 20050316 and NetBSD-current before 20050112 allow local users to cause a denial of service (infinite loop and system hang) by calling the F_CLOSEM fcntl with a parameter value of 0.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0
CVE-2005-4741 HIGH

NetBSD 1.6, NetBSD 2.0 through 2.1, and NetBSD-current before 20051031 allows local users to gain privileges by attaching a debugger to a setuid/setgid (P_SUGID) process that performs an exec without a reset of real credentials.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 2.0.3
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2005-4776 HIGH

Integer overflow in the FreeBSD compatibility code (freebsd_misc.c) in NetBSD-current, NetBSD-3, NetBSD-2.0, and NetBSD-2 before 20050913; and NetBSD-1.6 before 20050914; allows local users to cause a denial of service (heap corruption or system crash) and possibly gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2005-4779 LOW

verifiedexecioctl in verified_exec.c in NetBSD 2.0.2 calls NDINIT with UIO_USERSPACE rather than UID_SYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.0
netbsd netbsd 2.0.1
CVE-2005-4782 MEDIUM

NetBSD 2.0 before 2.0.4, 2.1 before 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service (kernel assertion panic) via a negative linger time in the SO_LINGER socket option.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 2.0
netbsd netbsd 2.0.3
netbsd netbsd 2.0.1
CVE-2005-4783 LOW

kernfs_xread in kernfs_vnops.c in NetBSD before 20050831 does not check for a negative offset when reading the message buffer, which allows local users to read arbitrary kernel memory.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.1
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 2.0.3
CVE-2006-0145 MEDIUM

The kernfs_xread function in kernfs in NetBSD 1.6 through 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges via the lseek system call.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 2.0.3
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2006-0905 HIGH

A "programming error" in fast_ipsec in FreeBSD 4.8-RELEASE through 6.1-STABLE and NetBSD 2 through 3 does not properly update the sequence number associated with a Security Association, which allows packets to pass sequence number checks and allows remote attackers to capture IPSec packets and conduct replay attacks.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 5.2
freebsd freebsd 4.9
freebsd freebsd 4.10
netbsd netbsd 3.0
netbsd netbsd 2.0
freebsd freebsd 5.3
freebsd freebsd 5.2.1
freebsd freebsd 4.8
freebsd freebsd 4.11
freebsd freebsd 6.0
freebsd freebsd 5.0
freebsd freebsd 5.1
freebsd freebsd 5.4
CVE-2006-1587 LOW

NetBSD 1.6 up to 3.0, when a user has "set record" in .mailrc with the default umask set, creates the record file with 0644 permissions, which allows local users to read the record file.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 3.0
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 2.0.3
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2006-1588 LOW

The bridge ioctl (if_bridge code) in NetBSD 1.6 through 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to obtain portions of kernel memory.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 3.0
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 2.0.3
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2006-1589 MEDIUM

The elf_load_file function in NetBSD 2.0 through 3.0 allows local users to cause a denial of service (kernel crash) via an ELF interpreter that does not have a PT_LOAD section in its header, which triggers a null dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 3.0
netbsd netbsd 2.0
netbsd netbsd 2.0.3
netbsd netbsd 2.0.1
CVE-2006-1797 MEDIUM

The kernel in NetBSD-current before September 28, 2005 allows local users to cause a denial of service (system crash) by using the SIOCGIFALIAS ioctl to gather information on a non-existent alias of a network interface, which causes a NULL pointer dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 3.0
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 2.0.3
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2006-1814 LOW

NetBSD 1.6, 2.0, 2.1 and 3.0 allows local users to cause a denial of service (memory exhaustion) by using the sysctl system call to lock a large buffer into physical memory.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 3.0
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 2.0.3
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2006-1833 LOW

Intel RNG Driver in NetBSD 1.6 through 3.0 may incorrectly detect the presence of the pchb interface, which will cause it to always generate the same random number, which allows remote attackers to more easily crack encryption keys generated from the interface.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 3.0
netbsd netbsd 1.6
netbsd netbsd 2.0
netbsd netbsd 1.6.2
netbsd netbsd 2.0.3
netbsd netbsd 1.6.1
netbsd netbsd 2.0.1
CVE-2006-2205 LOW

The audio_write function in NetBSD 3.0 allows local users to cause a denial of service (kernel crash) by using the audiosetinfo ioctl to change the sample rate of an audio device.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 3.0
CVE-2006-3202 MEDIUM

The ip6_savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service (crash) by creating an IPv4-mapped IPv6 socket with the SO_TIMESTAMP socket option set, then sending an IPv4 packet through the socket.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 2.0.2
netbsd netbsd 2.1
netbsd netbsd 3.0
netbsd netbsd 2.0
netbsd netbsd 2.0.3
CVE-2006-6165 HIGH

ld.so in FreeBSD, NetBSD, and possibly other BSD distributions does not remove certain harmful environment variables, which allows local users to gain privileges by passing certain environment variables to loading processes. NOTE: this issue has been disputed by a third party, stating that it is the responsibility of the application to properly sanitize the environment

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 6.2
netbsd netbsd 2.0.4
CVE-2006-6397 MEDIUM

Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner is not setuid, an exploit would not cross privilege boundaries in normal operations. This issue is not a vulnerability

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 6.2
netbsd netbsd 2.0.4
openbsd openbsd *
CVE-2008-2464 HIGH

The mld_input function in sys/netinet6/mld6.c in the kernel in NetBSD 4.0, FreeBSD, and KAME, when INET6 is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and panic) via a malformed ICMPv6 Multicast Listener Discovery (MLD) query with a certain Maximum Response Delay value.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
netbsd netbsd 4.0
freebsd freebsd *
kame kame *
CVE-2008-4609 HIGH

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-16,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cisco ios 12.2(20)ewa
cisco ios 12.0(7a)
cisco ios 12.2(18)ew5
cisco ios 12.3ys
cisco ios 12.2(2)yc
cisco ios 12.0(2)xd
linux linux_kernel 2.6.14.5
linux linux_kernel 2.6.20.6
cisco ios 12.0(8)s1
cisco ios 11.1(36)cc4
cisco ios 12.2sw
cisco ios 12.2sbc
cisco ios 12.3(6a)
cisco ios 12.2(20)s7
cisco ios 12.2(4)ya10
cisco ios 12.4(3d)
cisco ios 12.3yl
linux linux_kernel 2.5.15
linux linux_kernel 2.4.21
cisco ios 12.2yw
cisco ios 12.2(11)t9
cisco ios 12.3jx
cisco ios 11.2(4)xaf
freebsd freebsd 4.6
linux linux_kernel 2.5.48
cisco ios 12.1(2)e1
cisco ios 12.0(16)sc
cisco ios 12.3(7)t12
cisco ios 12.0(17)st5
cisco ios 12.0(19)s2a
cisco ios 10.0
linux linux_kernel 2.5.22
cisco ios 12.1(5)xm4
cisco ios 12.0(20a)
cisco ios 12.1(5)ey
linux linux_kernel 2.3.10
cisco ios 12.0(7)s1
cisco ios 12.0(15)s7
freebsd freebsd 2.2.8
linux linux_kernel 2.2.15
cisco ios 12.0(23)s5
cisco ios 12.4ja
linux linux_kernel 2.6.20.15
linux linux_kernel 2.6.16.18
cisco ios 11.0(x)
cisco ios 12.0(7)t3
cisco ios 12.1(6)ea2c
linux linux_kernel 2.6.16.24
linux linux_kernel 2.5.61
cisco ios 12.1(22)
linux linux_kernel 2.6.16.9
cisco ios 11.2(11)
cisco ios 12.0xm
linux linux_kernel 2.3.21
cisco ios 12.0(4)t
cisco ios 12.0(5)xe
cisco ios 12.2(12.05)t
freebsd freebsd 5.1
cisco ios 12.1(10.5)ec
openbsd openbsd 2.8
cisco ios 12.0(5)wx
cisco ios 12.0(19)
cisco ios 12.3xb
linux linux_kernel 2.5.6
cisco ios 12.4(2)t1
cisco ios 12.1(6.5)ec3
cisco ios 12.2(4)ya8
cisco ios 11.3xa
cisco ios 12.0(5)wc2
cisco ios 12.2(1)xe
cisco ios 12.2zh
linux linux_kernel 2.6.16.28
linux linux_kernel 2.0.7
linux linux_kernel 2.6.22
cisco ios 11.1cc
cisco ios 10.3(19a)
cisco ios 12.3xu
cisco ios 12.2(5)ca1
netbsd netbsd 1.4
cisco ios 12.2(4)xm2
cisco ios 12.1t
cisco ios 12.2(18)s6
linux linux_kernel 2.3.18
cisco ios 12.3(7)t
cisco ios 12.0(26)s6
linux linux_kernel 2.6.16.12
linux linux_kernel 2.3.43
cisco ios 12.2ys
cisco ios 12.1cx
linux linux_kernel 2.5.17
linux linux_kernel 2.6.4
cisco ios 12.2(20)s4
cisco ios 12.2(15)t7
cisco ios 12.1(8b)e18
cisco ios 12.1(5)t15
cisco ios 12.4mr
freebsd freebsd 3.5.1
cisco ios 12.2(11)ja
cisco ios 12.2(14)sz
cisco ios 12.2bx
linux linux_kernel 2.6.19.2
cisco ios 12.1ya
cisco ios 12.2yy
cisco ios 12.3(11)yl
cisco ios 12.2zp
linux linux_kernel 2.6.14.4
cisco ios 12.0(30)s2
cisco ios 12.2zl
cisco ios 12.1yc
cisco ios 12.2yq
cisco ios 12.0(14)s8
cisco ios 12.2(17d)sx
openbsd openbsd 3.1
cisco ios 12.1xr
cisco ios 12.0(17)sl6
cisco ios 12.1xc
linux linux_kernel 2.3.15
cisco ios 11.2(15b)
cisco ios 12.0(15)sl
cisco ios 12.0(24)s2
cisco ios 12.1(14)eb
cisco ios 12.0(21)sx
cisco ios 12.2pb
cisco ios 12.0xn
cisco ios 12.0(4)xe1
cisco ios 12.2(19)
linux linux_kernel 2.0.39
linux linux_kernel 2.6.16.29
cisco ios 12.2s
cisco ios 12.3xn
cisco ios 12.4xp
linux linux_kernel 2.6.12
linux linux_kernel 2.6.16.19
cisco ios 12.2(11)t2
cisco ios 12.2(23)sw
cisco ios 12.2(13)t
linux linux_kernel 2.6.8.1
linux linux_kernel 2.2.9
linux linux_kernel 2.6.20.3
cisco ios 12.4(7a)
cisco ios 12.0(7)sc
cisco ios 12.2(4)ya
cisco ios 12.3(4)eo1
cisco ios 12.1(19)
cisco ios 12.3(4)xg1
cisco ios 12.2(9)s
cisco ios 12.2xt
linux linux_kernel 2.6.17.14
cisco ios 12.2(1)xh
cisco ios 12.1(8b)e20
cisco ios 12.2bz
dragonflybsd dragonflybsd 1.2
cisco ios 12.0xh
linux linux_kernel 2.0.9
cisco ios 12.4xf
cisco ios 12.0xj
cisco ios 12.2(2.2)t
cisco ios 12.0(18)sl
linux linux_kernel 2.3.42
cisco ios 12.1xy
cisco ios 12.2(13)zk
cisco ios 12.3(2)xa4
cisco ios 11.1(28a)ia
cisco ios 12.1dc
cisco ios 12.1(7)cx
cisco ios 12.3(4)xd1
cisco ios 11.1(17)cc
freebsd freebsd 4.6.2
cisco ios 12.3(8)ya1
cisco ios 12.4xc
cisco ios 12.1ye
linux linux_kernel 2.6.20.12
freebsd freebsd 5.2
cisco ios 12.2dx
cisco ios 12.0(7)xk3
cisco ios 12.2jk
linux linux_kernel 2.5.66
cisco ios 12.3(5)
cisco ios 12.3(11)t5
cisco ios 12.2(15)t17
cisco ios 12.1(5)yc1
linux linux_kernel 2.0.9.9
cisco ios 12.1(12b)
cisco ios 12.3(9d)
linux linux_kernel 2.0.35
cisco ios 12.0(9)
cisco ios 12.3(11)yn
cisco ios 11.1(14)
linux linux_kernel 2.2.14
freebsd freebsd 5.5
linux linux_kernel 2.3.51
cisco ios 12.2(25)ey3
linux linux_kernel 2.3.13
linux linux_kernel 2.6.16.46
cisco ios 12.0sv
linux linux_kernel 2.6.24
cisco ios 12.3(13b)
cisco ios 12.0(4)xm
freebsd freebsd 3.1
cisco ios 12.1(14)e1
linux linux_kernel 2.6.1
cisco ios 12.1(4)dc
cisco ios 12.0(5)xn1
openbsd openbsd 2.5
linux linux_kernel 2.6.17.10
cisco ios 12.0xr
cisco ios 12.3(7)t9
cisco ios 12.0xp
cisco ios 12.2zg
cisco ios 12.2(12.02)t
freebsd freebsd 7.1
cisco ios 12.0(20)st2
cisco ios 12.1(22)ea6
cisco ios 12.0(14)st3
cisco ios 12.1(3b)
cisco ios 12.0(5)wc9
cisco ios 12.1(6)ea2a
cisco ios 11.1
linux linux_kernel 2.5.21
cisco ios 12.2(15)bc1f
cisco ios 12.1(5)xm7
cisco ios 12.2(17d)
cisco ios 12.2(2)xb3
cisco ios 12.2sxe
cisco ios 12.1xw
cisco ios 12.1(23)e1
cisco ios 12.0(26)
bsd bsd 4.3
cisco ios 12.2(1)xd4
cisco ios 12.3(4)xg4
linux linux_kernel 2.4.35.2
linux linux_kernel 2.6.16.48
cisco ios 12.2(1b)da1
linux linux_kernel 2.6.16.33
cisco ios 12.0(20)st7
cisco ios 12.0(20)sl
cisco ios 12.0(4)xe
cisco ios 12.3(3h)
cisco ios 12.1(5)xv3
cisco ios 12.1ez
bsd bsd 4.2
linux linux_kernel 2.5.40
cisco ios 12.2sec
linux linux_kernel 2.6.22.5
cisco ios 12.1(4)dc2
cisco ios 12.0(27)sv1
cisco ios 12.1(19)e
cisco ios 12.0(3)xe
cisco ios 12.3(8)t8
cisco ios 12.3xc
cisco ios 12.2mb
linux linux_kernel 2.6.20.13
cisco ios 11.0(12)
linux linux_kernel 2.5.42
cisco ios 12.0(2a)
cisco ios 12.2(25)seb2
cisco ios 12.2(13)zh3
linux linux_kernel 2.6.16.45
cisco ios 12.2(11)t8
cisco ios 12.1(6)ea2
cisco ios 12.2(25)ewa3
cisco ios 12.1(1.3)t
cisco ios 12.0(3)t2
cisco ios 12.2(20)ewa3
cisco ios 12.3(8)yg2
linux linux_kernel 2.6.16
linux linux_kernel 2.6.14
cisco ios 12.0(5)wc9a
cisco ios 12.0(3.6)w5(9.0.5)
cisco ios 12.0(5)s
cisco ios 10.3(3.3)
cisco ios 12.1(4)ea1e
cisco ios 12.0(17)s4
linux linux_kernel 2.6.12.4
cisco ios 12.2(14)s
cisco ios 12.2zc
cisco ios 12.0(16a)
linux linux_kernel 2.0.29
cisco ios 12.1(8b)e9
freebsd freebsd 3.4
cisco ios 12.2(25)ewa
cisco ios 12.3(4)xd2
linux linux_kernel 2.3.14
cisco ios 12.1(7)ec
linux linux_kernel 2.0.36
freebsd freebsd 2.1.7
linux linux_kernel 2.3.16
cisco ios 11.2(19)gs0.2
microsoft windows_2000 -
netbsd netbsd 1.2.1
cisco ios 12.2b
cisco ios 12.2(6.8)t0a
cisco ios 12.1db
linux linux_kernel 2.6.17.12
cisco ios 12.0(5)t1
linux linux_kernel 2.5.32
cisco ios 12.2(1b)
cisco ios 12.1(6)e12
freebsd freebsd 6.0
cisco ios 12.0(7)xk
cisco ios 12.1(26)eb1
linux linux_kernel 2.6.14.1
cisco ios 12.0(4)xm1
cisco ios 12.2(8)yd
cisco ios 12.2(2)xu
cisco ios 12.3(8)yf
linux linux_kernel 2.6.0
linux linux_kernel 2.6.16.36
cisco ios 12.3yj
freebsd freebsd 2.2.7
cisco ios 11.0(18)
cisco ios 12.0(5a)e
cisco ios 12.3(8)ja
cisco ios 12.2(16.1)b
cisco ios 12.2yg
bsdi bsd_os 2.0
cisco ios 11.1(16)aa
cisco ios 12.0(18b)
cisco ios 12.2fy
cisco ios 12.3xd
cisco ios 12.3(3i)
linux linux_kernel 2.6.21.4
linux linux_kernel 2.3.23
cisco ios 12.2(14)za2
cisco ios 12.0(19)sl4
cisco ios 12.2(11)yx1
cisco ios 12.2xr
cisco ios 12.2(12)da3
cisco ios 12.3(14)yq1
cisco ios 12.2(15)mc2e
cisco ios 12.1(12c)ec
cisco ios 12.1
cisco ios 12.1(5)yf
cisco ios 12.1(7a)ey
netbsd netbsd 1.4.3
linux linux_kernel 2.6.2
freebsd freebsd 5.0
cisco ios 10.3(3.4)
cisco ios 12.1(22)eb
cisco ios 12.2(2)xf
cisco ios 12.1(3)xq
netbsd netbsd 1.4.2
cisco ios 12.0(19)st
cisco ios 12.1(8b)e8
cisco ios 12.1(11b)e12
cisco ios 12.3(14)t4
cisco ios 12.3(1a)
linux linux_kernel 2.6.16.13
cisco ios 12.1(11.5)e
cisco ios 12.1(5)ya2
cisco ios 12.2(4)t3
linux linux_kernel 2.0.16
cisco ios 12.3(7)xi7
cisco ios 12.2(2)xa
cisco ios 12.0(19)sl
cisco ios 12.1(5)t12
cisco ios 12.2(19)b
cisco ios 12.0(14)s7
cisco ios 12.0db
cisco ios 12.1xl
cisco ios 12.1(6.5)
cisco ios 12.0(3d)
cisco ios 12.1(1)ex
cisco ios 12.2(1)dx
cisco ios 12.0xb
cisco ios 11.1(16)
cisco ios 11.3(11d)
cisco ios 12.3(2)t8
openbsd openbsd 4.0
linux linux_kernel 2.6.16.34
cisco ios 12.1(3)xt
cisco ios 12.2(1)xs1
cisco ios 12.3(12b)
linux linux_kernel 2.5.13
cisco ios 12.2(13)zd3
linux linux_kernel 2.6.8.1.5
cisco ios 12.2(1)t
linux linux_kernel 2.4.28
linux linux_kernel 2.0.2
cisco ios 12.2(2)xb
cisco ios 10.3
cisco ios 12.2(11)yu
cisco ios 12.1(9)e
cisco ios 12.0xk
cisco ios 12.2(7a)
cisco ios 12.4(5b)
cisco ios 11.1(24)
cisco ios 12.2(15)jk5
cisco ios 12.0(5)
linux linux_kernel 2.4.2
cisco ios 12.2(31)
cisco ios 12.3xq
cisco ios 12.1(10)ex
cisco ios 12.2(4)xl4
cisco ios 11.3db
cisco ios 12.2(17b)sxa
cisco ios 12.2xg
cisco ios 11.2(8)p
cisco ios 12.2(8)yy3
cisco ios 12.2(2)t
netbsd netbsd 2.0.3
cisco ios 12.3xy
netbsd netbsd 3.1
cisco ios 12.3(10c)
linux linux_kernel 2.6.16.2
cisco ios 12.2(2)xk2
cisco ios 12.2(13)t14
cisco ios 12.2(15)t5
cisco ios 12.0(5)wc5a
linux linux_kernel 2.2.22
netbsd netbsd 1.5.3
cisco ios 12.2yo
cisco ios 12.2sxf
cisco ios 9.14
linux linux_kernel 2.6.17.6
linux linux_kernel 2.0.38
cisco ios 12.2(12.05)s
linux linux_kernel 2.6.16.16
linux linux_kernel 2.6.16.22
cisco ios 12.0st
linux linux_kernel 2.2.10
linux linux_kernel 2.5.63
cisco ios 12.3(14)t
cisco ios 12.2ym
cisco ios 11.2(4)
cisco ios 12.1(16)
cisco ios 4.1.2
linux linux_kernel 2.6.6
cisco ios 11.1ct
cisco ios 12.0(18)s5
cisco ios 12.0(7)db2
cisco ios 11.1(36)ca4
cisco ios 12.2yb
cisco ios 12.3xx
cisco ios 12.2fx
freebsd freebsd 4.1.1
cisco ios 12.1(9)
cisco ios 12.1(1)dc2
cisco ios 12.1(8a)e
freebsd freebsd 1.1
cisco ios 12.2(15)jk4
cisco ios 12.2(10.5)s
linux linux_kernel 2.6.13.3
cisco ios 12.2(7)da
cisco ios 12.2(8)yw3
cisco ios 12.2(15)cz3
cisco ios 12.1(4a)
cisco ios 12.1(5)yi
cisco ios 12.3xm
cisco ios 12.3xe
linux linux_kernel 2.2.3
cisco ios 12.1(14)ea1
cisco ios 12.2jx
cisco ios 12.4(3)
netbsd netbsd 1.6.2
cisco ios 12.1(1)db2
linux linux_kernel 2.0.11
freebsd freebsd 5.3
trustedbsd trustedbsd -
cisco ios 12.1(13)ew4
linux linux_kernel 2.6.18.2
linux linux_kernel 2.5.24
cisco ios 12.1ay
linux linux_kernel 2.5.51
cisco ios 12.2xi
cisco ios 11.2(16)
cisco ios 11.1(18)
cisco ios 12.0(5)wc3b
cisco ios 12.3(4)xd
cisco ios 12.2(4)b4
linux linux_kernel 2.6.22.4
cisco ios 12.2(18.2)
linux linux_kernel 2.4.10
cisco ios 12.2(11)ja1
netbsd netbsd 2.1.1
cisco ios 12.2(3d)
cisco ios 12.2za
linux linux_kernel 2.6.11.1
freebsd freebsd 4.3
linux linux_kernel 2.4.5
cisco ios 12.3(9)
cisco ios 12.2(25)seb3
cisco ios 12.1xb
cisco ios 12.1(13)ay
cisco ios 12.1yf
cisco ios 12.2(15)bc2i
cisco ios 12.3(7.7)
linux linux_kernel 2.5.28
cisco ios 12.0(10)
linux linux_kernel 2.5.33
cisco ios 12.0(5)wc13
cisco ios 12.1(11)
openbsd openbsd 2.2
cisco ios 12.0(22)sy
cisco ios 12.2(26b)
linux linux_kernel 2.6.18.8
cisco ios 12.2(18)sxd6
cisco ios 12.0(15a)
cisco ios 11.2(9)xa
cisco ios 12.1(8b)e14
cisco catalyst_blade_switch_3020_firmware *
cisco ios 12.1(3)xp
cisco ios 12.2(14)sz1
cisco ios 12.0(16.06)s
linux linux_kernel 2.0.20
cisco ios 12.2(25)sec1
linux linux_kernel 2.6.16.37
linux linux_kernel 2.4.8
freebsd freebsd 4.8
cisco ios 12.0(5)xn
cisco ios 12.0(19a)
cisco ios 12.1(6)ea1a
cisco ios 12.1xx
cisco ios 12.3(4)xq
openbsd openbsd 2.1
cisco ios 12.0(21)st7
cisco ios 12.1(22)ea3
cisco ios 12.2(8)tpc10a
cisco ios 12.3j
cisco ios 12.1(5)ya
cisco ios 11.1(13)aa
cisco ios 12.1(14.5)
cisco ios 12.1(6a)
cisco ios 12.0(23)s6
cisco ios 12.0(17)
linux linux_kernel 2.6.18.3
cisco ios 12.1(4)db2
cisco ios 12.1(7)da3
linux linux_kernel 2.6.20.9
freebsd freebsd 4.9
cisco ios 11.2(11b)t2
cisco ios 12.2(4)xm
cisco ios 12.3xs
cisco ios 12.0(5)xk
cisco ios 12.2bw
cisco ios 11.2(9)p
cisco ios 12.1x(l)
cisco ios 12.2(10)da2
cisco ios 12.2(20)s8
linux linux_kernel 2.6.23.9
bsdi bsd_os 2.0.1
linux linux_kernel 2.5.34
linux linux_kernel 2.6.5
dragonflybsd dragonflybsd -
cisco ios 12.2(25)fx
linux linux_kernel 2.6.16.44
cisco ios 12.3(8)t4
cisco ios 12.3(2)t3
cisco ios 12.4(5)
linux linux_kernel 2.6.18.6
cisco ios 11.3da
cisco ios 12.0(23)s2
cisco ios 12.2(2)xc1
cisco ios 12.0(8)
cisco ios 12.0(16)sc3
cisco ios 12.2ewa
cisco ios 12.2xe
cisco ios 12.2xj
cisco ios 12.3(4)xq1
cisco ios 12.2(14)su2
cisco ios 12.2(25)sw
cisco ios 12.0(12)s4
cisco ios 12.1(20)ew4
linux linux_kernel 2.3.11
cisco ios 12.2(7)
linux linux_kernel 2.3.45
linux linux_kernel 2.6.3
cisco ios 12.2(4)mb3
linux linux_kernel 2.6.20.10
cisco ios 12.2ya
cisco ios 12.2(25)ey
cisco ios 11.2(15)g
cisco ios 12.4(1c)
linux linux_kernel 2.2.27
linux linux_kernel 2.6.20.5
cisco ios 12.2(11)yv
linux linux_kernel 2.5.38
linux linux_kernel 2.0.18
cisco ios 11.2(8)
cisco ios 12.3(11)yk
cisco ios 12.0(1)w
cisco ios 12.2(18)ew3
linux linux_kernel 2.6.17.2
linux linux_kernel 2.0.30
cisco ios 12.3
cisco ios 12.2(25)s3
cisco ios 12.2zd
linux linux_kernel 2.1.89
cisco ios 12.4xj
cisco ios 12.2(4)ja
freebsd freebsd 2.1.0
cisco ios 12.0(13)s6
cisco ios 12.0wx
cisco ios 12.1ex
cisco ios 12.3(7)ja1
linux linux_kernel 2.4.30
linux linux_kernel 2.6.16.11
cisco ios 12.3(5)b1
linux linux_kernel -
linux linux_kernel 2.5.18
cisco ios 12.3(13a)bc1
linux linux_kernel 2.6.22.1
cisco ios 12.3(4)xe4
openbsd openbsd 2.7
linux linux_kernel 2.5.19
cisco ios 12.0xw
cisco ios 12.2(15)zj3
cisco ios 12.1(12)e
cisco ios 11.3(1)t
cisco ios 12.3(8)xu2
linux linux_kernel 2.5.23
linux linux_kernel 2.6.11.10
cisco ios 12.2(15)zo
linux linux_kernel 2.2.7
netbsd netbsd 1.3.3
cisco ios 12.2(25)ey2
cisco ios 12.2(2)xu2
freebsd freebsd 2.2.2
linux linux_kernel 2.2.18
cisco ios 12.2(10g)
linux linux_kernel 2.6.17.5
cisco ios 12.0(20)sp1
cisco ios 12.1(4)
cisco ios 12.0(1)xb
cisco ios 12.2(13)zl
linux linux_kernel 2.5.9
cisco ios 12.2yf
linux linux_kernel 2.6.16.25
linux linux_kernel 2.5.31
cisco ios 12.0(14)st
cisco ios 12.3(11)t4
cisco ios 11.1(15)aa
cisco ios 12.3xk
cisco ios 12.2(12)da9
cisco ios 12.2(16)b1
cisco ios 12.0(18)s5a
linux linux_kernel 2.6.17.8
linux linux_kernel 2.6.15.7
linux linux_kernel 2.2.25
linux linux_kernel 1.3.0
linux linux_kernel 2.3.49
cisco ios 12.0(25)s1
cisco ios 12.0(12a)
cisco ios 12.2zi
cisco ios 12.3(13)
linux linux_kernel 2.5.3
cisco ios 12.2(3)
cisco ios 12.2(21)
cisco ios 11.2gs
cisco ios 12.0(15)sc
cisco ios 12.2(18)sxd4
cisco ios 12.3(11)t
cisco ios 12.0(5.4)wc1
cisco ios 12.0(11)s6
cisco ios 11.3(11c)
cisco ios 12.2(18)se
linux linux_kernel 2.5.16
cisco ios 12.2ey
cisco ios 12.4(8)
linux linux_kernel 2.6.13
cisco ios 12.4(2)xb
cisco ios 11.1aa
cisco ios 12.2ye
cisco ios 12.1(6)ez2
microsoft windows_server_2003 -
linux linux_kernel 2.5.30
cisco ios 12.2yl
linux linux_kernel 2.6.20.2
cisco ios 12.0(27)
cisco ios 12.2(15)t16
cisco ios 12.2(18)sxe1
linux linux_kernel 2.5.50
linux linux_kernel 2.5.0
linux linux_kernel 2.4.11
cisco ios 12.2(7b)
linux linux_kernel 2.4.7
cisco ios 11.2sa
cisco ios 12.1(10)aa
cisco ios 12.4(2)t2
linux linux_kernel 2.5.26
bsdi bsd_os 4.0.1
cisco ios 12.1(8b)e15
cisco ios 12.1(20)ea1
cisco ios 12.2yk
cisco ios 12.1(2)xf5
cisco ios 11.2(16)p
cisco ios 12.1(5)xs
cisco ios 12.2(20)ew
netbsd netbsd 1.1
bsdi bsd_os 1.1
cisco ios 12.2se
cisco ios 12.1(11b)e14
cisco ios 12.2(1)xq
cisco ios 12.2(22)s
cisco ios 12.2(25)seb
cisco ios 12.2(13a)
cisco ios 4.1.1
cisco ios 11.3ha
cisco ios 12.2(20)ewa2
cisco ios 10.3(16)
cisco ios 12.2(8)bc1
cisco ios 12.2(4)bx
cisco ios 12.2(6.8a)
cisco ios 12.2(21a)
cisco ios 12.4xg
linux linux_kernel 2.5.58
cisco ios 12.0(3.2)
linux linux_kernel 2.6.19.4
cisco ios 12.2(2)xi2
cisco ios 12.3xi
cisco ios 12.3(15)
oracle solaris 10
cisco ios 12.2(12)
linux linux_kernel 2.6.23.14
cisco ios 12.1(13)e13
netbsd netbsd 2.0.1
linux linux_kernel 2.6.16.50
linux linux_kernel 2.3.6
cisco ios 12.0(17)s
cisco ios 12.0(17)st1
cisco ios 12.1(8)aa1
cisco ios 12.1(11)ec
cisco ios 12.0(15)s6
cisco ios 12.2(2)xb4
linux linux_kernel 2.4.4
cisco ios 12.3(4)t1
linux linux_kernel 2.5.44
cisco ios 12.2(4)b3
linux linux_kernel 2.5.25
cisco ios 11.2(8.2)sa6
cisco ios 12.3(14)yt1
cisco ios 12.1(3a)t4
linux linux_kernel 2.5.62
cisco ios 12.1xg
cisco ios 12.2(12)da8
linux linux_kernel 2.2.11
cisco ios 12.0(20)w5(22b)
linux linux_kernel 2.5.39
cisco ios 12.2(15)zl1
cisco ios 12.3(9a)bc6
cisco ios 12.2(13)zj
cisco ios 12.4(1)
linux linux_kernel 2.6.17.3
linux linux_kernel 2.6.16.10
linux linux_kernel 2.2.1
cisco ios 12.3(2)jk1
cisco ios 12.2(4)mx1
linux linux_kernel 2.6.20.14
cisco ios 12.0(8a)
linux linux_kernel 2.6.22.16
cisco ios 12.1(20)
cisco ios 12.1(8c)
cisco ios 12.2xb
cisco ios 12.1(5e)
linux linux_kernel 2.6.23.3
cisco ios 12.0(28)s5
cisco ios 12.0(30)s1
linux linux_kernel 2.6.16.5
cisco ios 12.2(2)xb15
cisco ios 12.1(15)bc1
cisco ios 12.2yc
cisco ios 12.2yu
cisco ios 12.3yt
dragonflybsd dragonflybsd 1.10.1
linux linux_kernel 2.1.132
cisco ios 12.1xv
cisco ios 12.2(13)ze
cisco ios 12.2xf
cisco ios 11.1(22)
cisco ios 12.1(2)xf
linux linux_kernel 2.6.11.4
cisco ios 12.2(8)yw2
cisco ios 12.2su
freebsd freebsd 2.1.6.1
cisco ios 12.1(4)e3
cisco ios 12.4xd
cisco ios 12.3jea
cisco ios 12.2(20)s1
linux linux_kernel 2.6.16.53
linux linux_kernel 2.6.15.1
cisco ios 12.0(28d)
cisco ios 12.3(7)ja
freebsd freebsd 7.0
cisco ios 12.2f
cisco ios 12.2(15)zk
linux linux_kernel 2.0.3
linux linux_kernel 2.5.46
linux linux_kernel 2.5.65
bsdi bsd_os 4.0
freebsd freebsd 2.0.5
freebsd freebsd 4.7
cisco ios 12.0(2)xc
cisco ios 12.1xj
cisco ios 12.2(1)xd
cisco ios 11.1(20)aa4
cisco ios 12.2(18)sxd1
cisco ios 12.1(5)dc
linux linux_kernel 2.3.12
linux linux_kernel 2.4.12
linux linux_kernel 2.3.2
bsdi bsd_os 3.1
cisco ios 12.4(3)t2
cisco ios 12.1(8)
cisco ios 12.0(10)s3b
cisco ios 12.2(9.4)da
cisco ios 12.1(6)e8
cisco ios 10.3(4.2)
cisco ios 12.2(2)xk
cisco ios 12.2(13)t16
cisco ios 12.2(25)s1
linux linux_kernel 2.6.18.0
cisco ios 12.0(17)sl9
cisco ios 12.3(3e)
cisco ios 12.1(13)
cisco ios 12.2
cisco ios 12.2(8)zb7
cisco ios 12.4xv
cisco ios 12.0xf
cisco ios 12.0(9)s8
cisco ios 12.2(11)yz2
linux linux_kernel 2.3.35
cisco ios 11.1ca
cisco ios 12.2(18)ewa
linux linux_kernel 2.4.33.5
cisco ios 12.1(14)
cisco ios 12.1(1c)
linux linux_kernel 2.0.25
cisco ios 12.0(3)
linux linux_kernel 2.6.18.5
linux linux_kernel 2.6.11.3
cisco ios 12.0(11a)
cisco ios 12.0(20.4)sp
cisco ios 12.2(2)xh
cisco ios 12.4(4)mr
linux linux_kernel 2.0.1
cisco ios 12.2(2)xb14
cisco ios 12.1(5)yd
linux linux_kernel 2.2.21
cisco ios 4.1
cisco ios 12.0(13)w5(19c)
bsdi bsd_os -
linux linux_kernel 2.5.64
linux linux_kernel 2.6.21
linux linux_kernel 2.3.33
cisco ios 12.1(3a)t7
cisco ios 12.3yn
cisco ios 12.1(4)db1
cisco ios 12.2(15)t
cisco ios 12.2xn
cisco ios 12.3(7)xr4
linux linux_kernel 2.4.23
cisco ios 12.1(8a)ex
cisco ios 12.0(19)sp
cisco ios 12.2(2)xn
cisco ios 12.2(15)zj
cisco ios 12.1(4.3)t
linux linux_kernel 2.6.16.40
cisco ios 12.3xl
cisco ios 12.1(10)e
cisco ios 12.3yw
cisco ios 11.2(26b)
cisco ios 12.2yr
cisco ios 12.1(10)e4
cisco ios 12.0w5
cisco ios 12.2ze
cisco ios 12.3(4)xh
cisco ios 12.3(11)ys1
cisco ios 12.2(18)s
cisco ios 12.0(31)s
cisco ios 12.1(12c)ew4
linux linux_kernel 2.6.23.5
cisco ios 12.2(17d)sxb7
netbsd netbsd 1.2
cisco ios 12.2(15)jk2
cisco ios 12.2(4)t6
linux linux_kernel 2.2.19
cisco ios 12.0xu
cisco ios 12.2(12g)
cisco ios 12.0xd
linux linux_kernel 2.4.13
cisco ios 12.2(14)sy1
cisco ios 12.2(25)sw4a
cisco ios 12.3(7)t10
cisco ios 12.2(15)bc
linux linux_kernel 2.6.16.26
cisco ios 12.2(14)s15
cisco ios 11.1(24c)
cisco ios 12.1(1)db
cisco ios 12.1(4)xz
freebsd freebsd 2.1.6
cisco ios 12.2(25)ewa4
linux linux_kernel 2.6.16.21
linux linux_kernel 2.3.27
cisco ios 12.2(4)t1
cisco ios 12.1(2)t
cisco ios 12.1(22)ea5a
cisco ios 12.3(11)yk2
cisco ios 12.0(25.4)s1
cisco ios 12.1(13)e1
linux linux_kernel 2.6.15.5
cisco ios 12.3(8)t9
cisco ios 12.2(23.6)
cisco ios 12.2(15.1)s
cisco ios 12.2sx
cisco ios 12.3(5e)
cisco ios 12.0(22)s4
openbsd openbsd 3.9
cisco ios 12.3(11)yf3
cisco ios 12.0xg
cisco ios 12.1(3)t
linux linux_kernel 2.6.19.3
cisco ios 12.3(2)xc2
cisco ios 12.2(2)xg
cisco ios 12.4(2)t3
cisco ios 12.2(4)b2
linux linux_kernel 2.6.17.7
linux linux_kernel 2.4.33.3
cisco ios 12.1(12)
cisco ios 12.3(5b)
microsoft windows_server_2008 -
linux linux_kernel 2.5.52
cisco ios 12.2(2)t1
cisco ios 12.0(27)s
cisco ios 12.2ew
cisco ios 12.3(11)
cisco ios 12.2zj
linux linux_kernel 2.6.17.4
cisco ios 12.2(17)zd3
cisco ios 12.3(14)yu1
freebsd freebsd 1.5
cisco ios 12.2(1)xd1
cisco ios 12.0(5)wc3
cisco ios 12.0(14)
cisco ios 12.1(7)da2
cisco ios 12.0(23)s3
cisco ios 12.2(15)sl1
cisco ios 12.1(10)ec
cisco ios 12.1(20)e1
cisco ios 12.1e
linux linux_kernel 2.0.10
cisco ios 12.0(14)w5(20)
cisco ios 12.3(16)
cisco ios 12.0(21)s
linux linux_kernel 2.4.33.2
openbsd openbsd 3.3
cisco ios 12.0(11)st4
cisco ios 12.3(6e)
cisco ios 12.0(17)sl2
cisco ios 12.1(1)t
cisco ios 12.0(16)s10
linux linux_kernel 2.3.5
cisco ios 12.2(4)ya7
cisco ios 12.2(23)
cisco ios 12.3yr
linux linux_kernel 2.3.7
cisco ios 12.2yj
cisco ios 12.3(8)yg1
netbsd netbsd 1.3.1
cisco ios 12.0(5)yb4
cisco ios 12.4xe
netbsd netbsd 3.0
cisco ios 12.0(7)wx5(15a)
cisco ios 12.3(7)t4
linux linux_kernel 2.3.44
cisco ios 12.0(5)wc2b
cisco ios 12.2(20)ew3
cisco ios 12.3(4)xk4
cisco ios 12.0dc
cisco ios 12.2(25)sec2
cisco ios 11.1(24a)
cisco ios 12.3bc
cisco ios 12.2(4)xr
cisco ios 12.2(25)se
freebsd freebsd 2.0.1
cisco ios 12.0(27)sv
cisco ios 12.2(17)
linux linux_kernel 2.6.11.12
cisco ios 12.0(5)xu
netbsd netbsd 1.3
linux linux_kernel 2.3.19
linux linux_kernel 2.3.4
linux linux_kernel 2.3.41
linux linux_kernel 2.2.26
cisco ios 12.2(4)bc1
cisco ios 12.0xc
freebsd freebsd 3.5
cisco ios 12.3t
cisco ios 12.0(21)s5a
cisco ios 12.1(20)eo3
bsd bsd -
cisco ios 12.2(2)xb11
cisco ios 11.3t
linux linux_kernel 2.6.16.17
cisco ios 12.1(3a)
cisco ios 12.0(2)
cisco ios 12.3(10)
cisco ios 11.2(4)f1
cisco ios 11.1(7)aa
linux linux_kernel 2.5.67
cisco ios 12.2(4)ya11
cisco ios 12.2(18)sxd5
cisco ios 12.1xf
cisco ios 12.2(15)bc2f
cisco ios 12.2(3.4)bp
linux linux_kernel 2.4.35
cisco ios 12.1(12c)e7
cisco ios 12.0(1)xe
cisco ios 12.3(9e)
cisco ios 12.2(25)s6
dragonflybsd dragonflybsd 1.1
microsoft windows_xp -
freebsd freebsd 3.2
cisco ios 11.1(15)ia
cisco ios 12.2(15)bz
freebsd freebsd 4.6.1
cisco ios 11.2(10)
netbsd netbsd 1.4.1
cisco ios 12.0(24.2)s
cisco ios 12.1(11b)
cisco ios 12.0(2)xe
cisco ios 12.3(2)jk
linux linux_kernel 2.0.6
cisco ios 12.1yj
cisco ios 11.1(13)ca
cisco ios 12.0(5)wc
cisco ios 12.1(19)fc1
cisco ios 12.2(2)by2
netbsd netbsd 2.0.2
cisco ios 12.0(10)w5
cisco ios 12.0(19)s2
cisco ios 12.3(7)xi4
linux linux_kernel 2.4.3
linux linux_kernel 2.0.17
cisco ios 12.2(15)b
linux linux_kernel 2.3.0
cisco ios 11.1(7)ca
cisco ios 12.0(1)st
cisco ios 12.0(7)xe2
cisco ios 12.2(15)t9
linux linux_kernel 2.2.17
cisco ios 12.1(20)e5
cisco ios 12.0(21)s4a
cisco ios 12.1(13)e7
dragonflybsd dragonflybsd 1.0
linux linux_kernel 2.5.1
linux linux_kernel 2.2.12
cisco ios 12.0(10)w5(18f)
cisco ios 12.0(21)s1
cisco ios 12.1(5)yi1
cisco ios 12.3tpc
cisco ios 12.2(15)bc1
cisco ios 12.2xu
cisco ios 12.3(4)xk
cisco ios 12.0xl
linux linux_kernel 2.6.8
cisco ios 12.0(30)s4
linux linux_kernel 2.5.41
cisco ios 12.2tpc
openbsd openbsd 3.8
linux linux_kernel 2.6.16.31
cisco ios 12.2(25)s4
cisco ios 12.2sz
cisco ios 12.0(3.3)s
cisco ios 12.2(18)ew
cisco ios 12.1(5a)e
linux linux_kernel 2.4.25
cisco ios 12.1(5)yf4
linux linux_kernel 2.6.17.1
cisco ios 12.2xc
cisco ios 12.1(3)xt3
cisco ios 12.0(9a)
cisco ios 12.0(21)s6
cisco ios 12.1eu
cisco ios 12.0(28)w5-32a
cisco ios 12.3(8)t11
cisco ios 12.1(8b)e16
cisco ios 12.3(2)xa5
cisco ios 12.1(4)xz7
cisco ios 12.2eu
cisco ios 12.2ja
linux linux_kernel 2.6.13.2
cisco ios 12.2sy
cisco ios 12.3(5a)b5
linux linux_kernel 2.5.8
cisco ios 12.1(20)ea1a
oracle solaris 9
cisco ios 12.2(4)xw
cisco ios 12.3(4)ja1
openbsd openbsd 3.6
linux linux_kernel 2.5.5
cisco ios 12.2(25)ewa1
cisco ios 11.2(8.9)sa6
cisco ios 12.0xt
linux linux_kernel 2.6.12.12
linux linux_kernel 1.2.0
cisco ios 12.2(11)t3
linux linux_kernel 2.3.22
cisco ios 12.3(8)t7
freebsd freebsd 1.0
cisco ios 12.2zk
linux linux_kernel 2.0.22
linux linux_kernel 2.6.15.2
cisco ios 12.2(13)zg
cisco ios 12.2sea
cisco ios 11.0.12(a)bt
linux linux_kernel 2.6.20
linux linux_kernel 2.6.20.8
cisco ios 12.0(05)wc8
cisco ios 12.1(8)ea1b
cisco ios 12.2zf
cisco ios 12.0(26)s2
cisco ios 12.2(18)sv
cisco ios 12.2(18)s10
cisco ios 12.1(9)ea
cisco ios 12.2xq
cisco ios 12.0(12)
cisco ios 12.0(20)sp
cisco ios 12.0(28c)
cisco ios 12.2(17a)
cisco ios 12.0(16)s
freebsd freebsd 2.2
bsdi bsd_os 3.2
cisco ios 12.2t
cisco ios 12.3jeb
cisco ios 12.1xa
cisco ios 11.2
cisco ios 12.2(13e)
cisco ios 12.2(24)sv1
openbsd openbsd 4.3
cisco ios 12.1(5)yc2
cisco ios 12.1xe
cisco ios 12.3(7)xr6
cisco ios 11.3(11b)
cisco ios 12.3ya
freebsd freebsd -
freebsd freebsd 2.2.4
linux linux_kernel 2.6.16.23
cisco ios 12.2(20)s2
cisco ios 12.2(14.5)
cisco ios 12.3(6d)
cisco ios 12.1da
cisco ios 12.0(16)st
cisco ios 12.1(9)ex3
freebsd freebsd 0.4_1
cisco ios 12.1(5)xu1
cisco ios 11.2wa4
cisco ios 12.2(27)sv1
cisco ios 11.1(15)
cisco ios 12.3yg
linux linux_kernel 2.6.16.47
cisco ios 12.3ja
cisco ios 12.3(7)xi3
cisco ios 12.2(4)t
linux linux_kernel 2.3.29
cisco ios 12.2yt
linux linux_kernel 2.3.37
cisco ios 12.1(2)xf4
linux linux_kernel 2.5.12
linux linux_kernel 2.6.17.13
cisco ios 12.2sxa
linux linux_kernel 2.3.39
cisco ios 12.2(25)sg
linux linux_kernel 2.6.16.32
cisco ios 12.2(13)
linux linux_kernel 2.6.16.30
cisco ios 12.2(15)ys
cisco ios 12.2(12b)
linux linux_kernel 2.6.15.11
cisco ios 12.2(7c)
cisco ios 12.1(4)db
cisco ios 12.2(15)cx
netbsd netbsd 3.0.2
cisco ios 12.2(13)zd
cisco ios 12.1(8a)ew
cisco ios 12.1(9)aa
cisco ios 12.3(8)xy4
linux linux_kernel 2.6.13.4
cisco ios 12.4xw
openbsd openbsd 3.4
cisco ios 12.3(2)xe3
cisco ios 12.0(12)s3
cisco ios 12.1(12a)
cisco ios 12.1(20)e2
linux linux_kernel 2.6.14.7
cisco ios 12.1(4)xm4
cisco ios 12.1(14)e10
cisco ios 12.2(12c)
linux linux_kernel 2.3.25
cisco ios 12.3xz
linux linux_kernel 2.2.0
cisco ios 12.1(20)ec2
cisco ios 12.2(22)s2
cisco ios 12.0(31)s1
cisco ios 12.1xm
cisco ios 12.3(8)yi
cisco ios 12.4(3b)
cisco ios 11.1(17)ct
cisco ios 12.2(15)t15
linux linux_kernel 2.6.20.1
cisco ios 11.2(26)p2
cisco ios 11.2wa3
openbsd openbsd 2.4
cisco ios 12.2xd
linux linux_kernel 2.1
cisco ios 12.0(9)s
cisco ios 12.2(1.1)
cisco ios 12.0(18)s7
linux linux_kernel 2.6.18.1
cisco ios 12.3(8)yd
cisco ios 12.1(8)ea2b
netbsd netbsd 3.99.15
cisco ios 12.0(22)s
cisco ios 11.1(15)ca
cisco ios 12.0(3.4)t
cisco ios 12.4(2)t
cisco ios 11.3(8)t1
cisco ios 12.0(26)s
linux linux_kernel 2.6.16.1
cisco ios 12.1(26)e1
cisco ios 12.2xw
cisco ios 12.2by
cisco ios 12.2yz
openbsd openbsd 2.0
cisco ios 12.2(20)s
cisco ios 12.0(15)s
cisco ios 12.3(5c)
bsd bsd 4.4
cisco ios 12.3(14)yt
cisco ios 12.2(18)s9
openbsd openbsd 4.1
cisco ios 12.2(5)
cisco ios 12.3xv
linux linux_kernel 2.0.37
cisco ios 12.0(26)s1
cisco ios 12.1(6)
cisco ios 12.3xf
cisco ios 12.1(19)ew
linux linux_kernel 2.5.53
cisco ios 12.2(17d)sxb10
bsdi bsd_os 4.1
cisco ios 12.3(4)t4
linux linux_kernel 2.6.16.43
linux linux_kernel 2.6.22.6
cisco ios 12.2(4)ya1
cisco ios 12.0xe
cisco ios 11.2(8)sa5
cisco ios 12.2(25)sw4
cisco ios 12.2yh
netbsd netbsd 2.0
cisco ios 12.3yb
bsdi bsd_os 4.2
cisco ios 11.2(8)sa3
openbsd openbsd 2.6
linux linux_kernel 2.4.22
linux linux_kernel 2.0.23
cisco ios 12.2(1)xd3
linux linux_kernel 2.4.19
cisco ios 12.1(11)e
linux linux_kernel 2.6.16.49
cisco ios 12.3xh
cisco ios 12.3(7)t8
linux linux_kernel 2.6.20.11
cisco ios 12.2(23f)
linux linux_kernel 2.6.9
linux linux_kernel 2.0.33
cisco ios 12.4(4)t
cisco ios 12.3(11)yf4
cisco ios 12.0xv
cisco ios 12.2(2)by
openbsd openbsd 3.5
bsdi bsd_os 3.0
cisco ios 12.2(25)seb4
cisco ios 11.2(23a)bc1
cisco ios 11.2(26)p5
cisco ios 12.3(5f)
cisco ios 12.0(13)wt6(1)
cisco ios 12.0xq
linux linux_kernel 2.5.14
cisco ios 12.1xh
cisco ios 12.2(12i)
linux linux_kernel 2.6.12.1
linux linux_kernel 2.6.16.51
cisco ios 12.0xs
cisco ios 12.2zo
cisco ios 12.1(3)db1
cisco ios 12.0sz
cisco ios 12.2n
linux linux_kernel 2.0.13
cisco ios 12.1(10)
cisco ios 12.3ym
cisco ios 12.1(9)ex
cisco ios 12.2(12.05)
linux linux_kernel 2.6.11.11
linux linux_kernel 2.6.13.5
cisco ios 12.3(8)yh
cisco ios 11.3(7)db1
cisco ios 12.1(14)e9
cisco ios 12.2(2)xh3
cisco ios 12.2(23a)
netbsd netbsd 2.0.4
linux linux_kernel 2.6.18.4
cisco ios 12.2(15)bc2h
cisco ios 12.1(3a)e8
cisco ios 12.2xh
cisco ios 11.2(4)f
cisco ios 12.1(19)ec
cisco ios 12.2dd
cisco ios 12.3(4)t8
linux linux_kernel 2.6.18
linux linux_kernel 2.5.56
cisco ios 12.1(27)
cisco ios 11.3(8)db2
cisco ios 12.1(13)ea1
cisco ios 12.0(19)s
linux linux_kernel 2.5.2
cisco ios 12.3(12e)
linux linux_kernel 2.6.20.4
cisco ios 12.1(18)
linux linux_kernel 2.6.15
cisco ios 12.3xw
linux linux_kernel 2.6.19.1
cisco ios 12.2(4)ya9
linux linux_kernel 2.6.16.7
cisco ios 12.0(17)st8
cisco ios 12.1(20)eo1
cisco ios 11.1(5)
cisco ios 12.2mc
cisco ios 12.3(11)xl
cisco ios 12.3(10e)
cisco ios 12.0sl
cisco ios 12.3(11)yw
cisco ios 12.0(21)s7
cisco ios 12.4sw
cisco ios 12.2(18)sv3
cisco ios 12.0(10a)
linux linux_kernel 2.0.32
cisco ios 12.2(2)t4
cisco ios 12.2(14)za8
cisco ios 12.2(1.4)s
cisco ios 12.0(1)s
cisco ios 12.1(12c)ev01
cisco ios 12.0(5)t
cisco ios 12.3(10d)
cisco ios 12.0(16)s8
cisco ios 12.1(5)yf2
linux linux_kernel 2.6.16.14
cisco ios 12.0(4)s
cisco ios 12.2(16)b
cisco ios 12.0(16)s8a
cisco ios 11.1(13)ia
cisco ios 11.1(9)ia
cisco ios 12.1ew
cisco ios 12.3yc
linux linux_kernel 2.0.8
linux linux_kernel 2.2.8
cisco ios 12.3jk
cisco ios 12.1(13)e12
linux linux_kernel 2.0.4
linux linux_kernel 2.5.49
cisco ios 12.2(6c)
cisco ios 12.1(5c)ex
cisco ios 12.1(22)e3
cisco ios 12.2(16.5)s
cisco ios 12.1ea
cisco ios 11.1(36)cc2
cisco ios 12.2sg
oracle solaris 8
openbsd openbsd 3.0
linux linux_kernel 2.6.10
cisco ios 12.0(10)s8
cisco ios 12.0(21a)
cisco ios 11.2(26a)
cisco ios 12.2cz
cisco ios 12.2(2)xa5
cisco ios 12.3(4)tpc11a
linux linux_kernel 2.4.16
cisco ios 12.1(3)xi
linux linux_kernel 2.0.19
cisco ios 12.3yd
cisco ios 11.3
cisco ios 8.3
linux linux_kernel 2.6.16.3
cisco ios 12.0(5.2)xu
cisco ios 12.2(2)xr
linux linux_kernel 2.5.4
cisco ios 12.1(14)e4
cisco ios 12.1(5)xm
cisco ios 12.1(13)e3
linux linux_kernel 2.0.21
cisco ios 11.1(36)ca2
cisco catalyst_blade_switch_3120x_firmware *
cisco ios 12.3jec
linux linux_kernel 2.6.14.6
linux linux_kernel 2.0.34
cisco ios 12.3(2)xe4
cisco ios 12.1xz
cisco ios 12.2(12h)
cisco ios 12.3(4)xg2
cisco ios 12.3(2)ja5
cisco ios 12.0(7)xv
cisco ios 12.0wc
cisco ios 12.2(16)bx
linux linux_kernel 2.5.57
linux linux_kernel 2.2.13
cisco ios 12.3yf
linux linux_kernel 2.4.34.1
cisco ios 12.3(11)xl3
cisco ios 12.2(25)s
cisco ios 12.2(4)mb13b
linux linux_kernel 2.0.5
cisco ios 11.3(1)
linux linux_kernel 2.3.50
cisco ios 12.3yx
cisco ios 12.2(13)zc
cisco ios 12.1(5)yd6
linux linux_kernel 2.5.11
cisco ios 12.2(25)fy
cisco ios 11.1(7)
cisco ios 12.0(23)sx
linux linux_kernel 2.3.99
cisco ios 12.2xm
cisco ios 12.1(19)e6
linux linux_kernel 2.6.16.27
cisco ios 11.0(17)
cisco ios 12.2(25)ez
cisco ios 12.4(6)t1
cisco ios 12.3(7)jx
cisco ios 12.0(17a)
cisco ios 12.2(17d)sxb8
cisco ios 12.2(20)ew2
cisco ios 12.2(15)xr2
linux linux_kernel 2.6.14.3
midnightbsd midnightbsd -
cisco ios 12.4xa
cisco ios 12.2(5d)
linux linux_kernel 2.3.17
linux linux_kernel 2.4.33
cisco ios 12.1(1a)t1
cisco ios 12.3(11)t9
cisco ios 12.3(4)t3
linux linux_kernel 2.0.12
linux linux_kernel 2.5.36
linux linux_kernel 2.5.69
cisco ios 12.1(7a)ey3
cisco ios 12.0(7)xf1
cisco ios 12.0
bsd bsd 4.1
cisco ios 12.2(18)sxe3
cisco ios 12.1(5)yc
cisco ios 12.1(8b)ex4
netbsd netbsd 1.6.1
cisco ios 12.2cy
linux linux_kernel 2.5.68
cisco ios 12.3(4)xk1
cisco ios 12.4xl
cisco ios 12.2(7.4)s
cisco ios 12.0(25)w5(27)
cisco ios 12.0(17)s7
cisco ios 12.2(4)bc1a
linux linux_kernel 2.3.20
cisco ios 12.2(23)sv1
cisco ios 12.0(7)xe
cisco ios 12.2(13)zd4
linux linux_kernel 2.4.27
cisco ios 12.2yx
cisco ios 11.3na
netbsd netbsd 1.5.2
cisco ios 12.3(9a)bc2
cisco ios 12.3(14)yq3
cisco ios 12.0xi
linux linux_kernel 2.6.16.35
cisco ios 12.1(5)xs2
cisco ios 12.1ec
cisco ios 12.2(18)s8
freebsd freebsd 4.1
linux linux_kernel 2.5.10
linux linux_kernel 2.6.23.4
cisco ios 12.3(14)yq
cisco ios 12.2(15)mc1
cisco ios 12.1(27b)
cisco ios 12.1eb
cisco ios 11.2xa
cisco ios 12.2(20)eu1
cisco ios 12.2bc
cisco ios 12.0(27)sv2
cisco ios 12.1(5)xv
cisco ios 11.3(2)xa
cisco ios 12.2(4)
cisco ios 11.1(17)
linux linux_kernel 2.4.9
linux linux_kernel 2.6.12.22
cisco ios 12.1(5)t
cisco ios 12.2ez
cisco ios 11.3(1)ed
linux linux_kernel 2.6.17.11
cisco ios 12.2(2)dd3
freebsd freebsd 4.11
cisco ios 12.1(5c)e12
linux linux_kernel 2.3.40
cisco ios 12.3(5a)b
linux linux_kernel 2.6.20.7
linux linux_kernel 2.6.21.1
freebsd freebsd 1.1.5
cisco ios 12.2(25)ex
cisco ios 12.2zm
linux linux_kernel 2.6.13.1
cisco ios 12.0(5)wc11
freebsd freebsd 1.1.5.1
bsdi bsd_os 2.1
cisco ios 12.0(1)xa3
linux linux_kernel 2.4.34
cisco ios 12.2(14.5)t
cisco ios 12.0s
cisco ios 12.1yh
linux linux_kernel 2.3.47
cisco ios 12.2(15)zl
cisco ios 12.1xp
cisco ios 12.2sh
cisco ios 12.1(13)ea1c
linux linux_kernel 2.4.0
cisco ios 12.2(15)zj2
cisco ios 12.3(8)xy6
cisco ios 12.2cx
cisco ios 12.2(17a)sxa
freebsd freebsd 6.3
cisco ios 12.0(8.0.2)s
cisco ios 12.2(4)xw1
cisco ios 12.2xl
cisco ios 12.1(9a)
cisco ios 12.3(8)xy5
linux linux_kernel 2.5.47
cisco ios 12.3(14)ym4
openbsd openbsd 4.2
linux linux_kernel 2.6.15.3
cisco ios 12.1aa
cisco ios 12.1(1)e5
cisco ios 12.2(2)xh2
cisco ios 12.1ax
cisco ios 12.2(25)ez1
cisco ios -
cisco ios 12.2sv
cisco ios 12.3(6f)
cisco ios 12.2(14)sx1
cisco ios 12.2(18)sxe
cisco ios 12.2x
linux linux_kernel 2.3.34
cisco ios 12.0(26)w5(28a)
cisco ios 12.1(11b)e
cisco ios 12.3(2)ja
cisco ios 12.1(5)db1
cisco ios 12.1(5)xv5
cisco ios 12.2(15)ys_1.2(1)
linux linux_kernel 2.0.14
linux linux_kernel 2.4.20
linux linux_kernel 2.6.23.7
cisco ios 12.4(9)t
cisco ios 11.2p
cisco ios 12.2(1)xa
cisco ios 12.4(2)t4
linux linux_kernel 2.6.12.5
linux linux_kernel 2.6.7
freebsd freebsd 6.2
linux linux_kernel 2.4.15
cisco ios 12.0(21)st
cisco ios 12.0(7)t
cisco ios 12.2(14)sz2
cisco ios 12.1(20)ew2
cisco ios 12.3(2)xc4
freebsd freebsd 5.2.1
linux linux_kernel 2.6.23.1
linux linux_kernel 2.6.16.41
cisco ios 12.1(5)yh
linux linux_kernel 2.3.1
cisco ios 12.1(5)yh3
cisco ios 12.3(8)yg
freebsd freebsd 3.0
freebsd freebsd 2.1.7.1
linux linux_kernel 2.6.15.6
cisco ios 12.2(1)
cisco ios 12.2(27)sbc
cisco ios 12.1(10)ec1
cisco ios 12.2(22)ea6
freebsd freebsd 2.1.5
linux linux_kernel 2.5.37
cisco ios 12.1xk
cisco ios 12.2(2)xi
cisco ios 12.1(7b)
cisco ios 11.2(4)xa
cisco ios 12.3(2)xc3
cisco ios 12.3(11)yr
cisco ios 12.2(14)s13
cisco ios 12.2yd
linux linux_kernel 2.3.8
linux linux_kernel 2.5.27
freebsd freebsd 2.2.1
cisco ios 12.1(5)xr2
cisco ios 12.0sx
cisco ios 12.4(4)t2
openbsd openbsd -
cisco ios 12.1(2b)
cisco ios 12.1xi
cisco ios 12.3yz
cisco ios 11.2bc
cisco ios 12.2yv
cisco ios 12.3(14)yq4
linux linux_kernel 2.6.14.2
cisco ios 11.2(10)bc
cisco ios 12.1(1)
cisco ios 12.1(20)ec1
cisco ios 12.2(20)eu2
cisco ios 12.2(15)bx
cisco ios 12.2(13)zf
cisco ios 11.2(14)gs2
cisco ios 12.1(20)e3
cisco ios 12.1(5)dc2
linux linux_kernel 2.3.46
cisco ios 12.0(24)s4
cisco ios 12.2da
linux linux_kernel 2.6.11.6
freebsd freebsd 2.0
cisco ios 12.1(7a)e6
cisco ios 12.3(13a)bc
cisco ios 11.0
cisco ios 12.2(15)zj1
cisco ios 12.0(17)sl
cisco ios 12.2(22)sv1
cisco ios 12.1(8)ea
cisco ios 12.3xg
linux linux_kernel 2.6.23
cisco ios 12.1(19)ew3
cisco ios 12.2(16f)
cisco ios 12.1(5)yb4
cisco ios 12.1az
cisco ios 12.2(4)xl
cisco ios 11.2(19a)gs6
netbsd netbsd 1.3.2
cisco ios 12.0(15)s3
linux linux_kernel 2.4.26
linux linux_kernel 2.6.12.3
cisco ios 12.1(19)e1
cisco ios 12.0(25)w5(27c)
cisco ios 12.1(20)ew
cisco ios 12.2(2)xj
linux linux_kernel 2.6.16.6
cisco ios 12.1(18.4)
cisco ios 12.2(4)mx
cisco ios 12.3(8)ja1
cisco ios 12.0(10)s7
cisco ios 12.0(2)xg
cisco ios 11.2(18)
cisco ios 12.3(12)
cisco ios 12.0(5)xk2
cisco ios 12.3(7)xr3
cisco ios 12.1gb
cisco ios 12.3yq
linux linux_kernel 2.6.16.39
cisco ios 12.0(18)w5(22b)
cisco ios 12.2(24)sv
cisco ios 11.2(8)sa1
linux linux_kernel 2.5.43
freebsd freebsd 2.2.3
cisco ios 12.0(24)s1
cisco ios 12.1s
cisco ios 12.0(28)w5-30b
cisco ios 12.2(4)ja1
linux linux_kernel 2.0
cisco ios 12.2(6.8)t1a
cisco ios 12.0(16)st1
cisco ios 12.1(3a)e7
cisco ios 12.0(28)
cisco ios 12.2(20)eu
cisco ios 12.0(16)w5(21)
cisco ios 12.0(10)w5(18g)
cisco ios 12.0(19)st6
cisco ios 12.2(4)b1
cisco ios 12.2sa
cisco ios 12.4(3a)
cisco ios 12.0(2b)
cisco ios 12.2(17d)sxb
cisco ios 12.1(20)eo
cisco ios 12.1(11a)
cisco ios 12.2(11)yp1
cisco ios 12.2(13.03)b
linux linux_kernel 2.5.29
cisco ios 12.2(12m)
linux linux_kernel 2.2.16
cisco ios 11.2(26e)
cisco ios 12.2(25)sv2
cisco ios 12.1yd
linux linux_kernel 2.0.24
linux linux_kernel 2.5.35
cisco ios 12.1xs
cisco ios 12.3(4)t2
cisco ios 12.3(14)yu
cisco ios 12.1(3a)xi8
cisco ios 12.2(30)s1
cisco ios 12.3yu
cisco ios 11.2(17)
cisco ios 11.1(16)ia
cisco ios 12.2(18)sw
freebsd freebsd 2.1
cisco ios 12.0(4)
cisco ios 12.2(11)t
cisco ios 12.2(14)za
freebsd freebsd 4.10
cisco ios 12.0(27)s1
cisco ios 12.3ye
cisco ios 12.0(18)st1
cisco ios 12.2sxd
linux linux_kernel 2.6.21.2
cisco ios 10.3(4.3)
cisco ios 12.0(7)xf
cisco ios 12.0(21)sl
cisco ios 11.2(15a)p
cisco ios 12.3(14)t5
cisco ios 12.2ex
cisco ios 12.1sec
linux linux_kernel 2.4.17
linux linux_kernel 2.2.20
openbsd openbsd 3.2
cisco ios 11.1(12)
linux linux_kernel 2.3.32
cisco catalyst_blade_switch_3120_firmware *
linux linux_kernel 2.6.16.52
linux linux_kernel 2.6.11.9
freebsd freebsd 4.4
cisco ios 11.0(22a)
cisco ios 12.1(3)xp4
cisco ios 12.2(2)xj1
cisco ios 11.3wa4
cisco ios 12.2(2)xt
cisco ios 12.1(13)ex2
linux linux_kernel 2.2.2
cisco ios 12.1yi
cisco ios 12.3bw
cisco ios 12.3yk
cisco ios 12.0(18)s
cisco ios 12.1(5)yb5
linux linux_kernel 2.6.22.7
netbsd netbsd 1.5.1
cisco ios 11.1(13)
freebsd freebsd 4.5
cisco ios 12.2(2)bx
cisco ios 12.0wt
cisco ios 12.2(1.1)pi
cisco ios 12.3(4)t
cisco ios 12.3(9a)bc7
cisco ios 12.2(10)da4
cisco ios 12.0(20)sx
netbsd netbsd 1.0
cisco ios 12.0(24)s5
linux linux_kernel 2.0.31
cisco ios 12.2(20)se3
cisco ios 12.2zn
cisco ios 12.2(18)ew2
cisco ios 12.0(28)w5(31a)
cisco ios 12.3(15b)
cisco ios 12.3xr
cisco ios 12.4(1b)
cisco ios 12.2mx
cisco ios 12.2(18)sxf
cisco ios 12.3(8)yi3
linux linux_kernel 2.6.16.4
cisco ios 12.2sxb
cisco ios 12.0ev
cisco ios 11.0(20.3)
cisco ios 12.3xj
cisco ios 12.1(22)e1
linux linux_kernel 2.3.30
cisco ios 12.2(1)xs
linux linux_kernel 2.2.5
netbsd netbsd 2.1
cisco ios 12.1(5)xy6
cisco ios 12.2(15)mc2c
linux linux_kernel 2.6.16.15
cisco ios 11.3(11b)t2
cisco ios 12.2(17f)
cisco ios 12.4xk
linux linux_kernel 2.4.34.2
cisco ios 12.0(5)xs
cisco ios 12.2(13)ja1
cisco ios 12.0(24)s6
cisco ios 12.0(19)st2
netbsd netbsd 3.0.1
freebsd freebsd 4.2
linux linux_kernel 2.0.26
cisco ios 12.2(2)xi1
cisco ios 12.0(5)t2
cisco ios 12.1xt
cisco ios 12.2(25)sw3a
linux linux_kernel 2.0.15
linux linux_kernel 2.2.4
linux linux_kernel 2.4.31
cisco ios 12.2xk
freebsd freebsd 1.2
cisco ios 12.0(6)
cisco ios 12.1(13)e17
cisco ios 12.2(13)t9
cisco ios 12.2(2)xa1
netbsd netbsd 1.5
cisco ios 12.0sp
cisco ios 12.4xm
cisco ios 12.2(24)
cisco ios 11.2f
linux linux_kernel 2.6.17.9
linux linux_kernel 2.6.21.3
cisco ios 12.0sy
cisco ios 12.1(8a)ew1
cisco ios 12.2xz
cisco ios 12.2(4)mb13c
cisco ios 12.3(2)xc1
linux linux_kernel 2.4.14
cisco ios 12.0(7)xk2
cisco ios 12.0(26)w5(28)
netbsd netbsd -
linux linux_kernel 2.6.16.38
cisco ios 12.1(7)
cisco ios 12.3xt
cisco ios 12.0(21)s3
linux linux_kernel 2.0.28
cisco ios 12.1(3)dc2
cisco ios 12.1(5)da1
cisco ios 12.1(11)ea1
cisco ios 12.3(11)yj
linux linux_kernel 2.3.38
linux linux_kernel 2.6.11.7
cisco ios 12.0(20)st6
openbsd openbsd 3.7
cisco ios 12.2(8)yy
cisco ios 12.4(2)mr1
cisco ios 12.2(15)zn
cisco ios 9.1
cisco ios 12.0(25)w5-27d
cisco ios 12.0(13a)
linux linux_kernel 2.6.12.2
linux linux_kernel 2.4.32
cisco ios 12.0(22)s5
linux linux_kernel 2.3.9
linux linux_kernel 2.3.28
cisco ios 12.1(20)ew1
cisco ios 12.2(2)b
cisco ios 12.2(2)xt3
cisco ios 11.1(11)
cisco ios 12.2(25)sed
cisco ios 12.1(5)yb
cisco ios 12.1(8)e
linux linux_kernel 2.4.1
linux linux_kernel 2.4.6
linux linux_kernel 2.2.23
cisco ios 12.0(7)t2
cisco ios 12.2yp
cisco ios 12.3yi
cisco ios 12.3(4)ja
cisco ios 12.4xn
cisco ios 12.2(4)mb12
cisco ios 12.1(10)ey
cisco ios 12.2so
linux linux_kernel 2.4.18
cisco ios 11.3aa
cisco ios 12.4t
cisco ios 12.3xa
linux linux_kernel 2.6.18.7
cisco ios 12.1(9)e3
cisco ios 12.2(8)ja
linux linux_kernel 2.6.12.6
cisco ios 12.2e
cisco ios 12.3(8)yi1
linux linux_kernel 2.5.60
cisco ios 12.0(1)
cisco ios 12.2(13)zh8
cisco ios 12.1(13)e9
cisco ios 12.1(6)ea1
cisco ios 12.0(23)s4
cisco ios 12.2(1)xe2
cisco ios 12.2yn
cisco ios 11.0(17)bt
cisco ios 12.2xv
linux linux_kernel 2.2.24
cisco ios 12.0(28)s3
cisco ios 11.1(28a)ct
linux linux_kernel 2.3.26
cisco ios 12.3(4)xg5
cisco ios 9.0
cisco ios 12.0sc
cisco ios 12.2(17)a
cisco ios 12.2(26)sv
cisco ios 12.4(6)t
linux linux_kernel 2.5.7
cisco ios 11.3ma
cisco ios 12.1(5)xg5
cisco ios 12.0(21)st6
cisco ios 12.2(26)sv1
cisco ios 12.2(15)t8
cisco ios 12.1ga
cisco ios 12.3(8)yg3
cisco ios 12.1(12c)
linux linux_kernel 2.3.24
cisco ios 12.3(5a)b2
netbsd netbsd 1.6
cisco ios 12.3(11)ys
linux linux_kernel 2.6.11
cisco ios 12.1xq
cisco ios 12.0(2)xf
cisco ios 12.4(2)xb2
freebsd freebsd 2.2.6
netbsd netbsd 4.0
linux linux_kernel 2.4.29
cisco ios 12.3(11)t8
cisco ios 12.2(1)s
freebsd freebsd 2.2.5
cisco ios 12.0t
linux linux_kernel 2.5.55
linux linux_kernel 2.6.11.8
linux linux_kernel 2.6.16.8
cisco ios 12.2(18)so4
cisco ios 12.1yb
cisco ios 12.2pi
cisco ios 12.3(11)yf
cisco ios 12.2(13)zh
cisco ios 12.0da
cisco ios 12.4(7)
cisco ios 12.1m
cisco ios 12.2(14)s14
cisco ios 12.2(13)t1
cisco ios 12.1ey
cisco ios 12.2(12.02)s
cisco ios 12.2xs
linux linux_kernel 2.6.11.5
cisco ios 12.4(2)mr
cisco ios 12.2(1d)
cisco ios 12.2(14)sy
linux linux_kernel 2.5.59
cisco ios 11
cisco ios 12.3b
freebsd freebsd 3.3
linux linux_kernel 2.3.48
cisco ios 12.0xa
cisco ios 12.1(19.3)e
microsoft windows_vista -
linux linux_kernel 2.6.11.2
cisco ios 12.3(14)t2
cisco ios 12.1(5)xv4
cisco ios 12.2(4)yb
cisco ios 12.2(28c)
freebsd freebsd 4.0
cisco ios 12.2(14)sy03
cisco ios 12.0(7)dc1
cisco ios 12.0(19)s4
linux linux_kernel 2.3.31
cisco ios 12.1(5c)
linux linux_kernel 2.6.22.3
linux linux_kernel 2.5.54
linux linux_kernel 2.6.16.20
cisco ios 12.1(1)dc
cisco ios 12.2(8)t
cisco ios 12.2xa
openbsd openbsd 2.3
cisco ios 12.2(28)
cisco ios 12.2zq
cisco ios 12.2(18)sxd7
cisco ios 12.0(7.4)s
cisco ios 12.1(22)ea4a
freebsd freebsd 5.4
cisco ios 12.2(27b)
cisco ios 12.2seb
cisco ios 12.0(5.1)xp
cisco ios 12.4md
cisco ios 11.1(24b)
cisco ios 12.1ev
linux linux_kernel 2.4.24
linux linux_kernel 2.6.17
linux linux_kernel 2.3.36
cisco ios 12.3(4)xk3
cisco ios 12.4xb
cisco ios 12.1(26)e3
linux linux_kernel 2.6.23.6
cisco ios 12.1xu
cisco ios 12.3(11)yf2
cisco ios 12.1(22)ea4
cisco ios 8.2
cisco ios 12.3(11)yk1
cisco ios 12.1(20)ec
cisco ios 12.2(8)t10
cisco ios 12.2(15)xr
cisco ios 12.1eo
cisco ios 11.0(22b)
cisco ios 12.0(23)sz
linux linux_kernel 2.6.23.2
cisco ios 12.3(5a)
linux linux_kernel 2.0.27
cisco ios 12.2ca
cisco ios 12.2(29a)
cisco ios 12.1(10a)
cisco ios 12.1(23)e4
cisco ios 12.2zb
cisco ios 12.3(13a)
cisco ios 12.2(20)s9
cisco ios 12.1(13)ew
cisco ios 12.2(13)mc1
cisco ios 11.1ia
cisco ios 12.3(6)
cisco ios 12.2(21b)
openbsd openbsd 2.9
cisco ios 12.1(5)t9
cisco ios 12.1xd
cisco ios 12.0(8.3)sc
cisco ios 11.3(11)b
cisco ios 12.3yh
cisco ios 12.1(20)e
cisco ios 12.4(2)xa
linux linux_kernel 2.2.6
cisco ios 12.1(6)ea2b
cisco ios 12.2(1)xe3
cisco ios 12.0(6b)
cisco ios 12.1(3)
cisco ios 12.0(14a)
linux linux_kernel 2.6.15.4
freebsd freebsd 6.1
cisco ios 12.1(6)ey
cisco ios 12.2(11)bc3c
cisco ios 12.4xt
linux linux_kernel 2.5.45
cisco ios 12.1(5)yd2
cisco ios 12.2(4)b
linux linux_kernel 2.6.19
cisco ios 12.3(11)t6
cisco ios 12.4
cisco ios 12.3(9a)bc
linux linux_kernel 2.5.20
cisco ios 12.1(6)ez1
linux linux_kernel 2.3.3
cisco ios 12.1(13.4)e
cisco ios 12.0(5.3)wc1
cisco ios 12.0(13)s8
linux linux_kernel 2.4.33.4
CVE-2010-0561 MEDIUM

Integer signedness error in NetBSD 4.0, 5.0, and NetBSD-current before 2010-01-21 allows local users to cause a denial of service (kernel panic) via a negative mixer index number being passed to (1) the azalia_query_devinfo function in the azalia audio driver (src/sys/dev/pci/azalia.c) or (2) the hdaudio_afg_query_devinfo function in the hdaudio audio driver (src/sys/dev/pci/hdaudio/hdaudio_afg.c).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
netbsd netbsd 4.0
netbsd netbsd 5.0
CVE-2010-2530 MEDIUM

Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via a negative size value in a /dev/nsmb ioctl operation, as demonstrated by a (1) SMBIOC_LOOKUP or (2) SMBIOC_OPENSESSION ioctl call.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
netbsd netbsd 2.1
netbsd netbsd 4.0
netbsd netbsd 1.3.2
netbsd netbsd 1.3.1
netbsd netbsd 3.0
netbsd netbsd 4.0.1
netbsd netbsd 1.1
netbsd netbsd *
netbsd netbsd 1.2.1
netbsd netbsd 2.0.4
netbsd netbsd 1.6.2
freebsd freebsd *
netbsd netbsd 2.0.1
netbsd netbsd 1.5.1
netbsd netbsd 2.0.2
netbsd netbsd 3.0.1
netbsd netbsd 1.5.2
netbsd netbsd 1.2
netbsd netbsd 1.4.3
netbsd netbsd 0.8
netbsd netbsd 2.0.3
netbsd netbsd 1.0
netbsd netbsd 5.0.1
netbsd netbsd 3.1
netbsd netbsd 0.9
netbsd netbsd 1.3
netbsd netbsd 1.4.2
netbsd netbsd 3.0.2
netbsd netbsd 2.0
netbsd netbsd 2.1.1
netbsd netbsd 3.99.15
netbsd netbsd 1.5.3
netbsd netbsd 1.3.3
netbsd netbsd 1.4
netbsd netbsd 1.5
apple mac_os_x *
netbsd netbsd 1.6
netbsd netbsd 1.4.1
netbsd netbsd 5.0
netbsd netbsd 1.6.1
CVE-2010-3014 LOW

The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users to read sensitive heap memory via a large out_size value in a ViceIoctl struct to a Coda ioctl, which triggers a buffer over-read.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
netbsd netbsd *
freebsd freebsd *
CVE-2010-4754 MEDIUM

The glob implementation in libc in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, and OpenBSD 4.7, and Libsystem in Apple Mac OS X before 10.6.8, allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
apple mac_os_x *
freebsd freebsd 7.3
freebsd freebsd 8.1
openbsd openbsd 4.7
netbsd netbsd 5.0.2
CVE-2010-4755 MEDIUM

The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
openbsd openssh 4.3
openbsd openssh 3.6.1p1
openbsd openssh 3.7
openbsd openssh 1.2.1
openbsd openssh 3.1p1
openbsd openssh 3.1
openbsd openssh 4.6
openbsd openssh 1.2.3
openbsd openssh 5.7
openbsd openssh 3.8
openbsd openssh 2.5.1
openbsd openssh 2.1.1
openbsd openssh 4.1
freebsd freebsd 7.3
openbsd openssh 4.3p1
openbsd openssh 2.1
openbsd openssh 1.2.27
freebsd freebsd 8.1
openbsd openssh 3.8.1p1
openbsd openssh 5.4
openbsd openssh 3.7.1p1
openbsd openssh 4.2p1
openbsd openssh 3.0.2p1
openbsd openssh 2.3
openbsd openssh 1.5
openbsd openssh 3.0.1p1
openbsd openssh 3.0.2
openbsd openssh 1.2
openbsd openssh *
openbsd openssh 3.5p1
openbsd openssh 3.7.1
openbsd openssh 4.2
openbsd openssh 2.9p1
openbsd openssh 2.5
openbsd openssh 4.0
openbsd openssh 5.0
openbsd openssh 3.8.1
openbsd openssh 3.2.3p1
openbsd openssh 3.6.1
openbsd openssh 3.4p1
openbsd openssh 5.6
openbsd openssh 3.2.2
openbsd openssh 3.9
openbsd openssh 2.9.9
openbsd openssh 1.5.8
openbsd openssh 3.9.1
openbsd openssh 2.3.1
openbsd openssh 1.3
openbsd openssh 4.5
openbsd openssh 3.4
openbsd openssh 3.6
openbsd openssh 3.2.2p1
openbsd openssh 2.9
openbsd openssh 1.2.2
openbsd openssh 3.5
openbsd openssh 1.5.7
openbsd openssh 3.9.1p1
openbsd openssh 4.7
openbsd openssh 3.3p1
netbsd netbsd 5.0.2
openbsd openssh 4.3p2
openbsd openssh 2.2
openbsd openssh 4.4
openbsd openssh 3.6.1p2
openbsd openssh 4.9
openbsd openssh 4.4p1
openbsd openssh 3.0
openbsd openssh 5.2
openbsd openssh 3.7.1p2
openbsd openssh 4.0p1
openbsd openssh 4.1p1
openbsd openbsd 4.7
openbsd openssh 3.2
openbsd openssh 4.8
openbsd openssh 3.0.1
openbsd openssh 5.1
openbsd openssh 4.7p1
openbsd openssh 5.5
openbsd openssh 3.0p1
openbsd openssh 2.9.9p2
openbsd openssh 3.3
openbsd openssh 2.5.2
openbsd openssh 5.3
openbsd openssh 2.9p2
CVE-2011-0418 MEDIUM

The glob implementation in Pure-FTPd before 1.0.32, and in libc in NetBSD 5.1, does not properly expand expressions containing curly brackets, which allows remote authenticated users to cause a denial of service (memory consumption) via a crafted FTP STAT command.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
pureftpd pure-ftpd 0.97.7pre3
pureftpd pure-ftpd 1.0.27
pureftpd pure-ftpd 1.0.8
pureftpd pure-ftpd 0.97.7pre1
pureftpd pure-ftpd 0.98.2a
pureftpd pure-ftpd 0.99.9
pureftpd pure-ftpd 1.0.13a
pureftpd pure-ftpd 0.98.3
pureftpd pure-ftpd 0.94
pureftpd pure-ftpd 0.98pre1
pureftpd pure-ftpd 0.98.7
pureftpd pure-ftpd 0.97.6
pureftpd pure-ftpd 0.97.5
pureftpd pure-ftpd 1.0.30
pureftpd pure-ftpd 0.97.2
pureftpd pure-ftpd 0.97.1
pureftpd pure-ftpd 0.90
pureftpd pure-ftpd 0.95.1
pureftpd pure-ftpd 1.0.7
pureftpd pure-ftpd 0.98.5
pureftpd pure-ftpd 0.99.3
pureftpd pure-ftpd 0.97.4
pureftpd pure-ftpd 0.99.1b
pureftpd pure-ftpd 0.97.3
pureftpd pure-ftpd 1.0.11
pureftpd pure-ftpd 1.0.29
pureftpd pure-ftpd 0.91
pureftpd pure-ftpd 0.98.4
pureftpd pure-ftpd 1.0.4
pureftpd pure-ftpd 0.97pre1
pureftpd pure-ftpd 0.97.7
pureftpd pure-ftpd 0.98-final
pureftpd pure-ftpd 0.99.1a
pureftpd pure-ftpd 0.99pre1
pureftpd pure-ftpd 0.97-final
pureftpd pure-ftpd 0.98.6
pureftpd pure-ftpd 0.98.1
pureftpd pure-ftpd 0.99b
pureftpd pure-ftpd 1.0.16c
pureftpd pure-ftpd 1.0.1
pureftpd pure-ftpd 0.92
pureftpd pure-ftpd 1.0.9
pureftpd pure-ftpd 1.0.15
pureftpd pure-ftpd 0.97pre3
pureftpd pure-ftpd 0.99a
pureftpd pure-ftpd 1.0.22
pureftpd pure-ftpd 1.0.25
pureftpd pure-ftpd 1.0.26
pureftpd pure-ftpd 0.95.2
pureftpd pure-ftpd 1.0.16a
pureftpd pure-ftpd 1.0.17
pureftpd pure-ftpd 0.96pre1
pureftpd pure-ftpd 1.0.20
pureftpd pure-ftpd 0.97pre2
pureftpd pure-ftpd 1.0.12
pureftpd pure-ftpd 0.95-pre3
pureftpd pure-ftpd 0.99.4
pureftpd pure-ftpd 0.95
pureftpd pure-ftpd *
pureftpd pure-ftpd 0.98.2
pureftpd pure-ftpd 0.99.1
pureftpd pure-ftpd 0.98pre2
pureftpd pure-ftpd 1.0.16b
pureftpd pure-ftpd 1.0.3
pureftpd pure-ftpd 0.96
pureftpd pure-ftpd 1.0.10
pureftpd pure-ftpd 1.0.6
pureftpd pure-ftpd 1.0.2
pureftpd pure-ftpd 1.0.14
pureftpd pure-ftpd 1.0.5
pureftpd pure-ftpd 0.99.2a
pureftpd pure-ftpd 0.97pre4
pureftpd pure-ftpd 0.99pre2
pureftpd pure-ftpd 1.0.24
netbsd netbsd 5.1
pureftpd pure-ftpd 0.97pre5
pureftpd pure-ftpd 0.99
pureftpd pure-ftpd 0.93
pureftpd pure-ftpd 0.95-pre2
pureftpd pure-ftpd 0.99.2
pureftpd pure-ftpd 1.0.21
pureftpd pure-ftpd 1.0.18
pureftpd pure-ftpd 0.95-pre1
pureftpd pure-ftpd 0.95-pre4
pureftpd pure-ftpd 0.97.7pre2
pureftpd pure-ftpd 1.0.0
pureftpd pure-ftpd 1.0.19
pureftpd pure-ftpd 1.0.28
pureftpd pure-ftpd 0.96.1
pureftpd pure-ftpd 1.0.17a
CVE-2011-0419 MEDIUM

Stack consumption vulnerability in the fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows context-dependent attackers to cause a denial of service (CPU and memory consumption) via *? sequences in the first argument, as demonstrated by attacks against mod_autoindex in httpd.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
debian debian_linux 5.0
openbsd openbsd 4.8
apple mac_os_x 10.6.0
suse linux_enterprise_server 10
oracle solaris 10
apache http_server *
freebsd freebsd *
netbsd netbsd 5.1
debian debian_linux 7.0
apache portable_runtime *
debian debian_linux 6.0
google android *
CVE-2011-1547 MEDIUM

Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1, when IPsec is enabled, allow remote attackers to cause a denial of service (memory corruption and panic) or possibly have unspecified other impact via a crafted (1) IPv4 or (2) IPv6 packet with nested IPComp headers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
netbsd netbsd 4.0
netbsd netbsd 5.0
netbsd netbsd 5.0.1
netbsd netbsd 5.1
netbsd netbsd 5.0.2
CVE-2011-1920 LOW

The make include files in NetBSD before 1.6.2, as used in pmake 1.111 and other products, allow local users to overwrite arbitrary files via a symlink attack on a /tmp/_depend##### temporary file, related to (1) bsd.lib.mk and (2) bsd.prog.mk.

CVSS 2.0

Severity: LOW

Problem Type: CWE-59,

Products Affected

Vendor Product Version
netbsd netbsd 1.3
netbsd netbsd 1.3.2
netbsd netbsd 1.3.1
netbsd netbsd 1.4.2
netbsd netbsd 1.1
netbsd netbsd *
netbsd netbsd 1.2.1
netbsd netbsd 1.5.3
netbsd netbsd 1.3.3
netbsd netbsd 1.4
netbsd netbsd 1.5.1
netbsd netbsd 1.5.2
netbsd netbsd 1.5
netbsd netbsd 1.2
netbsd netbsd 1.4.3
netbsd netbsd 1.6
netbsd netbsd 1.4.1
netbsd netbsd 1.0
ihji pmake 1.111
CVE-2011-2393 HIGH

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD, NetBSD, and possibly other BSD-based operating systems allows remote attackers to cause a denial of service (CPU consumption and device hang) by sending many Router Advertisement (RA) messages with different source addresses, a similar vulnerability to CVE-2010-4670.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
netbsd netbsd *
freebsd freebsd *
CVE-2011-2895 HIGH

The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont before 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD before 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x before 5.0.3 and 5.1.x before 5.1.1, FreeType 2.1.9, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows context-dependent attackers to trigger an infinite loop or a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted compressed stream, a related issue to CVE-2006-1168 and CVE-2011-2896.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
x libxfont 1.3.3
x libxfont 1.2.5
netbsd netbsd *
openbsd openbsd 2.8
freebsd freebsd *
freetype freetype 2.1.9
openbsd openbsd 3.5
openbsd openbsd 2.3
openbsd openbsd 2.5
x libxfont 1.3.1
openbsd openbsd 3.6
x libxfont 1.2.4
openbsd openbsd 2.7
x libxfont 1.4.0
x libxfont 1.4.1
openbsd openbsd 3.3
x libxfont 1.2.3
openbsd openbsd 2.1
openbsd openbsd 2.4
x libxfont 1.2.1
x libxfont 1.2.0
x libxfont *
x libxfont 1.3.0
openbsd openbsd 3.0
x libxfont 1.2.9
openbsd openbsd *
x libxfont 1.2.7
openbsd openbsd 3.2
x libxfont 1.2.2
x libxfont 1.2.8
openbsd openbsd 3.1
x libxfont 1.4.2
openbsd openbsd 2.6
openbsd openbsd 3.4
x libxfont 1.3.2
openbsd openbsd 2.0
openbsd openbsd 2.9
x libxfont 1.2.6
openbsd openbsd 2.2
x libxfont 1.3.4
CVE-2012-0217 HIGH

The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1; and possibly other operating systems, when running on an Intel processor, incorrectly uses the sysret path in cases where a certain address is not a canonical address, which allows local users to gain privileges via a crafted application. NOTE: because this issue is due to incorrect use of the Intel specification, it should have been split into separate identifiers; however, there was some value in preserving the original mapping of the multi-codebase coordinated-disclosure effort to a single identifier.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
sun sunos *
xen xen *
microsoft windows_7 *
netbsd netbsd *
xen xen 4.0.3
xen xen 4.0.1
citrix xenserver *
freebsd freebsd *
illumos illumos *
xen xen 4.1.1
xen xen 4.0.2
xen xen 4.0.4
microsoft windows_xp *
joyent smartos *
microsoft windows_server_2008 r2
citrix xenserver 6.0
microsoft windows_server_2003 *
xen xen 4.1.0
xen xen 4.0.0
CVE-2014-3566 MEDIUM

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N 1.6 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
openssl openssl 0.9.8y
ibm aix 7.1
openssl openssl 1.0.1d
netbsd netbsd 5.2.1
ibm vios 2.2.2.4
openssl openssl 0.9.8w
openssl openssl 1.0.1b
openssl openssl 1.0.1h
novell suse_linux_enterprise_software_development_kit 12.0
redhat enterprise_linux 5
redhat enterprise_linux_workstation_supplementary 6.0
netbsd netbsd 5.1.3
netbsd netbsd 6.0.4
fedoraproject fedora 21
openssl openssl 1.0.0k
openssl openssl 1.0.0i
redhat enterprise_linux_server_supplementary 5.0
redhat enterprise_linux_workstation 7.0
fedoraproject fedora 20
openssl openssl 0.9.8n
openssl openssl 0.9.8c
debian debian_linux 8.0
openssl openssl 0.9.8l
redhat enterprise_linux_desktop 7.0
novell suse_linux_enterprise_server 12.0
openssl openssl 1.0.0f
openssl openssl 0.9.8k
netbsd netbsd 6.1
netbsd netbsd 6.1.5
netbsd netbsd 6.0.5
ibm vios 2.2.1.3
openssl openssl 1.0.0b
ibm vios 2.2.1.7
openssl openssl 0.9.8d
netbsd netbsd 6.0.6
openssl openssl 1.0.0e
openssl openssl 0.9.8r
openssl openssl 1.0.1a
ibm aix 6.1
ibm vios 2.2.3.4
opensuse opensuse 13.1
openssl openssl 1.0.0a
ibm vios 2.2.1.1
openssl openssl 1.0.1
netbsd netbsd 6.1.3
mageia mageia 3.0
novell suse_linux_enterprise_desktop 9.0
netbsd netbsd 5.1.4
openssl openssl 0.9.8za
openssl openssl 1.0.0l
netbsd netbsd 6.0.3
redhat enterprise_linux_desktop 6.0
openssl openssl 1.0.0c
redhat enterprise_linux_server_supplementary 6.0
netbsd netbsd 6.0.1
netbsd netbsd 6.1.4
oracle database 11.2.0.4
netbsd netbsd 6.1.2
openssl openssl 0.9.8h
openssl openssl 0.9.8i
netbsd netbsd 5.1
ibm vios 2.2.2.5
openssl openssl 1.0.0
ibm vios 2.2.2.3
openssl openssl 0.9.8g
ibm vios 2.2.3.1
apple mac_os_x *
openssl openssl 1.0.1c
novell suse_linux_enterprise_desktop 11.0
redhat enterprise_linux_server 6.0
openssl openssl 0.9.8x
ibm vios 2.2.0.13
oracle database 12.1.0.2
novell suse_linux_enterprise_desktop 10.0
netbsd netbsd 6.0
fedoraproject fedora 19
ibm vios 2.2.1.4
redhat enterprise_linux_server 7.0
openssl openssl 1.0.1g
openssl openssl 1.0.0m
ibm vios 2.2.2.1
netbsd netbsd 6.0.2
redhat enterprise_linux_workstation 6.0
ibm vios 2.2.1.5
debian debian_linux 7.0
netbsd netbsd 5.2
openssl openssl 0.9.8a
ibm vios 2.2.2.2
openssl openssl 0.9.8v
redhat enterprise_linux_desktop_supplementary 6.0
openssl openssl 0.9.8z
novell suse_linux_enterprise_software_development_kit 11.0
openssl openssl 0.9.8j
openssl openssl 0.9.8u
redhat enterprise_linux_desktop_supplementary 5.0
ibm vios 2.2.0.10
openssl openssl 1.0.0h
openssl openssl 0.9.8e
ibm vios 2.2.2.0
ibm vios 2.2.3.2
ibm aix 5.3
novell suse_linux_enterprise_desktop 12.0
novell suse_linux_enterprise_server 11.0
netbsd netbsd 5.2.2
openssl openssl 0.9.8s
ibm vios 2.2.0.12
openssl openssl 0.9.8p
openssl openssl 0.9.8b
openssl openssl 1.0.0j
openssl openssl 0.9.8q
netbsd netbsd 5.1.2
ibm vios 2.2.1.8
openssl openssl 1.0.0d
openssl openssl 0.9.8zb
openssl openssl 0.9.8t
opensuse opensuse 12.3
mageia mageia 4.0
ibm vios 2.2.1.6
openssl openssl 0.9.8m
openssl openssl 1.0.1f
netbsd netbsd 5.1.1
redhat enterprise_linux_workstation_supplementary 7.0
netbsd netbsd 6.1.1
redhat enterprise_linux_server_supplementary 7.0
ibm vios 2.2.3.0
ibm vios 2.2.1.0
openssl openssl 0.9.8f
openssl openssl 1.0.1i
openssl openssl 0.9.8o
ibm vios 2.2.3.3
openssl openssl 1.0.0g
ibm vios 2.2.1.9
ibm vios 2.2.0.11
openssl openssl 0.9.8
openssl openssl 1.0.1e
openssl openssl 1.0.0n
CVE-2014-3951 MEDIUM

The HZ module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types. CVE-2014-5384 is used for the NULL pointer dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 10.0
netbsd netbsd *
CVE-2014-5015 MEDIUM

bozotic HTTP server (aka bozohttpd) before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
netbsd netbsd 6.0
eterna bozohttpd *
eterna bozohttpd 20000427
eterna bozohttpd 20020710
eterna bozohttpd 20060710
eterna bozohttpd 20100621
eterna bozohttpd 19990519
eterna bozohttpd 20040808
eterna bozohttpd 20000426
eterna bozohttpd 20020913
eterna bozohttpd 20030313
eterna bozohttpd 20060517
eterna bozohttpd 20090522
netbsd netbsd 5.2
eterna bozohttpd 20050410
eterna bozohttpd 20020804
eterna bozohttpd 20021106
eterna bozohttpd 20000815
eterna bozohttpd 20020730
eterna bozohttpd 20030626
eterna bozohttpd 20090417
eterna bozohttpd 20100920
eterna bozohttpd 20031005
eterna bozohttpd 20111118
eterna bozohttpd 20030409
eterna bozohttpd 20080303
eterna bozohttpd 20020823
eterna bozohttpd 20010922
eterna bozohttpd 20040218
eterna bozohttpd 20000421
eterna bozohttpd 20000825
netbsd netbsd 5.1
eterna bozohttpd 20100617
eterna bozohttpd 20020803
eterna bozohttpd 20100512
eterna bozohttpd 20010610
eterna bozohttpd 20140102
netbsd netbsd 6.1
eterna bozohttpd 20100509
eterna bozohttpd 20010812
CVE-2014-5384 MEDIUM

The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT from CVE-2014-3951 per ADT2 due to different vulnerability types.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
freebsd freebsd 10.0
netbsd netbsd *
CVE-2014-7250 MEDIUM

The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service (resource consumption) via crafted packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
netbsd netbsd 2.0
openbsd openbsd 3.6
bsd bsd 4.3
freebsd freebsd 5.4
CVE-2014-8517 HIGH

The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2 through 5.2.2, 6.0 through 6.0.6, and 6.1 through 6.1.5 allows remote attackers to execute arbitrary commands via a | (pipe) character at the end of an HTTP redirect.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
netbsd netbsd 6.0
netbsd netbsd 5.1.2
netbsd netbsd 6.0.5
netbsd netbsd 5.2.1
netbsd netbsd 6.0.2
netbsd netbsd 6.0.6
netbsd netbsd 5.2
apple mac_os_x 10.8.5
netbsd netbsd 5.1.1
netbsd netbsd 6.1.3
netbsd netbsd 5.1.4
netbsd netbsd 6.1.1
netbsd netbsd 5.1.3
netbsd netbsd 6.0.4
netbsd netbsd 6.0.3
apple mac_os_x 10.9.5
netbsd netbsd 6.0.1
netbsd netbsd 6.1.4
netbsd netbsd 6.1.2
netbsd netbsd 5.1
netbsd netbsd 5.2.2
apple mac_os_x 10.10.1
netbsd netbsd 6.1
netbsd netbsd 6.1.5
apple mac_os_x 10.10.0
CVE-2015-5917 MEDIUM

The glob implementation in tnftpd (formerly lukemftpd), as used in Apple OS X before 10.11, allows remote attackers to cause a denial of service (memory consumption and daemon outage) via a STAT command containing a crafted pattern, as demonstrated by multiple instances of the {..,..,..}/* substring.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
netbsd tnftpd *
CVE-2015-8212 HIGH

CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows remote attackers to execute arbitrary code via crafted arguments, which are handled by a non-CGI aware program.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
netbsd netbsd 6.0
netbsd netbsd 6.0.3
netbsd netbsd 6.0.1
netbsd netbsd 6.0.5
netbsd netbsd 6.1.4
netbsd netbsd 6.0.2
netbsd netbsd 6.1.2
netbsd netbsd 7.0
netbsd netbsd 6.0.6
netbsd netbsd 6.1
netbsd netbsd 6.1.5
netbsd netbsd 6.1.3
netbsd netbsd 6.1.1
netbsd netbsd 6.0.4
CVE-2016-6253 HIGH

mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-59,

Products Affected

Vendor Product Version
netbsd netbsd 6.0
netbsd netbsd 6.0.3
netbsd netbsd 6.0.1
netbsd netbsd 6.0.5
netbsd netbsd 6.1.4
netbsd netbsd 6.0.2
netbsd netbsd 6.1.2
netbsd netbsd 7.0
netbsd netbsd 6.0.6
netbsd netbsd 6.1
netbsd netbsd 6.1.5
netbsd netbsd 6.1.3
netbsd netbsd 6.1.1
netbsd netbsd 6.0.4
CVE-2017-1000374 HIGH

A flaw exists in NetBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using certain setuid binaries. This affects NetBSD 7.1 and possibly earlier versions.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
netbsd netbsd *
CVE-2017-1000375 HIGH

NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows attackers to more easily manipulate memory leading to arbitrary code execution. This affects NetBSD 7.1 and possibly earlier versions.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
netbsd netbsd *
CVE-2017-1000378 HIGH

The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allows attackers to consume arbitrary amounts of stack memory and manipulate stack memory to assist in arbitrary code execution attacks. This affects NetBSD 7.1 and possibly earlier versions.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
netbsd netbsd *
CVE-2020-26139 LOW

An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denial-of-service attacks against connected clients and makes it easier to exploit other vulnerabilities in connected clients.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cisco catalyst_iw6300_dc_firmware -
cisco meraki_mr44_firmware -
cisco aironet_1810_firmware -
cisco meraki_mr53e_firmware -
cisco catalyst_9130axi_firmware -
cisco aironet_1842_firmware -
cisco catalyst_9130_firmware -
cisco ip_phone_8821_firmware -
cisco ir829gw-lte-ga-sk9_firmware -
cisco webex_board_55_firmware -
cisco aironet_2800_firmware -
cisco meraki_mr76_firmware -
cisco 1109-2p_firmware -
cisco catalyst_9105axw_firmware -
cisco ir829-2lte-ea-bk9_firmware -
cisco meraki_mx64w_firmware -
cisco ir829gw-lte-ga-ek9_firmware -
arista c-230_firmware -
cisco esw6300_firmware -
cisco meraki_mx68cw_firmware -
cisco webex_room_70_dual_g2_firmware -
cisco webex_board_85s_firmware -
cisco meraki_mr42e_firmware -
cisco ir829-2lte-ea-ak9_firmware -
intel killer_wi-fi_6_ax1650_firmware -
cisco webex_room_kit_firmware -
cisco meraki_gr10_firmware -
intel proset_ac_9461_firmware -
cisco webex_room_70_firmware -
arista c-75_firmware -
cisco meraki_mr52_firmware -
cisco catalyst_9124_firmware -
cisco ir829gw-lte-na-ak9_firmware -
cisco meraki_mr33_firmware -
cisco ip_phone_8832_firmware -
cisco aironet_1815_firmware -
intel killer_wi-fi_6e_ax1675_firmware -
cisco catalyst_9120axi_firmware -
intel proset_wi-fi_6_ax201_firmware -
cisco meraki_mx67cw_firmware -
cisco meraki_mr70_firmware -
intel wi-fi_6_ax201_firmware -
cisco ip_phone_8865_firmware -
intel killer_ac_1550_firmware -
cisco 1101-4p_firmware -
cisco aironet_2800e_firmware -
cisco catalyst_9124axi_firmware -
cisco aironet_ap803_firmware -
intel proset_ac_3168_firmware -
intel proset_ac_8260_firmware -
cisco catalyst_9115_ap_firmware -
cisco catalyst_iw6300_firmware -
cisco aironet_1810w_firmware -
arista c-65_firmware -
cisco aironet_1542d_firmware -
cisco meraki_mr45_firmware -
cisco webex_room_55_dual_firmware -
intel proset_ac_3165_firmware -
intel proset_wi-fi_6_ax200_firmware -
cisco aironet_1702_firmware -
cisco catalyst_9105_firmware -
cisco meraki_mr46e_firmware -
cisco catalyst_9124axd_firmware -
cisco ip_phone_8861_firmware -
cisco meraki_mx67w_firmware -
cisco meraki_mx68w_firmware -
cisco catalyst_9115_firmware -
cisco meraki_mr12_firmware -
cisco meraki_mr86_firmware -
cisco webex_board_70_firmware -
arista c-110_firmware -
cisco ir829gw-lte-ga-zk9_firmware -
cisco 1100_firmware -
cisco webex_room_70_dual_firmware -
cisco meraki_mr72_firmware -
cisco meraki_mr84_firmware -
arista c-100_firmware -
intel ac_9560_firmware -
arista w-68_firmware -
cisco catalyst_9115axi_firmware -
cisco meraki_mr62_firmware -
arista c-235_firmware -
intel proset_wireless_7265_(rev_d)_firmware -
cisco catalyst_9120axp_firmware -
intel proset_ac_9462_firmware -
cisco catalyst_9130_ap_firmware -
cisco aironet_1532_firmware -
cisco catalyst_9117_ap_firmware -
intel wi-fi_6_ax200_firmware -
arista c-200_firmware -
cisco aironet_1800i_firmware -
cisco catalyst_9115axe_firmware -
cisco aironet_1572_firmware -
cisco 1109-4p_firmware -
cisco aironet_1542i_firmware -
cisco ir829gw-lte-ga-ck9_firmware -
arista c-130_firmware -
cisco meraki_mr53_firmware -
arista w-118_firmware -
cisco webex_room_70_single_g2_firmware -
cisco aironet_1832_firmware -
cisco aironet_1852_firmware -
intel ac_9260_firmware -
cisco aironet_1552_firmware -
cisco webex_room_kit_mini_firmware -
cisco aironet_3800i_firmware -
cisco meraki_z3c_firmware -
cisco aironet_1815i_firmware -
cisco meraki_mr46_firmware -
cisco webex_board_70s_firmware -
cisco meraki_mr30h_firmware -
intel proset_wi-fi_6e_ax210_firmware -
cisco catalyst_9117axi_firmware -
intel proset_ac_9260_firmware -
cisco catalyst_iw6300_dcw_firmware -
cisco webex_dx70_firmware -
cisco meraki_mr66_firmware -
arista o-105_firmware -
cisco aironet_3702_firmware -
cisco aironet_3800_firmware -
intel proset_ac_8265_firmware -
intel ac_8260_firmware -
cisco 1100-4p_firmware -
cisco aironet_iw3702_firmware -
intel proset_ac_9560_firmware -
cisco catalyst_9130axe_firmware -
debian debian_linux 9.0
cisco aironet_3800e_firmware -
cisco catalyst_iw6300_ac_firmware -
intel ac_8265_firmware -
cisco webex_room_55_firmware -
cisco meraki_mr56_firmware -
cisco aironet_3800p_firmware -
cisco ir829-2lte-ea-ek9_firmware -
cisco meraki_gr60_firmware -
cisco catalyst_9120_ap_firmware -
cisco catalyst_9120axe_firmware -
cisco ip_phone_6861_firmware -
cisco meraki_mr55_firmware -
cisco ir829gw-lte-vz-ak9_firmware -
cisco aironet_2800i_firmware -
cisco meraki_mr42_firmware -
cisco meraki_mr26_firmware -
cisco meraki_mr36_firmware -
cisco meraki_mx65w_firmware -
cisco aironet_2702_firmware -
cisco aironet_1800_firmware -
cisco 1100-8p_firmware -
cisco webex_dx80_firmware -
arista c-120_firmware -
cisco webex_board_55s_firmware -
cisco meraki_mr32_firmware -
cisco catalyst_9105axi_firmware -
arista o-90_firmware -
cisco meraki_z3_firmware -
cisco webex_room_70_single_firmware -
arista c-250_firmware -
cisco aironet_1552h_firmware -
cisco catalyst_9117_firmware -
cisco meraki_mr34_firmware -
arista c-260_firmware -
netbsd netbsd 7.1
cisco meraki_mr20_firmware -
cisco aironet_4800_firmware -
cisco catalyst_9120_firmware -
cisco meraki_mr74_firmware -
CVE-2021-45484 MEDIUM

In NetBSD through 9.2, the IPv6 fragment ID generation algorithm employs a weak cryptographic PRNG.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-338,

Products Affected

Vendor Product Version
netbsd netbsd *
CVE-2021-45487 MEDIUM

In NetBSD through 9.2, the IPv4 ID generation algorithm does not use appropriate cryptographic measures.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-330,

Products Affected

Vendor Product Version
netbsd netbsd *
CVE-2021-45488 MEDIUM

In NetBSD through 9.2, there is an information leak in the TCP ISN (ISS) generation algorithm.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-330,

Products Affected

Vendor Product Version
netbsd netbsd *
CVE-2021-45489 MEDIUM

In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-338,

Products Affected

Vendor Product Version
netbsd netbsd *
CVE-2023-45198

ftpd before "NetBSD-ftpd 20230930" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) before 20231001 is also vulnerable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
netbsd ftpd *
netbsd tnftpd *
CVE-2024-6387

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert@redhat.com 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

Products Affected

Vendor Product Version
netapp a150_firmware -
netapp 8300_firmware -
suse linux_enterprise_micro 6.0
netapp e-series_santricity_os_controller *
netapp ontap_tools 10
netapp ontap_select_deploy_administration_utility -
amazon amazon_linux 2023.0
netapp a800_firmware -
canonical ubuntu_linux 24.04
redhat enterprise_linux_server_aus 9.4
freebsd freebsd 13.2
redhat enterprise_linux_eus 9.4
canonical ubuntu_linux 22.04
sonicwall sma_7210_firmware -
netapp a70_firmware -
redhat openshift_container_platform 4.0
amazon linux_2023 -
sonicwall sma_8200v_firmware -
netapp fas2750_firmware -
openbsd openssh *
redhat enterprise_linux_for_arm_64_eus 9.4_aarch64
freebsd freebsd 14.0
freebsd freebsd 14.1
netapp a400_firmware -
redhat enterprise_linux_for_power_little_endian 9.0_ppc64le
openbsd openssh 8.6
netapp c400_firmware -
almalinux almalinux 9.0
netapp bootstrap_os -
redhat enterprise_linux_for_ibm_z_systems_eus 9.4_s390x
openbsd openssh 8.5
redhat enterprise_linux 9.0
netapp c800_firmware -
netbsd netbsd *
netapp 8700_firmware -
netapp a700s_firmware -
netapp 500f_firmware -
netapp a9500_firmware -
netapp fas2720_firmware -
redhat enterprise_linux_for_power_little_endian_eus 9.4_ppc64le
netapp ontap 9
netapp ontap_tools 9
netapp a90_firmware -
netapp a220_firmware -
sonicwall sra_ex_7000_firmware -
netapp c190_firmware -
sonicwall sma_6210_firmware -
freebsd freebsd 13.3
arista eos *
canonical ubuntu_linux 23.04
netapp a900_firmware -
openbsd openssh 4.4
debian debian_linux 12.0
netapp a250_firmware -
canonical ubuntu_linux 23.10
canonical ubuntu_linux 22.10
redhat enterprise_linux_for_ibm_z_systems 9.0_s390x
redhat enterprise_linux_for_arm_64 9.0_aarch64
netapp fas2820_firmware -
apple macos *
sonicwall sma_6200_firmware -
netapp a1k_firmware -
netapp active_iq_unified_manager -
sonicwall sma_7200_firmware -
netapp c250_firmware -