Openbsd: Security Vulnerabilities
The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP.
CVSS Score
4.6
EPSS Score
0.003
Published
2000-02-11
The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.
CVSS Score
6.2
EPSS Score
0.003
Published
2000-01-19
ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets.
CVSS Score
5.0
EPSS Score
0.034
Published
1999-12-30
An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.
CVSS Score
2.1
EPSS Score
0.014
Published
1999-12-14
FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.
CVSS Score
2.1
EPSS Score
0.007
Published
1999-09-05
Buffer overflow in OpenBSD procfs and fdescfs file systems via uio_offset in the readdir() function.
CVSS Score
4.6
EPSS Score
0.003
Published
1999-08-12
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.
CVSS Score
7.2
EPSS Score
0.008
Published
1999-08-09
A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted.
CVSS Score
5.0
EPSS Score
0.01
Published
1999-08-06
OpenBSD, BSDI, and other Unix operating systems allow users to set chflags and fchflags on character and block devices.
CVSS Score
3.6
EPSS Score
0.003
Published
1999-08-03
Denial of service in "poll" in OpenBSD.
CVSS Score
5.0
EPSS Score
0.01
Published
1999-03-22