.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / advisories / freebsd  /

Page 1 of 11
<< 1 2 3 4 5 6 7 8 9 10 11 >> Files 1 - 25 of 257
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: FreeBSD-SA-02:33.openssl
Description:
 FreeBSD Security Advisory FreeBSD-SA-02:33 - The OpenSSL libraries contain multiple buffer overflows, including errors in the handling of the client master key in the SSL2 protocol implementation; the handling of the session ID in the SSL3 protocol; and in the handling of buffers used for representing integers in ASCII on 64-bit platforms, and overflows in the handling of ASN.1.
Homepage:http://www.freebsd.org
File Size:140466
Last Modified:Aug 6 08:00:15 2002
MD5 Checksum:f81475956d0b953a689b06020712ffd2

 ///  File Name: FreeBSD-SA-03:02.openssl
Description:
 FreeBSD Security Advisory FreeBSD-SA-03:02 Version 1.1 - OpenSSL v0.9.6h and below contains a timing-based vulnerability in CBC ciphersuites in SSL and TLS which can recover fixed plaintext blocks, like a password.
Homepage:http://www.freebsd.org/security
Changes:Updated patches; corrected URLs.
File Size:113472
Last Modified:Feb 26 14:52:23 2003
MD5 Checksum:8c581cda70ad432693cef8f9ee3def2e

 ///  File Name: freebsd.sa-98.07.tcp_rst_dos
Description:
 TCP RST denial of sevice
File Size:19771
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:49d4c1b03ae0802134a06cf1ec258d28

 ///  File Name: freebsd.sa-97.04.procfs
Description:
 security compromise via procfs
File Size:15738
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:9d2556e4e1e4642dc3a43fc404948d3c

 ///  File Name: SA9704
Description:
 security compromise via procfs
File Size:15738
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:9d2556e4e1e4642dc3a43fc404948d3c

 ///  File Name: FreeBSD-SA-06:23.openssl-2.txt
Description:
 FreeBSD Security Advisory: Multiple problems in crypto(3) [revised]
Homepage:http://security.FreeBSD.org/
File Size:15322
Last Modified:Oct 4 22:10:12 2006
MD5 Checksum:60c7185cf42783788adfe98d69d8c473

 ///  File Name: FreeBSD-SA-02_25.bzip2.asc
Description:
 FreeBSD Security Advisory FreeBSD-SA-02:25 - When creating a file during decompression, the bzip2 utility failed to use the O_EXCL flag, potentially overwriting files without warning. In addition, the bzip2 utility did not securely create new files causing a race condition between creating the file and setting the correct permissions. This affects FreeBSD 4.4-RELEASE, 4.5-RELEASE and 4.5-STABLE.
Author:FreeBSD Security Team
Homepage:http://www.freebsd.org/security/
File Size:14889
Last Modified:May 22 08:44:08 2002
MD5 Checksum:2d2a3621d0d2662c4f1baef3783b1128

 ///  File Name: FreeBSD-SA-06-23.openssl.txt
Description:
 FreeBSD Security Advisory: Multiple problems in crypto(3)
Homepage:http://www.freebsd.org/security/
File Size:14777
Last Modified:Oct 4 21:09:18 2006
MD5 Checksum:d6e58d7e1bd57fb91fc562d092c9cb67

 ///  File Name: FreeBSD-SA-06-13.sendmail.txt
Description:
 FreeBSD-SA-06:13.sendmail - A remote attacker may be able to execute arbitrary code with the privileges of the user running sendmail, typically root.
Homepage:http://www.freebsd.org/security/
File Size:14505
Last Modified:Mar 23 21:52:47 2006
MD5 Checksum:6c86c0c2dcd02084ebd0b9cb562865c3

 ///  File Name: FreeBSD-SA-03:07.sendmail
Description:
 FreeBSD Security Advisory FreeBSD-SA-03:07 - A second remotely exploitable overflow was found in Sendmail header parsing. Upgrade to 8.12.9 to fix the vulnerability. Patch available here.
Homepage:http://www.freebsd.org/security
File Size:13358
Last Modified:Apr 1 10:01:15 2003
MD5 Checksum:454fb0ba212f0f2c02a50a53699667f4

 ///  File Name: sa96-21
Description:
 unauthorized access via buffer overrun in talkd
File Size:12725
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:d6bc3591c5aecec525d1d0a110055609

 ///  File Name: FreeBSD-SA-00:19.semconfig
Description:
 FreeBSD-SA-00:19 - A bug in the BSD kernel allows local users to cause every process on the system to hang during exiting. An undocumented system call is incorrectly exported from the kernel without access-control checks, allowing for a denial of service attack. Kernel patch included for FreeBSD.
Homepage:http://www.freebsd.org
File Size:12277
Last Modified:May 26 22:52:16 2000
MD5 Checksum:d9f5e31eea5a0101d0a59f17b2845923

 ///  File Name: FreeBSD-SA-00:53.catopen
Description:
 FreeBSD Security Advisory - catopen() may pose security risk for third party code. The catopen() function did not correctly bounds-check an internal buffer which could be indirectly overflowed by the setting of an environment variable. A privileged application which uses catopen() could be made to execute arbitrary code by an unprivileged local user. The catopen() and setlocale() functions could be made to use an arbitrary file as the source for localized data and message catalogs, instead of one of the system files. An attacker could create a file which is a valid locale file or message catalog but which contains special formatting characters which may allow certain badly written privileged applications to be exploited and execute arbitrary code as the privileged user. Patches are available.
Homepage:http://www.freebsd.org
File Size:11469
Last Modified:Sep 28 22:33:50 2000
MD5 Checksum:a4f4123f6bfe2f751878485999f13024

 ///  File Name: FreeBSD-SA-01:63.openssh
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:63.openssh - OpenSSH prior to v3.0.2 has a remote root vulnerability, but only if the administrator set `UseLogin yes' in the sshd_config file.
Homepage:http://www.freebsd.org/security
File Size:11237
Last Modified:Dec 9 04:26:07 2001
MD5 Checksum:a6108f754c66c612d4e9613444e49146

 ///  File Name: freebsd.sa-98.02.mmap
Description:
 security compromise via mmap
File Size:11067
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:c83fe39105a866e87f6406e790abe6c9

 ///  File Name: FreeBSD-SA-00:52.tcp
Description:
 FreeBSD Security Advisory FreeBSD-SA-00:52 - FreeBSD has a predictable initial sequence number and is vulnerable to a TCP sequence number prediction attack. Programs which rely solely on IP address authentication such as rsh/rlogin and lpr are potentially exploitable.
Homepage:http://www.freebsd.org/security
File Size:11033
Last Modified:Oct 7 05:41:08 2000
MD5 Checksum:b0dd561c02346f67c258b4c16394a0bb

 ///  File Name: FreeBSD-SA-01:39.tcp-isn
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:39.tcp-isn - FreeBSD systems prior to 4.3-RELEASE contain vulnerabilities in the TCP ISN's. Protocols which authenticate solely based on IP address are vulnerable to blind spoofing attacks.
Homepage:http://www.freebsd.org/security
File Size:10772
Last Modified:May 3 04:03:54 2001
MD5 Checksum:896bd39934f10b14437591645221d360

 ///  File Name: freebsd.sa-99.04.core
Description:
 Coredumps and symbolic links
File Size:10614
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:5630cb0eb45de2e236ff6a22e1b58c36

 ///  File Name: FreeBSD-SA-01:24.ssh
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:24 - OpenSSH prior to v2.3.0p1 contains remote vulnerabilities.
Homepage:http://www.freebsd.org/security
File Size:10524
Last Modified:Feb 14 08:24:10 2001
MD5 Checksum:d2a7ccb95086e582faf599061c21806f

 ///  File Name: sa96-20
Description:
 unauthorized access via buffer overruns
File Size:10338
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:299550bc5f76a57d4a1a3626de22ef40

 ///  File Name: FreeBSD-SA-02:43.bind
Description:
 FreeBSD Security Advisory FreeBSD-SA-02:43.bind - BIND 8 has two vulnerabilities. The BIND SIG Cached RR overflow allows a remote attacker to force a server with recursion enabled to execute arbitrary code with the privileges of the name server process. The BIND OPT DoS and BIND SIG Expiry Time DoS may cause a remote name server to crash.
Homepage:http://www.freebsd.org/security/
File Size:10101
Last Modified:Nov 19 16:52:17 2002
MD5 Checksum:692cf77764884df59e8d5338ab9fa59f

 ///  File Name: FreeBSD-SA-01:18.bind
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:18 - An overflowable buffer related to the processing of transaction signatures (TSIG) exists in all versions of BIND prior to 8.2.3-RELEASE. The vulnerability is exploitable regardless of configuration options and affects both recursive and non-recursive DNS servers.
Homepage:http://www.freebsd.org/security
File Size:9485
Last Modified:Feb 1 01:53:58 2001
MD5 Checksum:a4e3c7a0035789341f555949942c636e

 ///  File Name: FreeBSD-SA-01_49.telnetd.v1.1
Description:
 FreeBSD Security Advisory FreeBSD-SA-01:49 - An overflowable buffer was found in the version of telnetd included with FreeBSD. Due to incorrect bounds checking of data buffered for output to the remote client, an attacker can cause the telnetd process to overflow the buffer and crash, or execute arbitrary code as the user running telnetd, usually root. A valid user account and password is not required to exploit this vulnerability, only the ability to connect to a telnetd server. The telnetd service is enabled by default on all FreeBSD installations if the 'high' security setting is not selected at install-time. This vulnerability is known to be exploitable, and is being actively exploited in the wild. All released versions of FreeBSD prior to the correction date including 3.5.1-RELEASE and 4.3-RELEASE are vulnerable to this problem.
Homepage:http://www.freebsd.org/security
File Size:9141
Last Modified:Aug 11 10:58:09 2001
MD5 Checksum:1b9952cdc0a2a21e3dc59744061ddd98

 ///  File Name: FreeBSD-SA-00:68.ncurses
Description:
 FreeBSD Security Advisory - The ncurses library, which comes with the base install of FreeBSD, contains exploitable buffer overflows. /usr/sbin/lpc, /usr/bin/top, and /usr/bin/systat link against ncurses and may be exploitable.
Homepage:http://www.freebsd.org/security
File Size:9064
Last Modified:Nov 26 04:23:35 2000
MD5 Checksum:c6a83bae017fe6df2f11cd3a306ac122

 ///  File Name: freebsd.sa-98.01.land
Description:
 LAND attack can cause harm to running FreeBSD systems
File Size:8570
Last Modified:Sep 23 05:52:22 1999
MD5 Checksum:a7650291ba3b631b4e21f34533818eb0
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice