Vendor Dictionary: OpenBSD

OpenBSD

Short Name:	OpenBSD
Previous Names:	[None Entered]
URL:	http://www.openbsd.org/ [visit link]
Email:	deraadtopenbsd.org
Security URL:	http://www.openbsd.org/security.html [visit link]
Security Email:	deraadtopenbsd.org
Knowledge Base:	[None Entered]
Notes:	[No Notes]

Vulnerabilities by Vendor Product

OpenBSD

OpenBSD

OpenSSL: 0.9.1x; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.2x; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.3x; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.4x; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.5x; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.6x; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.7x; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8a; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8b; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8c; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8d; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8e; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8f; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8g; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8h; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8i; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8j; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8k; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8l; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8n; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8o; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 0.9.8p; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 1.0.0; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 1.0.0a; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness; 1.0.0b; OSVDB ID: 69565 OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Session Resume Ciphersuite Downgrade Weakness

Global: 3.55; OSVDB ID: 6486 Multiple Vendor Global global.cgi Command Execution

Portable OpenSSH: 5.8p1; OSVDB ID: 72183 Portable OpenSSH ssh-keysign ssh-rand-helper Utility File Descriptor Leak Local Information Disclosure

OpenSSH: All Versions; 4.6; OSVDB ID: 34600 OpenSSH S/KEY Authentication Account Enumeration; 4.1; OSVDB ID: 32721 OpenSSH Username Password Complexity Account Enumeration; 4.2p1; OSVDB ID: 22692 OpenSSH scp Command Line Filename Processing Command Injection; 3.9; OSVDB ID: 9562 OpenSSH Default Configuration Anon SSH Service Port Bounce Weakness; 3.4; OSVDB ID: 9550 OpenSSH scp Traversal Arbitrary File Overwrite; 4.7; OSVDB ID: 34600 OpenSSH S/KEY Authentication Account Enumeration; 4.8; OSVDB ID: 34600 OpenSSH S/KEY Authentication Account Enumeration; 4.9; OSVDB ID: 34600 OpenSSH S/KEY Authentication Account Enumeration; 5.0; OSVDB ID: 34600 OpenSSH S/KEY Authentication Account Enumeration; 5.1; OSVDB ID: 34600 OpenSSH S/KEY Authentication Account Enumeration; 5.5; OSVDB ID: 69658 OpenSSH J-PAKE Public Parameter Validation Shared Secret Authentication Bypass; 5.6; OSVDB ID: 69658 OpenSSH J-PAKE Public Parameter Validation Shared Secret Authentication Bypass; 5.6; OSVDB ID: 70873 OpenSSH Legacy Certificates Stack Memory Disclosure; OSVDB ID: 78706 OpenSSH auth-options.c sshd auth_parse_options Function authorized_keys Command Option Debug Message Information Disclosure; 5.7; OSVDB ID: 70873 OpenSSH Legacy Certificates Stack Memory Disclosure; 5.8; OSVDB ID: 75249 OpenSSH sftp-glob.c remote_glob Function Glob Expression Parsing Remote DoS; OSVDB ID: 75248 OpenSSH sftp.c process_put Function Glob Expression Parsing Remote DoS; OSVDB ID: 81500 OpenSSH gss-serv.c ssh_gssapi_parse_ename Function Field Length Value Parsing Remote DoS; 4.8; OSVDB ID: 58495 OpenSSH sshd ChrootDirectory Feature SetUID Hard Link Local Privilege Escalation; 4.3; OSVDB ID: 58495 OpenSSH sshd ChrootDirectory Feature SetUID Hard Link Local Privilege Escalation; 4.5; OSVDB ID: 56921 OpenSSH Unspecified Remote Compromise; 1.233; OSVDB ID: 90007 OpenSSH logingracetime / maxstartup Threshold Connection Saturation Remote DoS; 1.155; OSVDB ID: 90007 OpenSSH logingracetime / maxstartup Threshold Connection Saturation Remote DoS

OpenBSD: 2.7; OSVDB ID: 1574 OpenBSD Empty AH/ESP Packet Remote DoS; OSVDB ID: 5680 OpenBSD readline History File Disclosure; OSVDB ID: 6123 OpenBSD photurisd Format String Arbitrary Command Execution; OSVDB ID: 6124 OpenBSD su Format String; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 7555 OpenBSD ssh Format String Privilege Escalation; OSVDB ID: 7551 OpenBSD VFS dup2 File Descriptor DoS; OSVDB ID: 7552 OpenBSD VFS Pipe Thread DoS; OSVDB ID: 1377 IPFilter Firewall SYN/RST Race Condition; OSVDB ID: 1421 ISC DHCP Client dhclient Shell Metacharacter Arbitrary Command Execution; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 1498 Multiple Vendor mopd File Name Remote Overflow; OSVDB ID: 1499 Multiple Vendor mopd User Inputted Data Format String; OSVDB ID: 1577 Apache HTTP Server mod_rewrite RewriteRule Expansion Arbitrary File Access; OSVDB ID: 1587 Multiple BSD libutil pw_error() Format String Privilege Escalation; OSVDB ID: 53298 BSD DNS Resolver Library (libc) Multiple DNS Resolver Functions Remote Overflow; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 605 Sendmail -d category Value Local Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; OSVDB ID: 6125 OpenBSD NIS YP yp_passwd Malformed Name Format String; 2.0; OSVDB ID: 6094 Multiple BSD TCP RST DoS; OSVDB ID: 20760 Multiple BSD procfs /proc/[pid]/ setuid Binary Privileged Command Execution; OSVDB ID: 11502 Multiple BSD sysctl Control Failure Source Routing Attack; OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 908 Multiple BSD TCP/IP Stacks IP Fragmentation Remote DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 1592 OpenBSD Pending ARP Request Remote DoS; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; OSVDB ID: 1033 OpenBSD profil(2) System Call Local Privilege Escalation; OSVDB ID: 6095 Multiple BSD exec C File Descriptor Privilege Escalation; 2.1; OSVDB ID: 6094 Multiple BSD TCP RST DoS; OSVDB ID: 6123 OpenBSD photurisd Format String Arbitrary Command Execution; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 20760 Multiple BSD procfs /proc/[pid]/ setuid Binary Privileged Command Execution; OSVDB ID: 11062 Multiple BSD Kernel Asynchronous I/O Facility Notification DoS; OSVDB ID: 11502 Multiple BSD sysctl Control Failure Source Routing Attack; OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 908 Multiple BSD TCP/IP Stacks IP Fragmentation Remote DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 1592 OpenBSD Pending ARP Request Remote DoS; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; OSVDB ID: 1033 OpenBSD profil(2) System Call Local Privilege Escalation; OSVDB ID: 6095 Multiple BSD exec C File Descriptor Privilege Escalation; 2.2; OSVDB ID: 5707 Multiple BSD-derived TCP/IP Short Packet DoS; OSVDB ID: 6094 Multiple BSD TCP RST DoS; OSVDB ID: 6123 OpenBSD photurisd Format String Arbitrary Command Execution; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 20760 Multiple BSD procfs /proc/[pid]/ setuid Binary Privileged Command Execution; OSVDB ID: 11502 Multiple BSD sysctl Control Failure Source Routing Attack; OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 908 Multiple BSD TCP/IP Stacks IP Fragmentation Remote DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 1592 OpenBSD Pending ARP Request Remote DoS; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; OSVDB ID: 1033 OpenBSD profil(2) System Call Local Privilege Escalation; OSVDB ID: 6095 Multiple BSD exec C File Descriptor Privilege Escalation; 2.3; OSVDB ID: 5707 Multiple BSD-derived TCP/IP Short Packet DoS; OSVDB ID: 6094 Multiple BSD TCP RST DoS; OSVDB ID: 6123 OpenBSD photurisd Format String Arbitrary Command Execution; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 7559 OpenBSD chpass File Descriptor Leak Privilege Escalation; OSVDB ID: 7555 OpenBSD ssh Format String Privilege Escalation; OSVDB ID: 20760 Multiple BSD procfs /proc/[pid]/ setuid Binary Privileged Command Execution; OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 1587 Multiple BSD libutil pw_error() Format String Privilege Escalation; OSVDB ID: 908 Multiple BSD TCP/IP Stacks IP Fragmentation Remote DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 1592 OpenBSD Pending ARP Request Remote DoS; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; OSVDB ID: 1033 OpenBSD profil(2) System Call Local Privilege Escalation; OSVDB ID: 6095 Multiple BSD exec C File Descriptor Privilege Escalation; 2.4; OSVDB ID: 5707 Multiple BSD-derived TCP/IP Short Packet DoS; OSVDB ID: 6094 Multiple BSD TCP RST DoS; OSVDB ID: 6123 OpenBSD photurisd Format String Arbitrary Command Execution; OSVDB ID: 6126 OpenBSD i386 Trace-trap Handling DDB Local DoS; OSVDB ID: 6129 OpenBSD FFS and EXT2FS Filesystems nlink DoS; OSVDB ID: 6130 OpenBSD ping Local Overflow; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 7539 OpenBSD IP Fragment Assembly DoS; OSVDB ID: 7558 OpenBSD ipq ipintr() Remote DoS; OSVDB ID: 7557 OpenBSD TSS Handling Kernel DoS; OSVDB ID: 7556 OpenBSD poll(2) nfds Argument DoS; OSVDB ID: 7555 OpenBSD ssh Format String Privilege Escalation; OSVDB ID: 20760 Multiple BSD procfs /proc/[pid]/ setuid Binary Privileged Command Execution; OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 1498 Multiple Vendor mopd File Name Remote Overflow; OSVDB ID: 1499 Multiple Vendor mopd User Inputted Data Format String; OSVDB ID: 1577 Apache HTTP Server mod_rewrite RewriteRule Expansion Arbitrary File Access; OSVDB ID: 1587 Multiple BSD libutil pw_error() Format String Privilege Escalation; OSVDB ID: 908 Multiple BSD TCP/IP Stacks IP Fragmentation Remote DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 1592 OpenBSD Pending ARP Request Remote DoS; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; OSVDB ID: 1033 OpenBSD profil(2) System Call Local Privilege Escalation; 2.5; OSVDB ID: 6123 OpenBSD photurisd Format String Arbitrary Command Execution; OSVDB ID: 6127 OpenBSD Kernel Leak IPsec Packet Encryption Failure; OSVDB ID: 6128 OpenBSD procfs / fdescfs File Systems uio_offset Overflow; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 7555 OpenBSD ssh Format String Privilege Escalation; OSVDB ID: 20760 Multiple BSD procfs /proc/[pid]/ setuid Binary Privileged Command Execution; OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 1498 Multiple Vendor mopd File Name Remote Overflow; OSVDB ID: 1499 Multiple Vendor mopd User Inputted Data Format String; OSVDB ID: 1577 Apache HTTP Server mod_rewrite RewriteRule Expansion Arbitrary File Access; OSVDB ID: 1587 Multiple BSD libutil pw_error() Format String Privilege Escalation; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 1592 OpenBSD Pending ARP Request Remote DoS; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; OSVDB ID: 1033 OpenBSD profil(2) System Call Local Privilege Escalation; 2.6; OSVDB ID: 3836 Multiple BSD shmat() Privilege Escalation; OSVDB ID: 6123 OpenBSD photurisd Format String Arbitrary Command Execution; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 7540 OpenBSD Interface Media Configuration Arbitrary Modification; OSVDB ID: 7555 OpenBSD ssh Format String Privilege Escalation; OSVDB ID: 7551 OpenBSD VFS dup2 File Descriptor DoS; OSVDB ID: 7552 OpenBSD VFS Pipe Thread DoS; OSVDB ID: 20760 Multiple BSD procfs /proc/[pid]/ setuid Binary Privileged Command Execution; OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS; OSVDB ID: 1377 IPFilter Firewall SYN/RST Race Condition; OSVDB ID: 1446 FreeBSD libedit .editrc Arbitrary Command Execution; OSVDB ID: 1498 Multiple Vendor mopd File Name Remote Overflow; OSVDB ID: 1499 Multiple Vendor mopd User Inputted Data Format String; OSVDB ID: 1577 Apache HTTP Server mod_rewrite RewriteRule Expansion Arbitrary File Access; OSVDB ID: 1587 Multiple BSD libutil pw_error() Format String Privilege Escalation; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 1592 OpenBSD Pending ARP Request Remote DoS; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; 3.0; OSVDB ID: 2241 OpenBSD PF rdr IP Information Leakage; OSVDB ID: 5114 OpenBSD Kernel File Descriptor Table DoS; OSVDB ID: 5715 OpenBSD Kernel File Descriptor Table Privilege Escalation; OSVDB ID: 6114 OpenBSD procfs Integer Overflow DoS; OSVDB ID: 6602 Multiple BSD libc realpath() Off-by-one Overflow; OSVDB ID: 6951 OpenBSD isakmpd SA Deletion DoS; OSVDB ID: 7257 OpenBSD isakmpd Quick Mode Initiator Responder Payload Encryption Failure; OSVDB ID: 7258 OpenBSD isakmpd Quick Mode Message Hash Payload Validation Failure; OSVDB ID: 7259 OpenBSD isakmpd Quick Mode Delete Message Origin Validation Failure; OSVDB ID: 7260 OpenBSD isakmpd Quick Mode Message Encryption Failure; OSVDB ID: 7553 OpenBSD PF return-rst Rule Port Filtering Disclosure; OSVDB ID: 7554 OpenBSD select() Integer Signedness Arbitrary Kernel Memory Overwrite; OSVDB ID: 19105 OpenBSD PF Alternate Interface Rule Bypass; OSVDB ID: 19104 OpenBSD vi.recover Arbitrary Zero-byte File Deletion; OSVDB ID: 5308 Multiple BSD Broadcast Address Filter Bypass; OSVDB ID: 19475 Multiple BSD exec Race Condition Process Debugger Privilege Escalation; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 5132 ktrace Elevated Privilege Trace Information Disclosure; OSVDB ID: 53298 BSD DNS Resolver Library (libc) Multiple DNS Resolver Functions Remote Overflow; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 20354 OpenBSD uipc System Calls Null Dereference Local DoS; OSVDB ID: 5269 OpenBSD mail Escape Character Privilege Escalation; OSVDB ID: 5344 sudo -p Option Crafted Character Parsing Local Overflow; OSVDB ID: 20753 Multiple BSD pppd Race Condition Arbitrary File Permission Modification; 3.1; OSVDB ID: 2241 OpenBSD PF rdr IP Information Leakage; OSVDB ID: 5114 OpenBSD Kernel File Descriptor Table DoS; OSVDB ID: 5715 OpenBSD Kernel File Descriptor Table Privilege Escalation; OSVDB ID: 6114 OpenBSD procfs Integer Overflow DoS; OSVDB ID: 6602 Multiple BSD libc realpath() Off-by-one Overflow; OSVDB ID: 6951 OpenBSD isakmpd SA Deletion DoS; OSVDB ID: 7257 OpenBSD isakmpd Quick Mode Initiator Responder Payload Encryption Failure; OSVDB ID: 7258 OpenBSD isakmpd Quick Mode Message Hash Payload Validation Failure; OSVDB ID: 7259 OpenBSD isakmpd Quick Mode Delete Message Origin Validation Failure; OSVDB ID: 7260 OpenBSD isakmpd Quick Mode Message Encryption Failure; OSVDB ID: 7554 OpenBSD select() Integer Signedness Arbitrary Kernel Memory Overwrite; OSVDB ID: 19105 OpenBSD PF Alternate Interface Rule Bypass; OSVDB ID: 5072 Multiple BSD NFS Zero Length Payload RPC Message DoS; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 5367 CVS pserver RCS Diff Absolute Path Arbitrary File Creation/Overwrite; OSVDB ID: 5132 ktrace Elevated Privilege Trace Information Disclosure; OSVDB ID: 53298 BSD DNS Resolver Library (libc) Multiple DNS Resolver Functions Remote Overflow; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 5366 CVS Client Traversal Arbitrary File Retrieval; OSVDB ID: 5344 sudo -p Option Crafted Character Parsing Local Overflow; OSVDB ID: 5113 OpenSSH NIS YP Netgroups Authentication Bypass; OSVDB ID: 20753 Multiple BSD pppd Race Condition Arbitrary File Permission Modification; 3.2; OSVDB ID: 2241 OpenBSD PF rdr IP Information Leakage; OSVDB ID: 2251 OpenBSD ARP Request DoS; OSVDB ID: 2258 OpenBSD Packet Filter DoS; OSVDB ID: 2599 Multiple Vendor Unix ARP Request DoS; OSVDB ID: 6114 OpenBSD procfs Integer Overflow DoS; OSVDB ID: 6602 Multiple BSD libc realpath() Off-by-one Overflow; OSVDB ID: 6951 OpenBSD isakmpd SA Deletion DoS; OSVDB ID: 7257 OpenBSD isakmpd Quick Mode Initiator Responder Payload Encryption Failure; OSVDB ID: 7258 OpenBSD isakmpd Quick Mode Message Hash Payload Validation Failure; OSVDB ID: 7259 OpenBSD isakmpd Quick Mode Delete Message Origin Validation Failure; OSVDB ID: 7260 OpenBSD isakmpd Quick Mode Message Encryption Failure; OSVDB ID: 10203 OpenBSD Radius Authentication UDP Spoofing Bypass; OSVDB ID: 19105 OpenBSD PF Alternate Interface Rule Bypass; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 5367 CVS pserver RCS Diff Absolute Path Arbitrary File Creation/Overwrite; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 5366 CVS Client Traversal Arbitrary File Retrieval; 3.3; OSVDB ID: 2241 OpenBSD PF rdr IP Information Leakage; OSVDB ID: 2251 OpenBSD ARP Request DoS; OSVDB ID: 2258 OpenBSD Packet Filter DoS; OSVDB ID: 2454 OpenBSD semget() Overflow DoS; OSVDB ID: 2546 OpenBSD Semaphore Limit Integer Overflow; OSVDB ID: 2599 Multiple Vendor Unix ARP Request DoS; OSVDB ID: 2871 OpenBSD semctl / semop Local Overflow DoS; OSVDB ID: 3836 Multiple BSD shmat() Privilege Escalation; OSVDB ID: 4336 OpenBSD isakmpd Zero-length Payload Handling DoS; OSVDB ID: 5698 OpenBSD isakmpd IPSEC SA Payload Handling DoS; OSVDB ID: 5699 OpenBSD isakmpd Cert Request Payload Handling DoS; OSVDB ID: 5700 OpenBSD isakmpd Delete Payload Handling DoS; OSVDB ID: 5701 OpenBSD isakmpd Various Memory Leaks DoS; OSVDB ID: 6114 OpenBSD procfs Integer Overflow DoS; OSVDB ID: 6602 Multiple BSD libc realpath() Off-by-one Overflow; OSVDB ID: 6951 OpenBSD isakmpd SA Deletion DoS; OSVDB ID: 7257 OpenBSD isakmpd Quick Mode Initiator Responder Payload Encryption Failure; OSVDB ID: 7258 OpenBSD isakmpd Quick Mode Message Hash Payload Validation Failure; OSVDB ID: 7259 OpenBSD isakmpd Quick Mode Delete Message Origin Validation Failure; OSVDB ID: 7260 OpenBSD isakmpd Quick Mode Message Encryption Failure; OSVDB ID: 19837 OpenBSD Accept/Deny Rule Parsing Weakness; OSVDB ID: 19105 OpenBSD PF Alternate Interface Rule Bypass; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 5367 CVS pserver RCS Diff Absolute Path Arbitrary File Creation/Overwrite; OSVDB ID: 2775 OpenBSD Malformed Binary Execution DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 5366 CVS Client Traversal Arbitrary File Retrieval; OSVDB ID: 4124 Multiple BSD mbufs Out-of-Sequence TCP Packet DoS; 3.4; OSVDB ID: 2599 Multiple Vendor Unix ARP Request DoS; OSVDB ID: 2871 OpenBSD semctl / semop Local Overflow DoS; OSVDB ID: 3825 Multiple BSD IPv6 Traffic Handling DoS; OSVDB ID: 3836 Multiple BSD shmat() Privilege Escalation; OSVDB ID: 4336 OpenBSD isakmpd Zero-length Payload Handling DoS; OSVDB ID: 5698 OpenBSD isakmpd IPSEC SA Payload Handling DoS; OSVDB ID: 5699 OpenBSD isakmpd Cert Request Payload Handling DoS; OSVDB ID: 5700 OpenBSD isakmpd Delete Payload Handling DoS; OSVDB ID: 5701 OpenBSD isakmpd Various Memory Leaks DoS; OSVDB ID: 6114 OpenBSD procfs Integer Overflow DoS; OSVDB ID: 6951 OpenBSD isakmpd SA Deletion DoS; OSVDB ID: 7257 OpenBSD isakmpd Quick Mode Initiator Responder Payload Encryption Failure; OSVDB ID: 7258 OpenBSD isakmpd Quick Mode Message Hash Payload Validation Failure; OSVDB ID: 7259 OpenBSD isakmpd Quick Mode Delete Message Origin Validation Failure; OSVDB ID: 7260 OpenBSD isakmpd Quick Mode Message Encryption Failure; OSVDB ID: 9250 OpenBSD Bridging Error Remote DoS; OSVDB ID: 10203 OpenBSD Radius Authentication UDP Spoofing Bypass; OSVDB ID: 12400 OpenBSD isakmpd ipsec Credential Local DoS; OSVDB ID: 14752 OpenBSD procfs Memory Disclosure; OSVDB ID: 19837 OpenBSD Accept/Deny Rule Parsing Weakness; OSVDB ID: 19105 OpenBSD PF Alternate Interface Rule Bypass; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 5367 CVS pserver RCS Diff Absolute Path Arbitrary File Creation/Overwrite; OSVDB ID: 2775 OpenBSD Malformed Binary Execution DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 5366 CVS Client Traversal Arbitrary File Retrieval; OSVDB ID: 4124 Multiple BSD mbufs Out-of-Sequence TCP Packet DoS; OSVDB ID: 15619 Multiple Vendor ICMP Implementation Malformed Path MTU DoS; OSVDB ID: 15457 Multiple Vendor ICMP Message Handling DoS; OSVDB ID: 15618 Multiple Vendor ICMP Implementation Spoofed Source Quench Packet DoS; 2.8; OSVDB ID: 5466 Multiple BSD fts Routines chdir Arbitrary Directory Access; OSVDB ID: 5680 OpenBSD readline History File Disclosure; OSVDB ID: 6026 OpenBSD IPSEC AH IPv4 Overflow; OSVDB ID: 6141 Multiple BSD USER_LDT Kernel Option Memory Access; OSVDB ID: 7551 OpenBSD VFS dup2 File Descriptor DoS; OSVDB ID: 7552 OpenBSD VFS Pipe Thread DoS; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 5429 Sendmail Insecure Signal Handling Local DoS; OSVDB ID: 53298 BSD DNS Resolver Library (libc) Multiple DNS Resolver Functions Remote Overflow; OSVDB ID: 2775 OpenBSD Malformed Binary Execution DoS; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 4888 KTH Kerberos 4 krb4_proxy False Response Remote Privilege Escalation; OSVDB ID: 537 BSD Based FTP Server Multiple glob Function Remote Overflow; OSVDB ID: 605 Sendmail -d category Value Local Overflow; OSVDB ID: 1691 FreeBSD procfs jail() Access Restriction Bypass Local Privilege Escalation; OSVDB ID: 4692 IPFilter Cached IP Decision Arbitrary UDP/TCP Port Access; OSVDB ID: 4889 KTH Kerberos 4 KRBCONFDIR Alternate Directory Privilege Escalation; OSVDB ID: 1693 Multiple BSD ftpd replydirname() Function Single Byte Remote Overflow; 2.9; OSVDB ID: 5114 OpenBSD Kernel File Descriptor Table DoS; OSVDB ID: 5715 OpenBSD Kernel File Descriptor Table Privilege Escalation; OSVDB ID: 7551 OpenBSD VFS dup2 File Descriptor DoS; OSVDB ID: 7552 OpenBSD VFS Pipe Thread DoS; OSVDB ID: 19104 OpenBSD vi.recover Arbitrary Zero-byte File Deletion; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 5429 Sendmail Insecure Signal Handling Local DoS; OSVDB ID: 53298 BSD DNS Resolver Library (libc) Multiple DNS Resolver Functions Remote Overflow; OSVDB ID: 2832 OpenBSD compat_ibcs2 Overflow; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 605 Sendmail -d category Value Local Overflow; OSVDB ID: 20354 OpenBSD uipc System Calls Null Dereference Local DoS; OSVDB ID: 5269 OpenBSD mail Escape Character Privilege Escalation; 3.5; OSVDB ID: 6114 OpenBSD procfs Integer Overflow DoS; OSVDB ID: 6951 OpenBSD isakmpd SA Deletion DoS; OSVDB ID: 9250 OpenBSD Bridging Error Remote DoS; OSVDB ID: 10203 OpenBSD Radius Authentication UDP Spoofing Bypass; OSVDB ID: 12881 OpenBSD httpd mod_include Local Overflow; OSVDB ID: 12869 OpenBSD TCP Retransmission Timeout Calculation DoS; OSVDB ID: 12400 OpenBSD isakmpd ipsec Credential Local DoS; OSVDB ID: 14276 OpenBSD Unspecified copy(9) Function Issue; OSVDB ID: 15191 OpenBSD TCP Malformed SACK Option DoS; OSVDB ID: 14752 OpenBSD procfs Memory Disclosure; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 3819 Apache HTTP Server mod_digest Cross Realm Credential Replay; OSVDB ID: 4839 Heimdal Cross-Realm Trust Spoofing; OSVDB ID: 5367 CVS pserver RCS Diff Absolute Path Arbitrary File Creation/Overwrite; OSVDB ID: 4382 Apache HTTP Server Log Entry Terminal Escape Sequence Injection; OSVDB ID: 5366 CVS Client Traversal Arbitrary File Retrieval; OSVDB ID: 6502 OpenBSD XFree86 xdm Random TCP Port Listening; 2.x; OSVDB ID: 6602 Multiple BSD libc realpath() Off-by-one Overflow; OSVDB ID: 5308 Multiple BSD Broadcast Address Filter Bypass; OSVDB ID: 1945 Multiple Unix Vendor lpd Incomplete Print Job Display Queue Overflow; OSVDB ID: 19475 Multiple BSD exec Race Condition Process Debugger Privilege Escalation; Unknown or Unspecified; OSVDB ID: 8816 Multiple Vendor ICMP Path MTU Discovery Spoofing DoS; 3.6; OSVDB ID: 12881 OpenBSD httpd mod_include Local Overflow; OSVDB ID: 12869 OpenBSD TCP Retransmission Timeout Calculation DoS; OSVDB ID: 12400 OpenBSD isakmpd ipsec Credential Local DoS; OSVDB ID: 14276 OpenBSD Unspecified copy(9) Function Issue; OSVDB ID: 15191 OpenBSD TCP Malformed SACK Option DoS; OSVDB ID: 17384 OpenBSD ip_ctloutput() Socket IPSec Credential DoS; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; 3.7; OSVDB ID: 17384 OpenBSD ip_ctloutput() Socket IPSec Credential DoS; OSVDB ID: 22231 OpenBSD suid Programs /dev/fd File Re-Open Issue; OSVDB ID: 22254 OpenBSD zlib compress(3) Local Overflow; OSVDB ID: 22255 OpenBSD Perl Interpreter sprintf Function Local Overflow; OSVDB ID: 22732 Multiple BSD pf Crafted IP Fragment Ruleset DoS; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; 3.8; OSVDB ID: 22231 OpenBSD suid Programs /dev/fd File Re-Open Issue; OSVDB ID: 22255 OpenBSD Perl Interpreter sprintf Function Local Overflow; OSVDB ID: 22732 Multiple BSD pf Crafted IP Fragment Ruleset DoS; OSVDB ID: 22293 Multiple BSD kernfs lseek(2) Function Arbitrary Memory Disclosure; OSVDB ID: 29570 Multiple BSD systrace systrace_preprepl() Function Overflow; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 28194 OpenBSD isakmpd IPSec Packet Replay; OSVDB ID: 28195 OpenBSD sempahores Manipulation Kernel Panic Local DoS; 3.9; OSVDB ID: 32935 OpenBSD Crafted IPv6 ICMP Echo Request DoS; OSVDB ID: 29570 Multiple BSD systrace systrace_preprepl() Function Overflow; OSVDB ID: 32574 OpenBSD sys/dev/pci/vga_pci.c VGA Driver for wscons Local Privilege Escalation; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 33050 OpenBSD kern/uipc_mbuf2.c mbuf Crafted ICMP6 Packet Remote Code Execution; OSVDB ID: 28194 OpenBSD isakmpd IPSec Packet Replay; OSVDB ID: 28195 OpenBSD sempahores Manipulation Kernel Panic Local DoS; 4.0; OSVDB ID: 32935 OpenBSD Crafted IPv6 ICMP Echo Request DoS; OSVDB ID: 32574 OpenBSD sys/dev/pci/vga_pci.c VGA Driver for wscons Local Privilege Escalation; OSVDB ID: 25662 OpenBSD svnd Salt-less Encryption Weakness; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 33050 OpenBSD kern/uipc_mbuf2.c mbuf Crafted ICMP6 Packet Remote Code Execution; 4.2; OSVDB ID: 40245 OpenBSD NULL Pointer Dereference SIOCGIFRTLABEL DoS; OSVDB ID: 42153 OpenBSD sys/netinet6/ip6_input.c ip6_check_rh0hdr() Function Malformed IPv6 Routing Header DoS; OSVDB ID: 42154 OpenBSD sys/netinet/tcp_subr.c tcp_respond() Function Crafted TCP Packet DoS; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 53608 OpenBSD Packet Filter (pf) IP Packet Handling Remote DoS; 3.5; 3.4; 4.2; 3.9; 4.0; 3.3; 3.6; 3.7; 3.8; 4.2; 4.1; OSVDB ID: 42154 OpenBSD sys/netinet/tcp_subr.c tcp_respond() Function Crafted TCP Packet DoS; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; 4.2; 4.3; OSVDB ID: 41143 OpenBSD DNS Server PRNG Transaction ID Disclosure Cache Poisoning; OSVDB ID: 46809 OpenBSD Query ID and Additional Resource Record DNS Cache Poisoning; OSVDB ID: 52270 OpenBSD BGP UPDATE Message Malformed AS4_PATH Remote DoS; OSVDB ID: 53608 OpenBSD Packet Filter (pf) IP Packet Handling Remote DoS; OSVDB ID: 52463 OpenBSD libc src/lib/libc/gen/fts.c fts_build() Function fts Nested Directory Handling Local DoS; 4.4; OSVDB ID: 52270 OpenBSD BGP UPDATE Message Malformed AS4_PATH Remote DoS; OSVDB ID: 59720 OpenBSD ip_ctloutput() / ip6_ctloutput() NULL Dereference Local DoS; OSVDB ID: 58529 OpenBSD XMM Exception Error Handling Local DoS; OSVDB ID: 53608 OpenBSD Packet Filter (pf) IP Packet Handling Remote DoS; 4.5; OSVDB ID: 58529 OpenBSD XMM Exception Error Handling Local DoS; OSVDB ID: 53608 OpenBSD Packet Filter (pf) IP Packet Handling Remote DoS; 4.6; OSVDB ID: 58529 OpenBSD XMM Exception Error Handling Local DoS; 4.8; OSVDB ID: 73291 OpenBSD Kernel DRM Subsystem sys/dev/pci/drm/drm_irq.c drm_modeset_ctl Function Out-of-bounds Write Local DoS; OSVDB ID: 74379 OpenBSD libc glob GLOB_APPEND / GLOB_DOOFFS Flags Crafted String Multiple Overflows; OSVDB ID: 70212 OpenBSD carp_proto_input_c CARP Hash Modification DoS; OSVDB ID: 73388 Multiple Vendor libc Implementation fnmatch.c Memory Consumption DoS; Unspecified; OSVDB ID: 82509 OpenBSD crypt() Function (libcrypt) DES Implementation 0x80 Character Handling Brute Force Weakness; OSVDB ID: 71853 OpenBSD IPSEC Crypto Accelerator CBC Oracle Weak IV Issue; 5.1; OSVDB ID: 87859 OpenBSD RPC Request Saturation Parsing Remote DoS; 5.2; OSVDB ID: 87859 OpenBSD RPC Request Saturation Parsing Remote DoS; 2.0; OSVDB ID: 88564 OpenBSD FTP Server (ftpd) Privileged Port Scan Bounce Weakness; 4.4; OSVDB ID: 52463 OpenBSD libc src/lib/libc/gen/fts.c fts_build() Function fts Nested Directory Handling Local DoS; 5.0; OSVDB ID: 90051 OpenBSD libc GLOB_LIMIT Resource Exhaustion DoS; 2.x; OSVDB ID: 91965 OpenBSD Socketpair Buffer Handling Remote DoS

OpenSMTPD: 5.3.1; OSVDB ID: 93495 OpenSMTPD TLS Support Socket Exhaustion Remote DoS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.