Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbsd netbsd 4.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2482
The pam_unix module in OpenPAM in NetBSD 4.0 prior to 4.0.2 and 5.0 prior to 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group.
Netbsd Netbsd 4.0.1
Netbsd Netbsd 4.0
Netbsd Netbsd 5.0
Netbsd Netbsd 4.1
NA
CVE-2007-3654
The display driver allocattr functions in NetBSD 3.0 up to and including 4.0_BETA2, and NetBSD-current prior to 20070728, allow local users to cause a denial of service (panic) via a (1) negative or (2) large value in an ioctl call, as demonstrated by the vga_allocattr function.
Netbsd Netbsd 3.0.1
Netbsd Netbsd 3.0.2
Netbsd Netbsd 4.0
Netbsd Netbsd 3.0
NA
CVE-2008-3584
NetBSD 3.0, 3.1, and 4.0, when a pppoe instance exists, does not properly check the length of a PPPoE packet tag, which allows remote malicious users to cause a denial of service (system crash) via a crafted PPPoE packet.
Netbsd Netbsd 3.0
Netbsd Netbsd 3.1
Netbsd Netbsd 4.0
NA
CVE-2011-1547
Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 prior to 5.0.3, and 5.1 prior to 5.1.1, when IPsec is enabled, allow remote malicious users to cause a denial of service (memory corruption and panic) or possibly have unspecified other impact via a craft...
Netbsd Netbsd 5.0
Netbsd Netbsd 5.0.1
Netbsd Netbsd 5.0.2
Netbsd Netbsd 5.1
Netbsd Netbsd 4.0
1 EDB exploit
NA
CVE-2009-2483
libprop/prop_object.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via a malformed externalized plist (XML form) containing an undefined element.
Netbsd Netbsd 4.0
Netbsd Netbsd 4.0.1
NA
CVE-2010-0561
Integer signedness error in NetBSD 4.0, 5.0, and NetBSD-current prior to 2010-01-21 allows local users to cause a denial of service (kernel panic) via a negative mixer index number being passed to (1) the azalia_query_devinfo function in the azalia audio driver (src/sys/dev/pci/a...
Netbsd Netbsd 4.0
Netbsd Netbsd 5.0
NA
CVE-2007-1677
Multiple buffer overflows in the ISO network protocol support in the NetBSD kernel 2.0 up to and including 4.0_BETA2, and NetBSD-current prior to 20070329, allow local users to execute arbitrary code via long parameters to certain functions, as demonstrated by a long sockaddr str...
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 4.0
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 3.1
Navision Software Navision Financials Server 3.0
Netbsd Netbsd 3.0.1
Netbsd Netbsd 3.0.2
NA
CVE-2009-2793
The kernel in NetBSD, probably 5.0.1 and previous versions, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-se...
Netbsd Netbsd 3.0.2
Netbsd Netbsd 3.1
Netbsd Netbsd 1.6.1
Netbsd Netbsd 1.6.2
Netbsd Netbsd 1.3.2
Netbsd Netbsd 1.3.3
Netbsd Netbsd 1.2
Netbsd Netbsd
Netbsd Netbsd 5.0
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.2.1
Netbsd Netbsd 1.1
Netbsd Netbsd 3.0
Netbsd Netbsd 3.0.1
Netbsd Netbsd 2.1
Netbsd Netbsd 1.6
Netbsd Netbsd 1.3
Netbsd Netbsd 1.3.1
Netbsd Netbsd 0.8
1 EDB exploit
NA
CVE-2010-2530
Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and previous versions, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via a negative size value in a /dev/nsmb ioctl operation, as demonstrated ...
Netbsd Netbsd
Netbsd Netbsd 5.0.1
Netbsd Netbsd 2.1
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.0.4
Netbsd Netbsd 2.1.1
Netbsd Netbsd 1.3.2
Netbsd Netbsd 1.3.1
Netbsd Netbsd 1.3
Netbsd Netbsd 1.2.1
Netbsd Netbsd 3.0.2
Netbsd Netbsd 3.0.1
Netbsd Netbsd 3.0
Netbsd Netbsd 3.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5
Netbsd Netbsd 1.4.3
Netbsd Netbsd 0.8
Netbsd Netbsd 5.0
Netbsd Netbsd 4.0
Netbsd Netbsd 2.0.1
NA
CVE-2006-5215
The Xsession script, as used by X Display Manager (xdm) in NetBSD prior to 20060212, X.Org prior to 20060317, and Solaris 8 through 10 prior to 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a /...
X.org Xdm
Netbsd Netbsd 1.1
Netbsd Netbsd 1.2
Netbsd Netbsd 1.4.1
Netbsd Netbsd 1.4.2
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Sun Solaris 10.0
Sun Sunos 5.8
Sun Solaris 9.0
Netbsd Netbsd 1.3.1
Netbsd Netbsd 1.3.2
Netbsd Netbsd 1.2.1
Netbsd Netbsd 1.3
Netbsd Netbsd 1.4.3
Netbsd Netbsd 1.4
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.5
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »