Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbsd netbsd 4.0 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2007-3654
The display driver allocattr functions in NetBSD 3.0 up to and including 4.0_BETA2, and NetBSD-current prior to 20070728, allow local users to cause a denial of service (panic) via a (1) negative or (2) large value in an ioctl call, as demonstrated by the vga_allocattr function.
Netbsd Netbsd 3.0.1
Netbsd Netbsd 3.0.2
Netbsd Netbsd 4.0
Netbsd Netbsd 3.0
6.9
CVSSv2
CVE-2009-2482
The pam_unix module in OpenPAM in NetBSD 4.0 prior to 4.0.2 and 5.0 prior to 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group.
Netbsd Netbsd 4.0.1
Netbsd Netbsd 4.0
Netbsd Netbsd 5.0
Netbsd Netbsd 4.1
9.3
CVSSv2
CVE-2008-3584
NetBSD 3.0, 3.1, and 4.0, when a pppoe instance exists, does not properly check the length of a PPPoE packet tag, which allows remote malicious users to cause a denial of service (system crash) via a crafted PPPoE packet.
Netbsd Netbsd 3.0
Netbsd Netbsd 3.1
Netbsd Netbsd 4.0
6.8
CVSSv2
CVE-2011-1547
Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 prior to 5.0.3, and 5.1 prior to 5.1.1, when IPsec is enabled, allow remote malicious users to cause a denial of service (memory corruption and panic) or possibly have unspecified other impact via a craft...
Netbsd Netbsd 5.0
Netbsd Netbsd 5.0.1
Netbsd Netbsd 5.0.2
Netbsd Netbsd 5.1
Netbsd Netbsd 4.0
1 EDB exploit
4.9
CVSSv2
CVE-2009-2483
libprop/prop_object.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via a malformed externalized plist (XML form) containing an undefined element.
Netbsd Netbsd 4.0
Netbsd Netbsd 4.0.1
4.9
CVSSv2
CVE-2010-0561
Integer signedness error in NetBSD 4.0, 5.0, and NetBSD-current prior to 2010-01-21 allows local users to cause a denial of service (kernel panic) via a negative mixer index number being passed to (1) the azalia_query_devinfo function in the azalia audio driver (src/sys/dev/pci/a...
Netbsd Netbsd 4.0
Netbsd Netbsd 5.0
6.6
CVSSv2
CVE-2007-1677
Multiple buffer overflows in the ISO network protocol support in the NetBSD kernel 2.0 up to and including 4.0_BETA2, and NetBSD-current prior to 20070329, allow local users to execute arbitrary code via long parameters to certain functions, as demonstrated by a long sockaddr str...
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
Netbsd Netbsd 4.0
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 3.1
Navision Software Navision Financials Server 3.0
Netbsd Netbsd 3.0.1
Netbsd Netbsd 3.0.2
4.6
CVSSv2
CVE-2009-2793
The kernel in NetBSD, probably 5.0.1 and previous versions, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-se...
Netbsd Netbsd 3.0.2
Netbsd Netbsd 3.1
Netbsd Netbsd 1.6.1
Netbsd Netbsd 1.6.2
Netbsd Netbsd 1.3.2
Netbsd Netbsd 1.3.3
Netbsd Netbsd 1.2
Netbsd Netbsd
Netbsd Netbsd 5.0
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.2.1
Netbsd Netbsd 1.1
Netbsd Netbsd 3.0
Netbsd Netbsd 3.0.1
Netbsd Netbsd 2.1
Netbsd Netbsd 1.6
Netbsd Netbsd 1.3
Netbsd Netbsd 1.3.1
Netbsd Netbsd 0.8
1 EDB exploit
4.9
CVSSv2
CVE-2010-2530
Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and previous versions, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via a negative size value in a /dev/nsmb ioctl operation, as demonstrated ...
Netbsd Netbsd
Netbsd Netbsd 5.0.1
Netbsd Netbsd 2.1
Netbsd Netbsd 2.0.3
Netbsd Netbsd 2.0.4
Netbsd Netbsd 2.1.1
Netbsd Netbsd 1.3.2
Netbsd Netbsd 1.3.1
Netbsd Netbsd 1.3
Netbsd Netbsd 1.2.1
Netbsd Netbsd 3.0.2
Netbsd Netbsd 3.0.1
Netbsd Netbsd 3.0
Netbsd Netbsd 3.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5
Netbsd Netbsd 1.4.3
Netbsd Netbsd 0.8
Netbsd Netbsd 5.0
Netbsd Netbsd 4.0
Netbsd Netbsd 2.0.1
2.6
CVSSv2
CVE-2006-5215
The Xsession script, as used by X Display Manager (xdm) in NetBSD prior to 20060212, X.Org prior to 20060317, and Solaris 8 through 10 prior to 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a /...
X.org Xdm
Netbsd Netbsd 1.1
Netbsd Netbsd 1.2
Netbsd Netbsd 1.4.1
Netbsd Netbsd 1.4.2
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Sun Solaris 10.0
Sun Sunos 5.8
Sun Solaris 9.0
Netbsd Netbsd 1.3.1
Netbsd Netbsd 1.3.2
Netbsd Netbsd 1.2.1
Netbsd Netbsd 1.3
Netbsd Netbsd 1.4.3
Netbsd Netbsd 1.4
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.5
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »