Approved changes feed: RSS · Atom
cpe:2.3:o:freebsd:freebsd:3.5.1:release:*:*:*:*:*:*
part: o version: 3.5.1 update: release
| Vendor | Freebsd (1e86ea60-a74f-5f45-ac35-3eb819c9e064) |
|---|---|
| Product | Freebsd (be9b20ed-2a20-5a94-a224-b1a6fdcacb17) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/freebsd/freebsd-src |
purl2cpe | 2026-06-01 10:12:45.218709 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2006-1283 |
vulnerable | 2026-06-08 04:48:56.804105 |
Details available
opiepasswd in One-Time Passwords in Everything (OPIE) in FreeBSD 4.10-RELEASE-p22 through 6.1-STABLE before 20060322 uses the getlogin function to determine the invoking user account, which might allow local users to configure OPIE access to the root account and possibly gain root privileges if a root shell is permitted by the configuration of the wheel group or sshd.
Published: 2006-03-23T20:00:00.000Z
Updated: 2024-08-07T17:03:28.908Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-0356 |
vulnerable | 2026-06-08 04:48:12.398135 |
Details available
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.
Published: 2005-05-31T04:00:00.000Z
Updated: 2024-08-07T21:13:53.238Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-0109 |
vulnerable | 2026-06-08 04:48:11.374459 |
Details available
Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses.
Published: 2005-03-08T05:00:00.000Z
Updated: 2024-08-07T20:57:41.235Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1471 |
vulnerable | 2026-06-08 04:47:54.280551 |
Details available
Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line.
Published: 2005-02-13T05:00:00.000Z
Updated: 2024-08-08T00:53:23.983Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0002 |
vulnerable | 2026-06-08 04:47:48.041213 |
Details available
The TCP MSS (maximum segment size) functionality in netinet allows remote attackers to cause a denial of service (resource exhaustion) via (1) a low MTU, which causes a large number of small packets to be produced, or (2) via a large number of packets with a small TCP payload, which cause a large number of calls to the resource-intensive sowakeup function.
Published: 2004-02-03T05:00:00.000Z
Updated: 2024-08-08T00:01:23.543Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2003-1234 |
vulnerable | 2026-06-08 04:47:23.755140 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2001-0554 |
vulnerable | 2026-06-08 04:45:20.481874 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2000-0998 |
vulnerable | 2026-06-08 04:45:19.122833 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.