GCVE - cpe:2.3:o:freebsd:freebsd:6.4:release:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:6.4:release:*:*:*:*:*:*

part: o version: 6.4 update: release

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/freebsd/freebsd-src`	purl2cpe	2026-06-01 10:12:45.366092

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-1938`	vulnerable	2026-06-08 04:54:11.019040	Details available Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long username, as demonstrated by a long USER command to the FreeBSD 8.0 ftpd. Published: 2010-05-28T18:00:00.000Z Updated: 2024-08-07T02:17:13.078Z Open on db.gcve.eu Reference links http://blog.pi3.com.pl/?p=111 http://securityreason.com/securityalert/7450 http://www.securityfocus.com/bid/40403 http://site.pi3.com.pl/adv/libopie-adv.txt http://securitytracker.com/id?1024040	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2208`	vulnerable	2026-06-08 04:51:27.260437	Details available FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFO_IN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU. Published: 2009-06-24T23:00:00.000Z Updated: 2024-08-07T05:44:55.894Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/35285 https://exchange.xforce.ibmcloud.com/vulnerabilities/51044 http://www.securitytracker.com/id?1022367 http://secunia.com/advisories/35410 http://security.FreeBSD.org/advisories/FreeBSD-SA-09:10.ipv6.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0689`	vulnerable	2026-06-08 04:51:10.901434	Details available Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number. Published: 2009-07-01T12:26:00.000Z Updated: 2024-08-07T04:40:05.365Z Open on db.gcve.eu Reference links http://cvsweb.netbsd.org/bsdweb.cgi/src/lib/libc/gdtoa/gdtoaimp.h http://secunia.com/secunia_research/2009-35/ https://bugzilla.mozilla.org/show_bug.cgi?id=516862 http://securityreason.com/achievement_securityalert/63 http://www.securityfocus.com/archive/1/507979/100/0/threaded	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.