GCVE - cpe:2.3:o:freebsd:freebsd:7.0:beta_4:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:7.0:beta_4:*:*:*:*:*:*

part: o version: 7.0 update: beta_4

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/freebsd/freebsd-src`	purl2cpe	2026-06-01 10:12:45.372846

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-1938`	vulnerable	2026-06-08 04:54:11.022893	Details available Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long username, as demonstrated by a long USER command to the FreeBSD 8.0 ftpd. Published: 2010-05-28T18:00:00.000Z Updated: 2024-08-07T02:17:13.078Z Open on db.gcve.eu Reference links http://blog.pi3.com.pl/?p=111 http://securityreason.com/securityalert/7450 http://www.securityfocus.com/bid/40403 http://site.pi3.com.pl/adv/libopie-adv.txt http://securitytracker.com/id?1024040	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0641`	vulnerable	2026-06-08 04:51:10.670335	Details available sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid only in older FreeBSD distributions, which might allow remote attackers to execute arbitrary code by passing a crafted environment variable from a telnet client, as demonstrated by an LD_PRELOAD value that references a malicious library. Published: 2009-02-18T17:00:00.000Z Updated: 2024-08-07T04:40:05.105Z Open on db.gcve.eu Reference links http://security.freebsd.org/advisories/FreeBSD-SA-09:05.telnetd.asc https://exchange.xforce.ibmcloud.com/vulnerabilities/48780 http://www.securityfocus.com/bid/33777 http://lists.grok.org.uk/pipermail/full-disclosure/2009-February/067954.html https://www.exploit-db.com/exploits/8055	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-6150`	vulnerable	2026-06-08 04:50:08.044331	Details available The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accessed random values, which could be leveraged to bypass protection mechanisms that rely on secrecy of those values. Published: 2007-11-30T01:00:00.000Z Updated: 2024-08-07T15:54:26.916Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/26642 http://security.FreeBSD.org/advisories/FreeBSD-SA-07:09.random.asc http://www.securitytracker.com/id?1019022 https://exchange.xforce.ibmcloud.com/vulnerabilities/38764 http://secunia.com/advisories/27879	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.