GCVE - cpe:2.3:o:freebsd:freebsd:7.0:pre-release:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:7.0:pre-release:*:*:*:*:*:*

part: o version: 7.0 update: pre-release

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/freebsd/freebsd-src`	purl2cpe	2026-06-01 10:12:45.378055

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-1938`	vulnerable	2026-06-08 04:54:11.023848	Details available Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long username, as demonstrated by a long USER command to the FreeBSD 8.0 ftpd. Published: 2010-05-28T18:00:00.000Z Updated: 2024-08-07T02:17:13.078Z Open on db.gcve.eu Reference links http://blog.pi3.com.pl/?p=111 http://securityreason.com/securityalert/7450 http://www.securityfocus.com/bid/40403 http://site.pi3.com.pl/adv/libopie-adv.txt http://securitytracker.com/id?1024040	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-1041`	vulnerable	2026-06-08 04:51:12.832581	Details available The ktimer feature (sys/kern/kern_time.c) in FreeBSD 7.0, 7.1, and 7.2 allows local users to overwrite arbitrary kernel memory via an out-of-bounds timer value. Published: 2009-03-24T19:00:00.000Z Updated: 2024-08-07T04:57:17.520Z Open on db.gcve.eu Reference links http://security.freebsd.org/advisories/FreeBSD-SA-09:06.ktimer.asc https://www.exploit-db.com/exploits/8261 http://www.securitytracker.com/id?1021882 https://exchange.xforce.ibmcloud.com/vulnerabilities/49362 http://www.securityfocus.com/bid/34196	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1391`	vulnerable	2026-06-08 04:50:20.430100	Details available Multiple integer overflows in libc in NetBSD 4.x, FreeBSD 6.x and 7.x, and probably other BSD and Apple Mac OS platforms allow context-dependent attackers to execute arbitrary code via large values of certain integer fields in the format argument to (1) the strfmon function in lib/libc/stdlib/strfmon.c, related to the GET_NUMBER macro; and (2) the printf function, related to left_prec and right_prec. Published: 2008-03-27T17:00:00.000Z Updated: 2024-08-07T08:17:34.850Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/28479 http://www.securityfocus.com/archive/1/490158/100/0/threaded http://www.vupen.com/english/advisories/2008/3444 http://www.us-cert.gov/cas/techalerts/TA08-350A.html https://exchange.xforce.ibmcloud.com/vulnerabilities/41504	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1148`	not_vulnerable	2026-06-08 04:50:19.160920	Details available A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka "Algorithm A0"), as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attackers to guess sensitive values such as (1) DNS transaction IDs or (2) IP fragmentation IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as DNS cache poisoning, injection into TCP packets, and OS fingerprinting. Published: 2008-03-04T23:00:00.000Z Updated: 2024-08-07T08:08:57.600Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/487658 https://exchange.xforce.ibmcloud.com/vulnerabilities/41157 http://secunia.com/advisories/28819 http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predictable_IP_ID_Vulnerability.pdf http://www.securiteam.com/securityreviews/5PP0H0UNGW.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1147`	not_vulnerable	2026-06-08 04:50:19.156056	Details available A certain pseudo-random number generator (PRNG) algorithm that uses XOR and 2-bit random hops (aka "Algorithm X2"), as used in OpenBSD 2.6 through 3.4, Mac OS X 10 through 10.5.1, FreeBSD 4.4 through 7.0, and DragonFlyBSD 1.0 through 1.10.1, allows remote attackers to guess sensitive values such as IP fragmentation IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as injection into TCP packets and OS fingerprinting. Published: 2008-03-04T23:00:00.000Z Updated: 2024-08-07T08:08:57.697Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/41155 http://seclists.org/bugtraq/2008/Feb/0063.html http://seclists.org/bugtraq/2008/Feb/0052.html http://www.securityfocus.com/archive/1/487658 http://secunia.com/advisories/28819	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1146`	not_vulnerable	2026-06-08 04:50:19.131777	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-0217`	vulnerable	2026-06-08 04:50:10.507928	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-0216`	vulnerable	2026-06-08 04:50:10.506584	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Freebsd

PURL mappings

Vulnerability references

Contribute