FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-27 12:04:33 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
4c005a5e-2541-4d95-80a0-00c76919aa66	fd_set -- bitmap index overflow in multiple applications 3APA3A reports: If programmer fails to check socket number before using select() or fd_set macros, it's possible to overwrite memory behind fd_set structure. Very few select() based application actually check FD_SETSIZE value. [...] Depending on vulnerable application it's possible to overwrite portions of memory. Impact is close to off-by-one overflows, code execution doesn't seems exploitable. Discovery 2004-12-12 Entry 2005-06-17 Modified 2006-09-03 gatekeeper < 2.2.1 citadel < 6.29 3proxy < 0.5.b jabber < 1.4.3.1_1,1 = 1.4.4 bnc < 2.9.3 rinetd < 0.62_1 dante < 1.1.15 bld < 0.3.3 http://www.gotbnc.com/changes.html#2.9.3 http://www.security.nnov.ru/advisories/sockets.asp http://marc.theaimsgroup.com/?l=bugtraq&m=110660879328901
9be819c6-4633-11d9-a9e7-0001020eed82	bnc -- remotely exploitable buffer overflow in getnickuserhost A LSS Security Advisory reports: There is a buffer overflow vulnerability in getnickuserhost() function that is called when BNC is processing response from IRC server. Vulnerability can be exploited if attacker tricks user to connect to his fake IRC server that will exploit this vulnerability. If the attacker has access to BNC proxy server, this vulnerability can be used to gain shell access on machine where BNC proxy server is set. Discovery 2004-11-10 Entry 2004-12-04 Modified 2005-02-22 bnc < 2.9.1 CVE-2004-1052 http://marc.theaimsgroup.com/?l=bugtraq&m=110011817627839 http://security.lss.hr/en/index.php?page=details&ID=LSS-2004-11-03 http://www.gotbnc.com/changes.html

VuXML ID

Description

4c005a5e-2541-4d95-80a0-00c76919aa66

fd_set -- bitmap index overflow in multiple applications

3APA3A reports:

If programmer fails to check socket number before using select() or fd_set macros, it's possible to overwrite memory behind fd_set structure. Very few select() based application actually check FD_SETSIZE value. [...]

Depending on vulnerable application it's possible to overwrite portions of memory. Impact is close to off-by-one overflows, code execution doesn't seems exploitable.

Discovery 2004-12-12
Entry 2005-06-17
Modified 2006-09-03
gatekeeper

< 2.2.1

citadel

< 6.29

3proxy

< 0.5.b

jabber

< 1.4.3.1_1,1

= 1.4.4

bnc

< 2.9.3

rinetd

< 0.62_1

dante

< 1.1.15

bld

< 0.3.3

http://www.gotbnc.com/changes.html#2.9.3
http://www.security.nnov.ru/advisories/sockets.asp
http://marc.theaimsgroup.com/?l=bugtraq&m=110660879328901

9be819c6-4633-11d9-a9e7-0001020eed82

bnc -- remotely exploitable buffer overflow in getnickuserhost

A LSS Security Advisory reports:

There is a buffer overflow vulnerability in getnickuserhost() function that is called when BNC is processing response from IRC server.

Vulnerability can be exploited if attacker tricks user to connect to his fake IRC server that will exploit this vulnerability. If the attacker has access to BNC proxy server, this vulnerability can be used to gain shell access on machine where BNC proxy server is set.

Discovery 2004-11-10
Entry 2004-12-04
Modified 2005-02-22
bnc

< 2.9.1

CVE-2004-1052
http://marc.theaimsgroup.com/?l=bugtraq&m=110011817627839
http://security.lss.hr/en/index.php?page=details&ID=LSS-2004-11-03
http://www.gotbnc.com/changes.html