Hiya
I think this is the right place, but if not please move and I'll note it down. Thanks
tcpdump AFS RCP packet buffer overflow could allow root level access
The tcpdump utility is a tool used to monitor network traffic. Tcpdump version 3.62 is vulnerable to a buffer overflow, caused by improper string length handling in the decoding of AFS RPC packets. By sending an AFS RPC packet with a large quantity of data, a remote attacker can overflow a buffer and execute arbitrary code on the system as the user running tcpdump, usually root, and cause tcpdump to crash.
http://xforce.iss.net/static/7006.php
ipfw "me" rules could allow unauthorized access to the local system
The ipfw utility in FreeBSD versions 4-STABLE and 4.3-RELEASE could allow a remote host to gain unauthorized access to the local system. If the ipfw "me" rules are used in conjunction with a point-to-point interface, ipfw issues the same filter rules for the remote end of the link. This could allow the remote attacker to gain unauthorized access to the local system
http://xforce.iss.net/static/7002.php
BSDI BSD local kernel denial of service
BSDI BSD/OS versions 3.0 and 3.1 are vulnerable to a denial of service attack, caused by a bad system call. This vulnerability causes the system to automatically reboot
http://xforce.iss.net/static/7023.php
linprocfs privileged process memory leak
The linprocs file system in FreeBSD is an implementation of the Linux /procfs file system that allows Linux binaries to obtain access to exported kernel data. The procfs package in FreeBSD versions 4.0 through 4.3 is vulnerable to a memory leak vulnerability that could allow an attacker to obtain sensitive system information from privileged processes. Once an unprivileged process has debugging rights to a privileged process, the unprivileged process is able to retain read access to the target proces' memory space. This allows the attacker to obtain sensitive system information, which could be used to perform further attacks.
http://xforce.iss.net/static/7017.php
FreeBSD tcp_wrappers 'PARANOID' option allows attacker to bypass restrictions
The tcp_wrappers package, developed by Wietse Venema, allows the user to monitor and control tftp, exec, ftp, rsh, telnet, rlogin, finger, and systat access on a host. A vulnerability in the tc_wrappers package in FreeBSD versions 4.1.1 up to and including 4.3-STABLE could allow an attacker to bypass the 'PARANOID' ACL restrictions when the 'PARANOID' ACL option is enabled in the configuration file. An attacker can influence the results of reverse DNS lookups to bypass the restrictions and possibly perform further attacks against the host
http://xforce.iss.net/static/7040.php
NetBSD dump(8) commands could allow an attacker to gain tty privileges
NetBSD versions 1.4.x, 1.5, and 1.5.1 and versions of NetBSD-current dated prior to 2001-08-08 could allow a local attacker to gain tty privileges, caused by a privilege dropping vulnerability in the dump(8) and dump_lfs(8) commands. The dump(8) and dump_lfs(8) commands are setgid tty and fail to drop privileges after performing functions that the privileges are required for. A local attacker can exploit this vulnerability by using the RCMD_CMD environment variable to supply a malicious executable as a method to access a remote dump device to gain tty privileges
http://xforce.iss.net/static/7037.php
BSD lpd print protocol daemon buffer overflow
Several BSD implementations contain a buffer overflow vulnerability in the BSD Unix line printer daemon ("in.lpd" or "lpd" ) that could allow a remote or local attacker to execute code with superuser privileges. The line printer daemon is used to allow heterogeneous Unix environments to share printers over a network.
http://xforce.iss.net/static/7046.php
Regards
eddie
Login 
DOS/PDA/Other 
BSD Vulnerablities : Aug 
