Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bogofilter — RFC 2047 decoder denial-of-service vulnerability Related CVEs: CVE-2004-1007 Upstream summary: The bogofilter team has been provided with a test case of a malformatted (non-conformant) RFC-2047 encoded word that […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: "Content-Type" XSS vulnerability affecting other webmail systems Related CVEs: CVE-2004-0519 Upstream summary: Roman Medina-Heigl Hernandez did a survey which other webmail systems where vulnerable to a bug he discovered in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ghostscript — insecure temporary file creation vulnerability Related CVEs: CVE-2004-0967 Upstream summary: Ghostscript is affected by an insecure temporary file creation vulnerability. This issue is likely due to a design […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pam_ldap — authentication bypass vulnerability Related CVEs: CVE-2005-2641 Upstream summary: Luke Howard reports: If a pam_ldap client authenticates against an LDAP server that returns a passwordPolicyResponse control, but omits the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rsnapshot — local privilege escalation Related CVEs: CVE-2005-1064 Upstream summary: An rsnapshot Advisory reports: The copy_symlink() subroutine in rsnapshot incorrectly changes file ownership on the files pointed to by symlinks, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: emacs — movemail format string vulnerability Related CVEs: CVE-2005-0100 Upstream summary: Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. They can be exploited when connecting […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tnftp — mget does not check for directory escapes Related CVEs: CVE-2004-1294 Upstream summary: When downloading a batch of files from an FTP server the mget command does not check […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libmms — stack-based buffer overflow Related CVEs: CVE-2006-2200 Upstream summary: Mitre CVE reports: Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and earlier, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SSH.COM SFTP server — format string vulnerability Related CVEs: CVE-2006-0705 Upstream summary: SSH Communications Security Corp reports a format string vulnerability in their SFTP server. This vulnerability could cause a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: typespeed — arbitrary code execution Related CVEs: CVE-2005-0105 Upstream summary: Debian reports: Ulf Härnhammar from the Debian Security Audit Project discovered a problem in typespeed, a touch-typist trainer disguised as […]