CVE-2007-6150
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-6150
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accessed random values, which could be leveraged to bypass protection mechanisms that rely on secrecy of those values.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
FreeBSD不安全随机数生成器信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD的伪随机数生成模块实现上存在漏洞,本地攻击者可能利用此漏洞获取伪随机数据相关的信息。 在FreeBSD的sys_dev_random模块中,random(4)和urandom(4)设备在读取时会返回无穷的伪随机字节,加密算法通常依赖于这些伪随机值来确保安全。在某些环境下,random(4)和urandom(4)设备上内部状态追踪中的bug可能导致在之后的读取中重放分发的数据,这可能允许攻击者判断之前读取随机
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-6150
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-6150
请登录查看更多情报信息。
- http://security.FreeBSD.org/advisories/FreeBSD-SA-07:09.random.ascvendor-advisoryx_refsource_FREEBSD
- https://nvd.nist.gov/vuln/detail/CVE-2007-6150
Same Patch Batch · n/a · 2007-11-30 · 27 CVEs total
| CVE-2007-6174 | PHPDevShell 特制请求更新策略远程权限提升漏洞 | |
| CVE-2007-6186 | PHPDevShell 未明漏洞 | |
| CVE-2007-6185 | Eurologon CMS files.php 目录遍历漏洞 | |
| CVE-2007-6184 | Project Alumni Index.PHP 目录遍历漏洞 | |
| CVE-2007-6183 | Ruby-GNOME2 Gtk::MessageDialog.new()远程格式串处理漏洞 | |
| CVE-2007-6182 | ISPmanager Responder本地权限提升漏洞 | |
| CVE-2007-6181 | Cygwin超长文件名堆溢出漏洞 | |
| CVE-2007-6180 | Sun Solaris RPC Module 未明本地拒绝服务漏洞 | |
| CVE-2007-6179 | Charray's CMS 多个远程文件包含漏洞 | |
| CVE-2007-6178 | Ubuntu easy hosting control panel 多个远程文件包含漏洞 | |
| CVE-2007-6177 | PHP-CON Include.PHP 远程文件包含漏洞 | |
| CVE-2007-6176 | amensa-soft K+B-Bestellsystem KB_Whois.CGI check_owner操作输入验证错误漏洞 | |
| CVE-2007-6175 | Lhaplus LZH 远程缓冲区溢出漏洞 | |
| CVE-2007-5494 | Red Hat Content Accelerator 内存泄漏本地拒绝服务漏洞 | |
| CVE-2007-6173 | Novell Teaming用户枚举和跨站脚本漏洞 | |
| CVE-2007-6172 | wpQuiz 多个SQL注入漏洞 | |
| CVE-2007-6193 | Citrix Citrix NetScaler web管理界面信息泄露漏洞 | |
| CVE-2007-6192 | Citrix Citrix NetScaler web管理界面 加密问题漏洞 | |
| CVE-2007-6191 | Armin Burger p.mapper 多个PHP远程文件包含漏洞 | |
| CVE-2007-6190 | Cisco Unified IP Phone远程窃听通话漏洞 |
Showing top 20 of 27 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2007-6150
No comments yet