17 matches found
CVE-2015-5155
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-3609. Reason: This candidate is a reservation duplicate of CVE-2010-3609. Notes: All CVE users should reference CVE-2010-3609 instead of this candidate. All references and descriptions in this candidate have been removed to...
Debian DLA-304-1 : openslp-dfsg security update
Several issues have been found and solved in OpenSLP, that implements the Internet Engineering Task Force IETF Service Location Protocol standards protocol. CVE-2010-3609 Remote attackers could cause a Denial of Service in the Service Location Protocol daemon SLPD via a crafted packet with a 'nex...
[SECURITY] [DLA 304-1] openslp-dfsg security update
Package : openslp-dfsg Version : 1.2.1-7.8+deb6u1 CVE ID : CVE-2010-3609 CVE-2012-4428 CVE-2015-5177 Debian Bug : 623551 687597 795429 Several issues have been found and solved in OpenSLP, that implements the Internet Engineering Task Force IETF Service Location Protocol standards protocol...
DLA-304-1 openslp-dfsg - security update
Bulletin has no description...
OpenSLP 1.2.1 & < 1647 trunk - Denial of Service Exploit
No description provided by source. !/usr/bin/python Title: OpenSLP DoS Author: Nicolas Gregoire @AgarriFR CVE: 2010-3609 Software download: http://www.openslp.org/download.html Version: v1.2.1 and trunk before revision 1647 Tested on: Linux Ubuntu 10.04, VMware ESX 4.0 Notes: It affects some othe...
Mandriva Linux Security Advisory : openslp (MDVSA-2013:111)
Updated openslp packages fix security vulnerability : The extension parser in slpv2message.c in OpenSLP 1.2.1 allows remote attackers to cause a denial of service infinite loop via a packet with a next extension offset that references this extension or a previous extension CVE-2010-3609...
Mandriva Linux Security Advisory : openslp (MDVSA-2012:141)
A vulnerability has been discovered and corrected in openslp : The extension parser in slpv2message.c in OpenSLP 1.2.1 allows remote attackers to cause a denial of service infinite loop via a packet with a next extension offset that references this extension or a previous extension CVE-2010-3609...
Mandriva Update for openslp MDVSA-2012:141 (openslp)
Check for the Version of openslp OpenVAS Vulnerability Test Mandriva Update for openslp MDVSA-2012:141 openslp Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
OpenSLP Denial of Service Exploit
Exploit for multiple platform in category dos / poc !/usr/bin/python Title: OpenSLP DoS Author: Nicolas Gregoire @AgarriFR CVE: 2010-3609 Software download: http://www.openslp.org/download.html Version: v1.2.1 and trunk before revision 1647 Tested on: Linux Ubuntu 10.04, VMware ESX 4.0 Notes: It...
OpenSLP 1.2.1 1647 trunk - Denial of Service
OpenSLP 1.2.1 1647 trunk - Denial of Service !/usr/bin/python Title: OpenSLP DoS Author: Nicolas Gregoire @AgarriFR CVE: 2010-3609 Software download: http://www.openslp.org/download.html Version: v1.2.1 and trunk before revision 1647 Tested on: Linux Ubuntu 10.04, VMware ESX 4.0 Notes: It affects...
OpenSLP 1.2.1 / < 1647 trunk - Denial of Service
!/usr/bin/python Title: OpenSLP DoS Author: Nicolas Gregoire @AgarriFR CVE: 2010-3609 Software download: http://www.openslp.org/download.html Version: v1.2.1 and trunk before revision 1647 Tested on: Linux Ubuntu 10.04, VMware ESX 4.0 Notes: It affects some others SLP softwares, like mSLP. More...
openSUSE Security Update : openslp (openSUSE-SU-2010:0992-1)
the openslp daemon could run into an endless loop when receiving specially crafted packets CVE-2010-3609. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openslp-3310. The text description of...
CVE-2010-3609
OpenSLP vulnerability CVE-2010-3609 affects OpenSLP 1.2.1 and earlier (before SVN r1647) used in SLPD (e.g., VMware ESX/ESXi products). A remote attacker can cause a denial of service (infinite loop) by sending a crafted packet with a next extension offset that references this or a previous exten...
VMSA-2011-0004 : VMware ESX/ESXi SLPD denial of service vulnerability and ESX third-party updates for Service Console packages bind, pam, and rpm.
a. Service Location Protocol daemon DoS This patch fixes a denial-of-service vulnerability in the Service Location Protocol daemon SLPD. Exploitation of this vulnerability could cause SLPD to consume significant CPU resources. VMware would like to thank Nicolas Gregoire and US CERT for reporting...
VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
a. Service Location Protocol daemon DoSThis patch fixes a denial-of-service vulnerability in the Service Location Protocol daemon SLPD. Exploitation of this vulnerability could cause SLPD to consume significant CPU resources.VMware would like to thank Nicolas Gregoire and US CERT for reporting th...
SuSE 11 Security Update : openslp (SAT Patch Number 3317)
The openslp daemon could run into an endless loop when receiving specially crafted packets. CVE-2010-3609 Additionally the following non-security bugs were fixed : - 564504: Fix handling of DA answers if both active and passive DA detection is off - 597215: Add configuration options to openSLP:...
CVE-2015-5155
CVE-2015-5155 is rejected/not used and does not represent an active vulnerability entry.