CVE-2021-31559

A crafted request bypasses S2S TCP Token authentication writing arbitrary events to an index in Splunk Enterprise Indexer 8.1 versions before 8.1.5 and 8.2 versions before 8.2.1. The vulnerability impacts Indexers configured to use TCPTokens. It does not impact Universal Forwarders...

CVE-1999-0833

CVE-1999-0833 describes a buffer overflow in BIND 8.2 when processing NXT records. The vulnerability arises in the rrextract logic for NXT processing, where the dlen/n/cp1 handling can be coerced to overflow the destination, enabling remote code execution with the privileges of the named process....