Cisco IOS XR Software BVI Routed Packet Denial of Service Vulnerability (cisco-sa-20150415-iosxr)

A vulnerability in the packet-processing code of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers ASR could allow an unauthenticated, remote attacker to cause a lockup and eventual reload of a network processor chip and the line card that is processing traffic. Only...

Cisco IOS XR for Cisco ASR 9000 Series Aggregation Services Routers Interface Flap Vulnerability

A vulnerability in packet processing functions of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause cyclic redundancy check CRC and symbol errors on the receiving interface of an affected device, which may...

Cisco IOS Denial of Service Vulnerability (CNVD-2015-08393)

Cisco IOS is the interconnected Internet operating system used on most Cisco Systems routers and network switches. A denial of service vulnerability exists in Cisco IOS 15.33S0.1 on ASR. Allows a remote attacker to cause a denial of service via a flood of carefully crafted ND messages...

Cisco ASR 1000 Series Root Shell License Bypass Vulnerability

A vulnerability in the way software packages are loaded in Cisco IOS XE Software for the Cisco Aggregation Services Routers ASR 1000 Series could allow an authenticated, local attacker to gain restricted root shell access. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be...

Cisco ASR 5000 CDMA PMIpv6 Denial of Service Vulnerability

A vulnerability in the Proxy Mobile IPv6 PMIPv6 protocol implementation of the Cisco Aggregation Services Router ASR ASR 5000 for Cisco Code Division Multiple Access CDMA System Software could allow an unauthenticated, remote attacker to cause a partial denial of service DoS condition due to the...

Cisco ASR 1000 Series Router UDP Message Processing Denial of Service Vulnerability

The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. A security vulnerability in the Cisco ASR 1000 Series Router's processing of UDP messages allows remote attackers to exploit the vulnerability...

Cisco ASR 1000 Series Router IPv6 Message Handling Denial of Service Vulnerability

The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. The Cisco ASR 1000 Series Router has a security vulnerability in the processing of IPv6 messages that allows a remote attacker to exploit the...

Cisco Aggregation Services Router 5000 and ASR 5500 System Software Denial of Service Vulnerability

The Cisco Aggregation Services Router 5000 and ASR 5500 System Software are Cisco's 5000 series wireless controller products. A security vulnerability in the Cisco ASR 5000 and ASR 5500 System Software fails to properly validate the length field in the packet header, allowing remote attackers to...

Cisco Fixes DoS Vulnerability in ASR 1000 Routers

Cisco has patched a denial-of-service vulnerability in its ASR 1000 line of routers, a bug that’s caused by an issue with the way the routers handle some fragmented packets. The company said the DoS vulnerability affects all of the ASR 1000 Series Aggregation Services Routers that are running a...

Cisco IOS XR Concurrent Data Management Replication Process BGP Process Denial of Service Vulnerability

A vulnerability in the Concurrent Data Management Replication process of Cisco IOS XR for ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a reload of the Border Gateway Protocol BGP process. The vulnerability is due to improper processing of...

[SECURITY] Fedora 22 Update: drupal7-feeds-2.0-0.12.alpha9.fc22

Import or aggregate data as nodes, users, taxonomy terms or simple database records. This package provides the following Drupal modules: feeds feedsimport feedsnews requires drupal7-features and drupal7-views feedsui...

Unspecified Vulnerability in the 802.11n Wireless Network Standard Frame Aggregation Mechanism

802.11 protocol group is the International Electrotechnical and Electronics Engineering Society IEEE for wireless local area network standard. 802.11n is in 802.11g and 802.11a above the development of a technology, the most important feature is the rate of enhancement, the theoretical rate of up...

Cisco IOS XE Software for 1000 Series Aggregation Services Routers H.323 DoS

Cisco IOS XE Software for 1000 Series Aggregation Services Routers ASR is affected by a flaw in the Embedded Services Processor ESP due to improper handling of malformed H.323 packets when the device is configured to use Network Address Translation NAT. An unauthenticated, remote attacker by...

Google Analytics by Yoast stored XSS #2

OVERVIEW ========== Google Analytics by Yoast is one of the most popular WordPress plug-ins with over 7 million downloads and "1+ million" active installs. Last month Yoast patched a stored XSS we reported in the plug-in. Shortly after this we identified another bug of a similar severity. The...

Race condition

Race condition in the Common Classification Engine CCE in the Measurement, Aggregation, and Correlation Engine MACE implementation in Cisco IOS 15.42T3 and earlier allows remote attackers to cause a denial of service device reload via crafted network traffic that triggers improper handling of the...

Open Source OpenSOC Security Analytics Framework Released

Cisco announced today that it has made available through open source a framework that integrates data analytics tools into security operations. “The OpenSOC framework helps organizations make big data part of their technical security strategy by providing a platform for the application of anomaly...

vtiger CRM 4.2 RSS Aggregation Module Feed XSS

No description provided by source. source: http://www.securityfocus.com/bid/15562/info vtiger CRM is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. vTiger CRM is prone to multiple SQL injection, HT...

NOKIA Siemens FlexiISN 3.1 - Multiple Auth Bypass Vulnerabilities

No description provided by source. NOKIA Siemens FlexiISN GGSN Multiple Authentication bypass Vulnerability: NOKIA Siemens FlexiISN Remote: Yes Local: No Class: Input Validation Error Critical: Moderately critical OS : FlexiISN GGSN FISN 3.1 URL 1 for bypassing authentication on AAA Configuration...

netty: DoS via memory exhaustion during data aggregation

A flaw was found in the WebSocket08FrameDecoder implementation that could allow a remote attacker to trigger an Out Of Memory Exception by issuing a series of TextWebSocketFrame and ContinuationWebSocketFrames. Depending on the server configuration, this could lead to a denial of service...

Stanford Researchers Find Connecting Metadata With User Names is Simple

One of the key tenets of the argument that the National Security Agency and some lawmakers have constructed to justify the agency’s collection of phone metadata is that the information it’s collecting, such as phone numbers and length of call, can’t be tied to the callers’ names. However, some...