Astra Linux - уязвимость в wpa

There exists a exploitable denial-of-service vulnerability in hostapd 2.6. An attacker could trigger the AP to send IAPP location updates for stations, even before the required authentication process is completed. This could lead to various denial-of-service scenarios, either by causing CAM table...

hostapd vulnerable to improper processing of RADIUS packets

Overview hostapd provided by Jouni Malinen fails to process crafted RADIUS packets properly CWE-826. KUSABA Takeshi of Internet Initiative Japan Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact When...

The vulnerability of the PAN-OS operating system, related to errors in syntax validation during input processing, allows attackers to trigger service failures.

The vulnerability of the PAN-OS operating system is related to errors in syntax validation during input processing. Exploiting this vulnerability allows a malicious actor to trigger a service failure using specially created Windows New Technology LAN Manager NTLM packets from Windows servers...

Palo Alto Networks PAN-OS 安全漏洞

Palo Alto Networks PAN-OS is a next-generation firewall software from Palo Alto Networks, USA. A security vulnerability exists in Palo Alto Networks PAN-OS. A remote attacker can exploit the vulnerability to restart the PAN-OS firewall when receiving Windows New Technology LAN Manager NTLM packet...

The vulnerability in the virtual remote connection service for microprogramming control devices of the BMC Supermicro family allows a hacker to gain full control over the device.

The vulnerability of the virtual remote connection service for Microprogramming Software Control Devices of Supermicro is due to insufficient security restrictions for critical management functions. Exploiting this vulnerability allows a malicious actor to gain full control over the device by...

ntp: off-path denial of service on authenticated broadcast mode

It was found that when NTP was configured in broadcast mode, a remote attacker could broadcast packets with bad authentication to all clients. The clients, upon receiving the malformed packets, would break the association with the broadcast server, causing them to become out of sync over a longer...

CVE-2007-2057

Stack-based buffer overflow in aircrack-ng airodump-ng 0.7 allows remote attackers to execute arbitrary code via crafted 802.11 authentication packets...

DEBIAN-CVE-2007-2057

Stack-based buffer overflow in aircrack-ng airodump-ng 0.7 allows remote attackers to execute arbitrary code via crafted 802.11 authentication packets...

CVE-2007-2057

Summary of CVE-2007-2057 (aircrack-ng) The vulnerability is a stack-based buffer overflow in the airodump-ng component of aircrack-ng (affecting the 0.7 series) triggered by processing crafted 802.11 authentication packets. This can allow a remote attacker to execute arbitrary code with the privi...

CVE-2007-2057

Stack-based buffer overflow in aircrack-ng airodump-ng 0.7 allows remote attackers to execute arbitrary code via crafted 802.11 authentication packets...

DameWare Mini Remote Control Server 3.7x - Buffer Overflow (3)

DameWare Mini Remote Control Server 3.7x - Buffer Overflow 3 // source: https://www.securityfocus.com/bid/9213/info A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain...

DameWare Mini Remote Control Server 3.7x - Buffer Overflow (2)

DameWare Mini Remote Control Server 3.7x - Buffer Overflow 2 // source: https://www.securityfocus.com/bid/9213/info A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain...

DameWare Mini Remote Control Server 3.7x - Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/9213/info A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain unauthorized access to hosts using the vulnerable software. ...

Vulnerabilities in PuTTY and PSCP

Advisory ID Internal CORE-2004-0705 Bugtraq ID: 10850, 10870 CVE Name: None currently assigned. Title: Vulnerabilities in PuTTY and PSCP Class: Boundary Error Condition Remotely Exploitable: Yes Locally Exploitable: No Vendors contacted: - Maintainers of PuTTY . Core notification: 2004-07-28...