67 matches found
kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS
A flaw was found in the Linux kernel’s implementation of the WiFi station handoff code. An attacker within the radio range could use this flaw to deny a valid device from joining the access point...
Cisco Catalyst 2960-L Series Switches and CDB-8P Switches Access Control Error Vulnerability
The Cisco Catalyst 2960-L Series Switches and the Cisco Catalyst CDB-8P Switches are both products of Cisco, Inc.The Cisco Catalyst 2960-L Series Switches is a 2960-L series switch. Cisco Catalyst CDB-8P Switches is a digital building series switch. An access control error vulnerability exists in...
CVE-2020-3231
A vulnerability in the 802.1X feature of Cisco Catalyst 2960-L Series Switches and Cisco Catalyst CDB-8P Switches could allow an unauthenticated, adjacent attacker to forward broadcast traffic before being authenticated on the port. The vulnerability exists because broadcast traffic that is...
kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS
A flaw was found in the Linux kernel’s implementation of the WiFi station handoff code. An attacker within the radio range could use this flaw to deny a valid device from joining the access point...
PYSEC-2018-108
The SSH server implementation of AsyncSSH before 1.12.1 does not properly check whether authentication is completed before processing other requests. A customized SSH client can simply skip the authentication step...
net-snmp: Heap corruption in snmp_pdu_parse function in snmplib/snmp_api.c
It was discovered that the snmppduparse mishandles error codes and is vulnerable to a heap corruption within the parsing of the PDU prior to the authentication process. A remote, unauthenticated attacker could use this flaw to crash snmpd or, potentially, execute arbitrary code on the system with...
DEBIAN-CVE-2006-1329
The SASL negotiation in Jabber Studio jabberd before 2.0s11 allows remote attackers to cause a denial of service "c2s segfault" by sending a "response stanza before an auth stanza"...