40 matches found
Wireshark 3.6.x < 3.6.1 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 3.6.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.6.1 advisory. - Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted...
PT-2021-6886 · Wireshark +3 · Wireshark +3
Name of the Vulnerable Software and Affected Versions: Wireshark versions 3.4.0 through 3.4.10 Wireshark version 3.6.0 Description: The issue is related to an infinite loop in the BitTorrent DHT dissector, which can be exploited to cause a denial of service via packet injection or crafted capture...
@actiflixr/webtorrent (=1.0.0), @andrewosh/torrent-docker (>=1.6.0 <=1.6.1) +260 more potentially affected by CVE-2016-10519 via bittorrent-dht (>=0.5.0 <=4.0.4)
bittorrent-dht NPM version =0.5.0, =1.6.0, =0.1.0-beta.0, =5.2.3, =0.1.1, =0.1.0, =0.1.1, =1.0.0, =0.0.1, =1.0.0-alpha.18, =1.0.0-alpha.18, =0.0.1, =1.2.18, =1.0.17, =1.0.18 and more Source cves: CVE-2016-10519 Source advisory: OSV:GHSA-77G4-36JP-5V3M...
GHSA-77G4-36JP-5V3M Remote Memory Disclosure in bittorrent-dht
Versions of bittorrent-dht prior to 5.1.3 are affected by a remote memory disclosure vulnerability. This vulnerability allows an attacker to send a specific series of of messages to a listening peer and get it to reveal internal memory. There are two mitigating factors here, that slightly reduce...
Remote Memory Disclosure in bittorrent-dht
Versions of bittorrent-dht prior to 5.1.3 are affected by a remote memory disclosure vulnerability. This vulnerability allows an attacker to send a specific series of of messages to a listening peer and get it to reveal internal memory. There are two mitigating factors here, that slightly reduce...
Denial Of Service (DoS)
bittorrent-dht is vulnerable to denial of service DOS attacks. The vulnerability exists as it does not restrict to run one ping at the time, leading to an infinite asnyc ping recursion and an application crash when a malicious user sends a large number of pings simultaneously without disregarding...
bittorrent-dht Remote Memory Disclosure Vulnerability
bittorrent-dht is a Node.js implementation of the BitTorrent DHT protocol. A security vulnerability exists in bittorrent-dht versions prior to 5.1.3. An attacker can exploit the vulnerability to disclose internal memory by sending a specific series of messages...
CVE-2016-10519
A security issue was found in bittorrent-dht before 5.1.3 that allows someone to send a specific series of messages to a listening peer and get it to reveal internal memory...
CVE-2016-10519
A security issue was found in bittorrent-dht before 5.1.3 that allows someone to send a specific series of messages to a listening peer and get it to reveal internal memory...
CVE-2016-10519
The CVE-2016-10519 entry describes a vulnerability in bittorrent-dht before 5.1.3 where an attacker can send a crafted sequence of messages to a listening peer to cause disclosure of internal memory. Affected component: bittorrent-dht (Node.js implementation). Root cause: insecure handling of mes...
CVE-2016-10519
A security issue was found in bittorrent-dht before 5.1.3 that allows someone to send a specific series of messages to a listening peer and get it to reveal internal memory...
Remote Memory Disclosure
Overview Versions of bittorrent-dht prior to 5.1.3 are affected by a remote memory disclosure vulnerability. This vulnerability allows an attacker to send a specific series of of messages to a listening peer and get it to reveal internal memory. There are two mitigating factors here, that slightl...
Mageia: Security Advisory (MGASA-2015-0428)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated libtorrent-rasterbar packages fixes security vulnerability
The lazybdecode function in BitTorrent DHT bootstrap server bootstrap-dht allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing." Note while this CVE was reported against BitTorrent DHT Bootstrapt server, the same vulnerable code is available in...
MGASA-2015-0428 Updated libtorrent-rasterbar packages fixes security vulnerability
The lazybdecode function in BitTorrent DHT bootstrap server bootstrap-dht allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing." Note while this CVE was reported against BitTorrent DHT Bootstrapt server, the same vulnerable code is available in...
Debian DLA-312-1 : libtorrent-rasterbar security update
The lazybdecode function in BitTorrent DHT bootstrap server bootstrap-dht allows remote attackers to execute arbitrary code via a crafted packet, related to 'improper indexing.' Note while this CVE was reported against BitTorrent DHT Bootstrapt server, the same vulnerable code is available in...
[SECURITY] [DLA 312-1] libtorrent-rasterbar security update
Package : libtorrent-rasterbar Version : 0.14.10-2+deb6u1 CVE ID : CVE-2015-5685 Debian Bug : 797046 The lazybdecode function in BitTorrent DHT bootstrap server bootstrap-dht allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing." Note while this CV...
DLA-312-1 libtorrent-rasterbar - security update
Bulletin has no description...
CVE-2015-5685
The lazybdecode function in BitTorrent DHT bootstrap server bootstrap-dht allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing."...
CVE-2015-5685
The lazybdecode function in BitTorrent DHT bootstrap server bootstrap-dht allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing."...