Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability

Cisco TelePresence Supervisor MSE 8050 contains a vulnerability that may allow an unauthenticated, remote attacker to cause high CPU utilization and a reload of the affected system. Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability a...

Ubuntu 8.04 LTS : python2.5 vulnerabilities (USN-1613-1)

It was discovered that Python would prepend an empty string to sys.path under certain circumstances. A local attacker with write access to the current working directory could exploit this to execute arbitrary code. CVE-2008-5983 It was discovered that the audioop module did not correctly perform...

Ubuntu: Security Advisory (USN-1592-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1592-1: Python 2.7 vulnerabilities

Niels Heinen discovered that the urllib and urllib2 modules would process Location headers that specify a redirection to file: URLs. A remote attacker could exploit this to obtain sensitive information or cause a denial of service. This issue only affected Ubuntu 11.04. CVE-2011-1521 It was...

Cisco ASA SIP CPU Utilization DoS

The remote Cisco ASA is missing a security patch and may be affected by a denial of service vulnerability. When SIP inspection is enabled and SIP traffic does not establish the secondary connection, duplicate pre-allocated secondary pinholes are created, which could cause CPU utilization to...

Juniper Junos J-Web CPU Utilization DoS (PSN-2012-04-547)

According to its self-reported version number, the J-Web component of the remote Junos system has a denial of service vulnerability. A high rate of inbound HTTP connections over an extended period can result in high CPU utilization, even after the connections are terminated. A remote,...

Jabber Extensible Communications Platform and Cisco Unified Presence XML Denial of Service Vulnerability

A denial of service DoS vulnerability exists in Jabber Extensible Communications Platform Jabber XCP and Cisco Unified Presence. An unauthenticated, remote attacker could exploit this vulnerability by sending malicious XML to an affected server. Successful exploitation of this vulnerability could...

Citrix Secure Gateway Unspecified DoS

The version of Citrix Secure Gateway running on the remote host has an unspecified denial of service vulnerability. Making a specially crafted request can result in 100% CPU utilization, causing the application to become unresponsive. A remote attacker could exploit this by sending a malicious...

Gentoo Security Advisory GLSA 200412-15 (Ethereal)

The remote host is missing updates announced in advisory GLSA 200412-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200501-27 (ethereal)

The remote host is missing updates announced in advisory GLSA 200501-27. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Symantec Backup Exec for Windows Servers Denial of Service Vulnerabilities

Backup Exec for Windows Servers, a commercial backup product from Symantec, is installed on the remote host. The version of the Backup Exec Job Engine, bengine.exe, installed as part of Backup Exec for Windows Server on the remote host contains a NULL pointer dereference error when handling...

IBM Director fails to properly time-out connection requests from clients

Overview IBM Director Systems, specifically CIM Server, contains a denial-of-service vulnerability that can allow a remote, unauthenticated attacker to render Director inoperative. Description IBM Director is a suite of system management tools.When a rogue connection request is made to IBM Direct...

Symantec Enterprise Security Manager曲解信息拒绝服务漏洞

Symantec Enterprise Security Manager ESM可以在整个企业范围内为关键性应用程序和服务器自动搜索发现其漏洞隐患和不符合安全策略的设定。 Symantec Enterprise Security Manager在接收到部分网络扫描时存在问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击，导致使用100%CPU利用率。 目前没有详细漏洞细节提供。 Symantec Enterprise Security Manager 6.5.3 厂商解决方案 可参考如下安全公告获得补丁信息：...

Multiple vendors ZOO file decompression infinite loop DoS

Topic: Multiple vendors ZOO file decompression infinite loop DoS Announced: 2007-05-04 Credits: Jean-Sebastien Guay-Leroux Products: Multiple see section III Impact: DoS 99 CPU utilisation CVE ID: CVE-2007-1669, CVE-2007-1670, CVE-2007-1671, CVE-2007-1672, CVE-2007-1673 I. BACKGROUND Zoo is a...

Courier MTA: Denial of Service vulnerability

Background Courier MTA is an integrated mail and groupware server based on open protocols. Description Courier MTA has fixed a security issue relating to usernames containing the "=" character, causing high CPU utilization. Impact An attacker could exploit this vulnerability by sending a speciall...

NSFOCUS SA2006-07 : ISS RealSecure/BlackICE MailSlot Heap Overflow Detection Remote DoS Vulnerability

NSFOCUS Security Advisory SA2006-07 ISS RealSecure/BlackICE MailSlot Heap Overflow Detection Remote DoS Vulnerability Release Date: 2006-07-27 CVE ID: CVE-2006-3840 http://www.nsfocus.com/english/homepage/research/0607.htm Affected systems & software =================== RealSecure Network Sensor...

Lotus Domino DoS

Invalid vCal meeting request causes 100 CPU utilization...

Use a SNIFFER to monitor the QQ number and obtain the IP address of the method-vulnerability warning-the black bar safety net

Yesterday when the Internet, found this forum. I was in the study how to use MRTG to monitor Huawei router and switch CPU utilization, inadvertently found this forum. This problem has not yet found a solution. Today sleep early, middle of the night is up, sigh of relief to see the Forum a lot of...

Buffer overflow

NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to cause a denial of service memory usage and cpu utilization via a flood of arbitrary UDP datagrams to ports 0 to 65000. NOTE: this issue was reported as a buffer overflow, but that term usual...

CVE-2006-0967

NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to cause a denial of service memory usage and cpu utilization via a flood of arbitrary UDP datagrams to ports 0 to 65000. NOTE: this issue was reported as a buffer overflow, but that term usual...