Disk Pulse Enterprise 10.1.18 - Denial of Service

Disk Pulse Enterprise 10.1.18 - Denial of Service Exploit Title: Disk Pulse Enterprise Server v10.1.18 - DOS, Date: 2017-10-20 Exploit Author: Ahmad Mahfouz Software Link: http://www.diskpulse.com/setups/diskpulsesrvsetupv10.1.18.exe Version: v10.1.18 Category; Windows Remote DOS CVE:...

VX Search Enterprise 10.1.12 - Denial of Service

VX Search Enterprise 10.1.12 - Denial of Service Exploit Title: VX Search Enterprise Server v10.1.12 - Denial of Service Date: 2017-10-20 Exploit Author: Ahmad Mahfouz Software Link: http://www.vxsearch.com/setups/vxsearchsrvsetupv10.1.12.exe Version: v10.1.12 Category; Windows Remote DOS CVE:...

Disk Pulse Enterprise 10.1.18 - Denial of Service Exploit

Exploit for windows platform in category remote exploits Exploit Title: Disk Pulse Enterprise Server v10.1.18 - DOS, Date: 2017-10-20 Exploit Author: Ahmad Mahfouz Software Link: http://www.diskpulse.com/setups/diskpulsesrvsetupv10.1.18.exe Version: v10.1.18 Category; Windows Remote DOS CVE:...

Disk Pulse Enterprise 10.1.18 - Denial of Service

Exploit Title: Disk Pulse Enterprise Server v10.1.18 - DOS, Date: 2017-10-20 Exploit Author: Ahmad Mahfouz Software Link: http://www.diskpulse.com/setups/diskpulsesrvsetupv10.1.18.exe Version: v10.1.18 Category; Windows Remote DOS CVE: CVE-2017-15663 Author Twitter: @eln1x Description In Disk Pul...

VX Search Enterprise 10.1.12 - Denial of Service

Exploit Title: VX Search Enterprise Server v10.1.12 - Denial of Service Date: 2017-10-20 Exploit Author: Ahmad Mahfouz Software Link: http://www.vxsearch.com/setups/vxsearchsrvsetupv10.1.12.exe Version: v10.1.12 Category; Windows Remote DOS CVE: CVE-2017-15662 Author Homepage: www.unixawy.com...

Design/Logic Flaw

In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVERGETINFO packet sent to control port 9221...

CVE-2017-15667

In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVERGETINFO packet sent to control port 9221...

CVE-2017-15667

Vulnerability: Flexense SysGauge Server 3.6.18 – Control Protocol denial of service via a crafted SERVER_GET_INFO packet sent to port 9221. Impact (per sources): CVSSv2/3 indicate availability impact Partial to High, with overall base scores of 5.0 (MEDIUM) and 7.5 (HIGH). Exploits exist publicly...

SysGauge Server 3.6.18 - Denial of Service

Exploit Title: SysGauge Server 3.6.18 - DOS Date: 2017-10-20 Exploit Author: Ahmad Mahfouz Software Link: hhttp://www.sysgauge.com/setups/sysgaugesrvsetupv3.6.18.exe Version: v3.6.18 Category; Windows Remote DOS CVE: CVE-2017-15667 Author Homepage: www.unixawy.com Description: SysGauge Server...

CVE-2017-15317

AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30; AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...

Huawei AR3200 Integer Overflow Vulnerability

Huawei AR3200 Series Enterprise Router is a new generation of network products launched by Huawei. The Huawei AR3200 suffers from an integer overflow vulnerability, which is due to the device failing to adequately verify certain fields in SCTP messages. An attacker successfully exploited the...

Circle with Disney Denial of Service Vulnerability (CNVD-2017-33240)

Circle with Disney is a set of network monitoring and management devices for monitoring children's online behavior from Circle Media, Inc. in the United States. A denial of service vulnerability exists in the API daemon in Circle with Disney version 2.0.1. The vulnerability can be exploited to...

The vulnerability of the WPA2 protocol, which stems from errors in managing the cryptographic keys, allows unauthorized access to encrypted information transmitted over a wireless network.

The vulnerability of the WPA2 protocol, which provides security for Wi-Fi wireless networks, is related to errors in managing cryptographic keys. Exploiting this vulnerability allows a perpetrator within the range of a Wi-Fi network to gain access to encrypted information transmitted over the...

CVE-2017-15300

The miner statistics HTTP API in EWBF Cuda Zcash Miner Version 0.3.4b hangs on incoming TCP connections until some sort of request is made such as "GET / HTTP/1.1", which allows for a Denial of Service attack preventing a user from viewing their mining statistics by an attacker opening a session...

Intel Puma Denial of Service Vulnerability (CNVD-2017-30935)

Intel Puma is a system-on-chip SoC from Intel. Intel Puma suffers from a denial of service vulnerability that allows remote attackers to cause a denial of service performance degradation by sending a moderate amount of small packets to many TCP or UDP ports...

Asterisk Information Disclosure Vulnerability

Asterisk is a free software, open source software that implements the functionality of a telephone user switch PBX. Asterisk suffers from an information disclosure vulnerability that stems from insufficient RTCP packet validation, which allows an attacker to exploit the vulnerability to read the...

openvswitch: Buffer over-read while parsing malformed TCP, UDP and IPv6 packets

A buffer over-read was found in the Open vSwitch OvS firewall implementation. This flaw can be triggered by parsing a specially crafted TCP, UDP, or IPv6 packet. A remote attack could use this flaw to cause a Denial of Service DoS...

log4j: Socket receiver deserialization vulnerability

It was found that when using remote logging with log4j socket server the log4j server would deserialize any log event received via TCP or UDP. An attacker could use this flaw to send a specially crafted log event that, during deserialization, would execute arbitrary code in the context of the...

log4j: Socket receiver deserialization vulnerability

It was found that when using remote logging with log4j socket server the log4j server would deserialize any log event received via TCP or UDP. An attacker could use this flaw to send a specially crafted log event that, during deserialization, would execute arbitrary code in the context of the...

The vulnerability of the CDE Calendar component of the Solaris operating system, which allows a hacker to gain control over the operating system

The vulnerability of the CDE Calendar component of the Solaris operating system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain control over the Solaris operating system via TCP...