Mandriva Update for kernel MDVSA-2008:112 (kernel)

Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2008:112 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CVE-2009-0631

Cisco IOS 12.0–12.4 is affected when configured with (1) SLAs Responder, (2) SIP, (3) H.323 Annex E Call Signaling Transport, or (4) MGCP. A crafted UDP packet can cause the input queue on the inbound interface to become blocked, resulting in a denial of service. The connected sources confirm the...

Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1

Ubuntu Update for Linux kernel vulnerabilities USN-659-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6591.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks...

kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID

Buffer overflow in net/sctp/smstatefuns.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN aka FORWARD-TSN chunk with a large stream ID...

kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID

Buffer overflow in net/sctp/smstatefuns.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN aka FORWARD-TSN chunk with a large stream ID...

kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH

sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service OOPS via an INIT-ACK that states the peer does not support AUTH, which causes the sctpprocessinit function to clean up active transports and triggers the OOPS when the T1-Init timer expires...

kernel: sctp: Fix kernel panic while process protocol violation parameter

The Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.27 does not properly handle a protocol violation in which a parameter has an invalid length, which allows attackers to cause a denial of service panic via unspecified vectors, related to...

CVE-2008-5179

Unspecified vulnerability in Microsoft Office Communications Server OCS, Office Communicator, and Windows Live Messenger allows remote attackers to cause a denial of service crash via a crafted Real-time Transport Control Protocol RTCP receiver report packet...

CVE-2008-5179

Unspecified vulnerability in Microsoft Office Communications Server OCS, Office Communicator, and Windows Live Messenger allows remote attackers to cause a denial of service crash via a crafted Real-time Transport Control Protocol RTCP receiver report packet...

Linux kernel dccp_setsockopt_change() integer overflow

Integer overflow in the dccpsetsockoptchange function in net/dccp/proto.c in the Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial of service panic via a crafted integer value, related to Change L and Chan...

RHEL 5 : kernel (RHSA-2008:0957)

Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 12th November 2008 The original packages distributed wi...

AZL-6513 CVE-2008-4609 affecting package kernel for versions less than 5.10.78.1-1

The TCP implementation in 1 Linux, 2 platforms based on BSD Unix, 3 Microsoft Windows, 4 Cisco products, and probably other operating systems allows remote attackers to cause a denial of service connection queue exhaustion via multiple vectors that manipulate information in the TCP state table, a...

DEBIAN-CVE-2008-4609

The TCP implementation in 1 Linux, 2 platforms based on BSD Unix, 3 Microsoft Windows, 4 Cisco products, and probably other operating systems allows remote attackers to cause a denial of service connection queue exhaustion via multiple vectors that manipulate information in the TCP state table, a...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise MRG 1.0. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

kernel: sctp_getsockopt_hmac_ident information disclosure

The sctpgetsockopthmacident function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel memory, which allows loc...

Linux kernel sctp_setsockopt_auth_key() integer overflow

Integer overflow in the sctpsetsockoptauthkey function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel 2.6.24-rc1 through 2.6.26.3 allows remote attackers to cause a denial of service panic or possibly have unspecified other impact via a...

wireshark: infinite loop in the NCP dissector

Wireshark formerly Ethereal 0.9.7 through 1.0.2 allows attackers to cause a denial of service hang via a crafted NCP packet that triggers an infinite loop...

Code injection

Cisco IOS 12.2 and 12.4, when NAT Skinny Call Control Protocol SCCP Fragmentation Support is enabled, allows remote attackers to cause a denial of service device reload via segmented SCCP messages, aka Cisco Bug ID CSCsi17020, a different vulnerability than CVE-2008-3810...

Cisco IOS NAT Skinny Call控制协议多个远程拒绝服务漏洞

BUGTRAQ ID: 31359 CVE ID: CVE-2008-3810 CVE-2008-3811 CNCVE ID：CNCVE-20083810 CNCVE-20083811 Cisco IOS Skinny Call控制协议是Cisco专利的语音通讯协定，被用来促进在 CallManager与IP电话之间的来电管理功能。 Cisco IOS SCCP协议存在多个问题，远程攻击者可以利用漏洞对服务进行拒绝服务攻击。 Skinny Call Control Protocol SCCP在SCCP客户端和呼叫管理器Call Manager之间启用语音通信，通常CM默认在TCP...

Cisco IOS NAT Skinny Call Control Protocol Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...