CVE-2018-15462

A vulnerability in the TCP ingress handler for the data interfaces that are configured with management access to Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an increase in CPU and memory usage, resulting in a denial of service DoS condition...

USN-3956-1 bind9 vulnerability

It was discovered that Bind incorrectly handled limiting the number of simultaneous TCP clients. A remote attacker could possibly use this issue to cause Bind to consume resources, leading to a denial of service...

The vulnerability of the TCP/IP protocol implementation in the Windows operating system allows a perpetrator to compromise the confidentiality of the protected information.

The vulnerability of the TCP/IP protocol implementation in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality of protected information by using specially crafted fragmented IP...

kernel: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service

An error in the "sctpmakechunk" function net/sctp/smmakechunk.c when handling SCTP, packet length can be exploited by a malicious local user to cause a kernel crash and a DoS...

CVE-2019-1599

A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on the affected device. The vulnerability is due to an issue with allocating and freeing memory buffers in the network stack. An attacker could...

UBUNTU-CVE-2019-7314

liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash Segmentation fault or possibly have unspecified other impact...

PowerDNS Recursor Lua Security Policy Bypass Vulnerability

PowerDNS Recursor aka pdnsrecursor is a domain name resolution server from the Dutch company PowerDNS. A security feature issue vulnerability exists in PowerDNS Recursor versions 4.1.4 through 4.1.8, which arises from the program failing to implement the Lua hooks mechanism for queries received...

DEBIAN-CVE-2019-3806

An issue has been found in PowerDNS Recursor versions after 4.1.3 before 4.1.9 where Lua hooks are not properly applied to queries received over TCP in some specific combination of settings, possibly bypassing security policies enforced using Lua...

The vulnerability of the Oracle Solaris operating system’s kernel, which allows a intruder to trigger a service failure

The vulnerability of the Oracle Solaris operating system’s kernel is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the TCP protocol...

The vulnerability of microprogrammed software in Siemens Simatic S7-1200 programmable logic controllers arises from the exceeding of specified resource limits. This allows a malicious entity to exhaust available network connections and cause failures in the device’s network communication capabilities.

The vulnerability of Siemens Simatic S7-1200 programmable logic controllers’ microprogramming software is related to the overuse of resources. Exploiting this vulnerability can allow an attacker to exhaust available network connections and cause failures in the device’s network communication by...

Denial Of Service

The kernel packages is vulnerable to use-after-free flaw. Linux kernel's Datagram Congestion Control Protocol DCCP implementation has a flaw in freeing SKB socket buffer resources for a DCCPPKTREQUEST packet when the IPV6RECVPKTINFO option is set on the socket, allowing a local user with little...

Denial Of Service (DoS)

The kernel-rt package is vulnerable to denial of serviceDoS. The attack exists because of a use-after-free flaw in the way the Linux kernel's Datagram Congestion Control Protocol DCCP implementation freed SKB socket buffer resources for a DCCPPKTREQUEST packet when the IPV6RECVPKTINFO option is s...

CVE-2018-0282

A vulnerability in the TCP socket code of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to a state condition between the socket state and the transmission control block TCB state. While this...

The vulnerability of the ICMP packet processing module in the XNU kernel of iOS and macOS operating systems allows attackers to execute arbitrary code.

The vulnerability of the ICMP packet processing module in the XNU kernel of iOS and macOS operating systems is caused by an overflow in the buffer in the “stack”. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially crafted ICMP packets...

Siemens SIMATIC S7-400 Input Validation Vulnerability

Siemens SIMATIC S7-400 is a programmable logic controller for manufacturing and process automation from Siemens, Germany. An input validation vulnerability exists in the Siemens SIMATIC S7-400. An attacker can exploit this vulnerability by sending specially crafted packets to TCP port 102 to caus...

kernel: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service

An error in the "sctpmakechunk" function net/sctp/smmakechunk.c when handling SCTP, packet length can be exploited by a malicious local user to cause a kernel crash and a DoS...

kernel: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service

An error in the "sctpmakechunk" function net/sctp/smmakechunk.c when handling SCTP, packet length can be exploited by a malicious local user to cause a kernel crash and a DoS...

PT-2018-1975 · Apple · Watchos +4

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 12 macOS versions prior to 10.14 tvOS versions prior to 12 watchOS versions prior to 5 Description: A memory corruption issue was addressed with improved validation. The issue is related to a buffer overflow in the heap ...

Microsoft Windows TCP/IP Information Disclosure Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. Microsoft Windows suffers from an information disclosure vulnerability. An attacker could exploit this vulnerability to obtain information...

CVE-2018-0421

A vulnerability in TCP connection management in Cisco Prime Access Registrar could allow an unauthenticated, remote attacker to cause a denial of service DoS condition when the application unexpectedly restarts. The vulnerability is due to incorrect handling of incoming TCP SYN packets to specifi...