Astra Linux - уязвимость в grub2

Integer underflow in grubnetrecvip4packets; A malicious IP packet can cause an integer underflow in the grubnetrecvip4packets function, affecting the rsm-totallen value. Under certain circumstances, the totallen value may wrap around to a small integer number, which will be used in memory...

EUVD-2006-1672

Malware in sbrugna...

CVE-2022-28733

CVE-2022-28733 is a real grub2 vulnerability: an integer underflow in grub_net_recv_ip4_packets when processing IPv4 packets can cause a small rsm->total_len to wrap, potentially triggering a write past the end of a memory buffer. Public advisories (Debian DSA, Red Hat/NVD references) and vend...

CVE-2022-28733 Integer underflow in grub_net_recv_ip4_packets

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

[SECURITY] [DLA 3410-1] openvswitch security update

Debian LTS Advisory DLA-3410-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin May 01, 2023 https://wiki.debian.org/LTS Package : openvswitch Version : 2.10.7+ds1-0+deb10u4 CVE ID : CVE-2023-1668 Debian Bug : 1034042 David Marchand discovered that Open vSwitch, a...

CVE-2021-40116

Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...

CVE-2021-40116

Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...

Input validation

Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...

CVE-2019-12256 - VxWorks IPv4 Options Buffer Overflow

This vulnerability can be triggered by a specially crafted IP packet sent to the target device, even as a broadcast or multicast packet. It does not require any specific application or configuration to be running on the device, and it affects any device running VxWorks v6.9.4 or above with a...

Cisco IOS Software for Cisco Aironet Access Points Information Disclosure Vulnerability

A vulnerability in the packet processing code of Cisco IOS Software for Cisco Aironet Access Points could allow an unauthenticated, adjacent attacker to retrieve content from memory on an affected device, which could lead to the disclosure of confidential information. The vulnerability is due to...

Juniper Networks Junos OS PFE Denial of Service Vulnerability

Denial of Service Vulnerability through crafted IP packet. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; if...

CVE-2014-0617

Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service flowd crash via a crafted IP packet...

Input validation

Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service flowd crash via a crafted IP packet...

CVE-2014-0617

Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service flowd crash via a crafted IP packet...

Cisco IOS Software Data-Link Switching Vulnerability (cisco-sa-20110928-dlsw)

Cisco IOS Software contains a memory leak vulnerability in the Data-Link Switching DLSw feature that could result in a device reload when processing crafted IP Protocol 91 packets. Cisco has released free software updates that address this vulnerability. TRUSTED...

CVE-2008-0028

Unspecified vulnerability in Cisco PIX 500 Series Security Appliance and 5500 Series Adaptive Security Appliance ASA before 7.236 and 8.03, when the Time-to-Live TTL decrement feature is enabled, allows remote attackers to cause a denial of service device reload via a crafted IP packet...

CVE-2006-1671

Control cards for Cisco Optical Networking System ONS 15000 series nodes before 20060405 allow remote attackers to cause a denial of service card reset via 1 a "crafted" IP packet to a device with secure mode EMS-to-network-element access, aka bug ID CSCsc51390; 2 a "crafted" IP packet to a devic...

CVE-2006-1671

Control cards for Cisco Optical Networking System ONS 15000 series nodes before 20060405 allow remote attackers to cause a denial of service card reset via 1 a "crafted" IP packet to a device with secure mode EMS-to-network-element access, aka bug ID CSCsc51390; 2 a "crafted" IP packet to a devic...

CVE-2005-2280

Cisco Security Agent CSA 4.5 allows remote attackers to cause a denial of service system crash via a crafted IP packet...

CVE-2005-2280

Cisco Security Agent CSA 4.5 allows remote attackers to cause a denial of service system crash via a crafted IP packet...