CVE-2023-22881

Zoom clients before version 5.13.5 contain a STUN parsing vulnerability. A malicious actor could send specially crafted UDP traffic to a victim Zoom client to remotely cause the client to crash, causing a denial of service...

UBUNTU-CVE-2023-1390

A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipclinkxmit hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in the CPU utilization...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation. A security vulnerability exists in the Linux kernel, which stems from a problem with the while loop in tipclinkxmit when trying to parse a SKB that is not in a queue, and can be exploited to cause ...

Zoom Client 缓冲区错误漏洞

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A buffer error vulnerability exists in Zoom Client versions prior to 5.13.5, which can be exploited by an attacker to send specially crafted UDP traffic to a victim Zoom client, remotely causing...

Zoom Client 缓冲区错误漏洞

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A buffer error vulnerability exists in Zoom Client versions prior to 5.13.5, which can be exploited by an attacker to send specially crafted UDP traffic to a victim Zoom client, remotely causing...

DEBIAN-CVE-2023-28450

An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020...

UBUNTU-CVE-2023-28450

An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020...

The vulnerability of the User Datagram Protocol (UDP) implementation in the Cisco IOS XE access point of the Catalyst 9100 model, which is related to uncontrolled resource consumption, allows a hacker to cause a service failure.

The vulnerability of the User Datagram Protocol UDP implementation in the Cisco IOS XE access point of the Catalyst 9100 model is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

CVE-2023-22750

There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities result in the...

SUSE CVE-2002-2443

schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 aka krb5 before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service CPU and bandwidth consumption via a forged packet that triggers a communication loop, as...

SUSE CVE-2004-0558

The Internet Printing Protocol IPP implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service service hang via a certain UDP packet to the IPP port...

SUSE CVE-2005-1175

Heap-based buffer overflow in the Key Distribution Center KDC in MIT Kerberos 5 krb5 1.4.1 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a certain valid TCP or UDP request...

SUSE CVE-2005-3252

Stack-based buffer overflow in the Back Orifice BO preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet...

SUSE CVE-2005-3275

The NAT code 1 ipnatprototcp.c and 2 ipnatprotoudp.c in Linux kernel 2.6 before 2.6.13 and 2.4 before 2.4.32-rc1 incorrectly declares a variable to be static, which allows remote attackers to cause a denial of service memory corruption by causing two packets for the same protocol to be NATed at t...

SUSE CVE-2007-2297

The SIP channel driver chansip in Asterisk before 1.2.18 and 1.4.x before 1.4.3 does not properly parse SIP UDP packets that do not contain a valid response code, which allows remote attackers to cause a denial of service crash...

SUSE CVE-2010-4251

The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service memory consumption by sending a large amount of network traffic, as demonstrated by netperf UDP tests...

SUSE CVE-2010-4342

The aunincoming function in net/econet/afeconet.c in the Linux kernel before 2.6.37-rc6, when Econet is enabled, allows remote attackers to cause a denial of service NULL pointer dereference and OOPS by sending an Acorn Universal Networking AUN packet over UDP...

SUSE CVE-2011-0321

librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to 1 register or 2 unregister RPC services, and consequently cause a denial o...

SUSE CVE-2012-5958

Stack-based buffer overflow in the uniqueservicename function in ssdp/ssdpserver.c in the SSDP parser in the portable SDK for UPnP Devices aka libupnp, formerly the Intel SDK for UPnP devices before 1.6.18 allows remote attackers to execute arbitrary code via a UDP packet with a crafted string th...

SUSE CVE-2012-5960

Stack-based buffer overflow in the uniqueservicename function in ssdp/ssdpserver.c in the SSDP parser in the portable SDK for UPnP Devices aka libupnp, formerly the Intel SDK for UPnP devices before 1.6.18 allows remote attackers to execute arbitrary code via a long UDN aka upnp:rootdevice field ...