1921 matches found
CVE-2021-3594
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...
QEMU 缓冲区错误漏洞
QEMU is a suite of analog processor software. A security vulnerability exists in QEMU that stems from the use of memory outside of the working mbuf buffer by the function udp6input when processing udp packets from incoming guests that are smaller than the size of the udphdr structure. An attacker...
Backdoor.Win32.Whirlpool.a Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/90171763d1cc62102b08482bac54ea8b.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Whirlpool.a Vulnerability: Remote Buffer Overflow - UDP Datagram Description: The...
Vulnerability fixed in Nginx
A vulnerability has been fixed in Nginx. The vulnerability allows a remote malicious party the ability to cause a denial-of-service cause and potentially execute arbitrary code by sending a specially prepared DNS response. Nginx is only vulnerable if the "resolver directive" is used in the...
F5 NGINX Controller 安全漏洞
F5 NGINX Controller is a centralized monitoring and management platform for NGINX from F5. The platform supports the management of multiple NGINX instances using a visual interface. A security vulnerability exists in F5 NGINX Controller that allows an attacker to forge UDP packets from a DNS serv...
UBUNTU-CVE-2021-23017
A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact...
Backdoor.Win32.Singu.a Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/c7aabf5d248c6974b4cea6c070d6d441.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Singu.a Vulnerability: Remote Stack Buffer Overflow UDP Datagram Description: The...
CVE-2021-20988
In Hilscher rcX RTOS versions prios to V2.1.14.1 the actual UDP packet length is not verified against the length indicated by the packet. This may lead to a denial of service of the affected device...
Hilscher rcX RTOS 缓冲区错误漏洞
The Hilscher rcX RTOS is an operating system from the German company Hilscher. A full-featured multitasking operating system developed specifically for the netX series. A security vulnerability exists in Hilscher rcX RTOS prior to version 2.1.14.1. The vulnerability stems from the program not...
CVE-2021-27573
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can execute arbitrary code via crafted UDP packets with no prior authorization or authentication...
CVE-2021-27572
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Authentication Bypass can occur via Packet Replay. Remote unauthenticated users can execute arbitrary code via crafted UDP packets even when passwords are set...
Emote Remote Mouse 安全漏洞
Remote Mouse is an application. A remote mouse. A security vulnerability exists in Emote Remote Mouse version 4.0.0.0 and prior versions that originates from an unauthenticated remote user who can execute arbitrary code via a crafted UDP packet without prior authorization or authentication. An...
Emote Remote Mouse 安全漏洞
Remote Mouse is an application. A remote mouse. A security vulnerability exists in Emote Remote Mouse version 4.0.0.0 and prior versions, which stems from Authentication bypass can occur via packet replay. Even if a password is set, a remote unauthenticated user can execute arbitrary code via a...
Backdoor.Win32.Agent.kte Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/7c92e59e776355734781bbf05571d0f0.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.kte Vulnerability: Remote Stack Buffer Overflow UDP Datagram Description: The...
UBUNTU-CVE-2021-21210
Inappropriate implementation in Network in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially access local UDP ports via a crafted HTML page...
Datagram Transport Layer Security (DTLS) Protocol Detection
Detection of services supporting the Datagram Transport Layer Security DTLS protocol. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
PT-2021-8037 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the validation of UDP retransmission in the Linux kernel's NFS module. Specifically, it concerns the xprt calc majortimeo function, where a shift out-of-bounds...
Aruba Access Points 缓冲区错误漏洞
Aruba Instant is a cloud-hosted controller-less wireless access point. Aruba Instant has a buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the underlying operating system by sending specially crafted packets to the PAPI UDP port...
CVE-2020-5015
IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to cause a denial of service by sending malformed UDP requests. IBM X-Force ID: 193486...
Threat Advisory - DCCP for (D)DoS
Recent attacks against Akamai customers have leveraged a networking protocol known as protocol 33, or Datagram Congestion Control Protocol DCCP...