CVE-2016-10178

An issue was discovered on the D-Link DWR-932B router. HELODBG on port 39889 UDP launches the "/sbin/telnetd -l /bin/sh" command...

ALPINE-CVE-2016-7936

The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udpprint...

UBUNTU-CVE-2016-7936

The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udpprint...

OpenSSL: Invalid free in DTLS

An invalid-free flaw was found in the way OpenSSL handled certain DTLS handshake messages. A malicious DTLS client or server could send a specially crafted message to the peer, which could cause the application to crash or potentially result in arbitrary code execution...

openssl: Padding oracle in AES-NI CBC MAC check

It was discovered that OpenSSL leaked timing information when decrypting TLS/SSL and DTLS protocol encrypted records when the connection used the AES CBC cipher suite and the server supported AES-NI. A remote attacker could possibly use this flaw to retrieve plain text from encrypted packets by...

Denial of service vulnerability in ntpd

Network Time Protocol NTP is a protocol used to synchronize a computer's time to its server or clock source e.g., quartz clock, GPS, etc.. Synchronizing a computer's clock to UTC ensures that data interactions in a network can proceed smoothly.NTPD Network Time Protocol daemon is an operating...

Qemu: net: out of bounds read in net_checksum_calculate()

An out-of-bounds read-access flaw was found in the QEMU emulator built with IP checksum routines. The flaw could occur when computing a TCP/UDP packet's checksum, because a QEMU function used the packet's payload length without checking against the data buffer's size. A user inside a guest could...

Multiple Denial of Service Vulnerabilities in Hollysys' K-Series Master Controller Module K-CU01

Founded in 1993, HollySys is a provider of automation and information technology solutions. Multiple denial of service vulnerabilities exist in Hollysys' K-Series Master Controller module K-CU01. 1 A malformed ulMessageSize field in the UdpComHeader structure is malformed to send malformed packet...

IKEv1 protocol is vulnerable to DoS amplification attack

A traffic amplification flaw was found in the Internet Key Exchange version 1 IKEv1 protocol. A remote attacker could use a libreswan server with IKEv1 enabled in a network traffic amplification denial of service attack against other hosts on the network by sending UDP packets with a spoofed sour...

Cisco NX-OS Software Information Disclosure Vulnerability (CNVD-2016-09464)

Cisco NX-OS is a data center-class operating system from Cisco that embodies modular design, perpetuity, and maintainability. An information disclosure vulnerability exists in versions prior to Cisco NX-OS 7.07.0has allowed remote attackers to obtain sensitive information via TCP or UDP...

Cisco IOS and IOS XE Software Denial of Service Vulnerability (CNVD-2016-08395)

Cisco IOS and IOS XE Software are operating systems developed by Cisco for its network devices.Internet Key Exchange version 1 IKEv1 Fragmentation is one of the protocols used to set up security associations SAs in the IPsec protocol suite. . A denial of service vulnerability exists in IKEv1...

openssl: DTLS memory exhaustion DoS when messages are not removed from fragment buffer

It was discovered that the Datagram TLS DTLS implementation could fail to release memory in certain cases. A malicious DTLS client could cause a DTLS server using OpenSSL to consume an excessive amount of memory and, possibly, exit unexpectedly after exhausting all available memory...

openssl: DTLS replay protection bypass allows DoS against DTLS connection

A flaw was found in the Datagram TLS DTLS replay protection implementation in OpenSSL. A remote attacker could possibly use this flaw to make a DTLS server using OpenSSL to reject further packets sent from a DTLS client over an established DTLS connection...

The vulnerability of the OpenSSL library, which allows a hacker to trigger a service failure

The vulnerability of the Anti-Replay function in the DTLS library of OpenSSL is related to the incorrect use of large port numbers. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures using fake DTLS records...

ALPINE-CVE-2016-2181

The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service false-positive packet drops via spoofed DTLS records, related to reclayerd1...

DEBIAN-CVE-2016-2181

The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service false-positive packet drops via spoofed DTLS records, related to reclayerd1...

ALPINE-CVE-2016-2179

The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-order messages, which allows remote attackers to cause a denial of service memory consumption by maintaining many crafted DTLS sessions simultaneously, related to...

CVE-2016-1263

Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3X48 before 12.3X48-D30, 13.3 before 13.3R9-S1, 14.1 before 14.1R7, 14.2 before 14.2R6, 15.1 before 15.1F2-S5, 15.1F4 before 15.1F4-S2, 15.1R before 15.1R2-S3, 15.1 before 15.1R3, and 15.1X49 before 15.1X49-D40 allow...

USN-3070-4 linux-lts-xenial vulnerabilities

USN-3070-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. A missing permission check when settings ACLs was discovered in nfsd. A local user cou...

Ubuntu: Security Advisory (USN-3071-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...