268 matches found
Cisco Firepower Detection Engine Denial of Service Vulnerability
Cisco Firepower is a family of firewall products. Cisco Firepower System Software has a security vulnerability in the inspection engine restructuring of HTTP packets, which can be exploited by an unauthenticated, remote attacker to cause a denial of service...
Cisco Firepower Detection Engine HTTP Denial of Service Vulnerability
A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition due to the Snort process unexpectedly restarting. The vulnerability is due to improper handling of an...
Cisco Firepower Detection Engine HTTP Denial of Service Vulnerability
A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition due to the Snort process unexpectedly restarting. The vulnerability is due to improper handling of an...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the...
SQLChop - SQL Injection Detection Engine
SQLChop is a novel SQL injection detection engine built on top of SQL tokenizing and syntax analysis. Web input URLPath, body, cookie, etc. will be first decoded to the raw payloads that web app accepts, then syntactical analysis will be performed on payload to classify result. The algorithm behi...
Sophos Anti-Virus PDF Handling Stack Buffer Overflow
A stack buffer overflow vulnerability has been reported in Sophos Anti-Virus and Endpoint Protection. The vulnerability is due to an error when handling encrypted PDF files. A remote attacker can exploit this issue by sending a specially crafted PDF file to an affected user. The vulnerability is...
CVE-2007-4787
The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed 1 CAB, 2 LZH, and 3 RAR files with modified headers, which might allow remote attackers to bypass malware detection...
CVE-2007-4787
CVE-2007-4787 affects Sophos Anti-Virus (prior to 2.49.0) where the virus detection engine fails to properly process malformed CAB, LZH, and RAR archives with modified headers, potentially allowing remote attackers to bypass malware detection. The vulnerability resides in the archive-processing l...