Lucene search
+L

790 matches found

RedHat Linux
RedHat Linux
added 2017/10/02 5:18 p.m.8 views

dnsmasq: stack buffer overflow in the DHCPv6 code

A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code...

9.8CVSS7.6AI score0.83638EPSS
Exploits6References6
RedHat Linux
RedHat Linux
added 2017/10/02 4:19 p.m.4 views

dnsmasq: information leak in the DHCPv6 relay code

An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data...

5.9CVSS7.1AI score0.67549EPSS
Exploits5References6
OSV
OSV
added 2017/09/29 1:34 a.m.4 views

CVE-2017-12240

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system. The attacker could also cause an affected system to reload,...

9.8CVSS6.4AI score0.13883EPSS
Exploits0References6
Broadcom
Broadcom
added 2017/09/29 12:0 a.m.8 views

BSA-2017-443

Security Advisory ID : BSA-2017-443 Component : DHCP Revision : 1.0: Interim A resource-consumption flaw was discovered in the DHCP server. dhcpd did not restrict the number of open connections to OMAPI and failover ports. A remote attacker able to establish TCP connections to one of these ports...

7.1CVSS7AI score0.73622EPSS
Exploits0
CNVD
CNVD
added 2017/09/14 12:0 a.m.6 views

D-Link DIR-850L REV.A and REV.B DHCP Client Remote Code Execution Vulnerability

D-Link DIR-850L REV.A and REV.B are both wireless router products from AUO D-Link.DHCP client is one of the DHCP clients. A security vulnerability exists in the DHCP client on D-Link DIR-850L REV.A and REV.B devices using firmware FW114WWb07h2abbeta1 and earlier and firmware FW208WWb02 and earlie...

10CVSS9.4AI score0.04923EPSS
Exploits1References1
CNVD
CNVD
added 2017/09/13 12:0 a.m.14 views

Microsoft Windows DHCP Server Remote Code Execution Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. A remote code execution vulnerability exists in the Server DHCP service in Microsoft Windows. An attacker could exploit this vulnerability by sending specially crafted packets to the DHCP failover serve...

9.8CVSS9.4AI score0.27499EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2017/08/11 12:0 a.m.2 views

PT-2017-2981 · Cisco · Cisco Ios Xe +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS versions 12.2 through 15.6 Cisco IOS XE Software affected versions not specified Description: The DHCP relay subsystem of the affected software contains a vulnerability that could allow an unauthenticated, remote attacker to execute...

10CVSS8.7AI score0.13883EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2017/08/01 3:45 p.m.9 views

freeradius: Infinite read in dhcp_attr2vp()

An out-of-bounds read flaw was found in the way FreeRADIUS server handled decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request...

7.5CVSS7.4AI score0.02824EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/07/18 3:41 a.m.5 views

freeradius: Out-of-bounds read in fr_dhcp_decode_options()

An out-of-bounds read flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request...

7.5CVSS7.4AI score0.03635EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/07/18 3:41 a.m.5 views

freeradius: Out-of-bounds read in fr_dhcp_decode() when decoding option 63

An out-of-bounds read flaw was found in the way FreeRADIUS server handled decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request...

7.5CVSS7.4AI score0.03381EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/07/18 3:41 a.m.4 views

freeradius: Memory leak in fr_dhcp_decode()

A memory leak flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to cause the FreeRADIUS server to consume an increasing amount of memory resources over time, possibly leading to a crash due to memory exhaustion, by sending speciall...

7.5CVSS7.4AI score0.03368EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/07/18 3:41 a.m.7 views

freeradius: Memory leak in decode_tlv()

A memory leak flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to cause the FreeRADIUS server to consume an increasing amount of memory resources over time possibly leading to a crash due to memory exhaustion...

7.5CVSS7.4AI score0.03368EPSS
Exploits0References5
OSV
OSV
added 2017/07/17 5:29 p.m.3 views

DEBIAN-CVE-2017-10982

An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in frdhcpdecodeoptions" and a denial of service...

7.5CVSS7AI score0.03635EPSS
Exploits0References1
OSV
OSV
added 2017/07/17 5:29 p.m.3 views

DEBIAN-CVE-2017-10986

An FR-GV-303 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Infinite read in dhcpattr2vp" and a denial of service...

7.5CVSS8.4AI score0.02824EPSS
Exploits0References1
OSV
OSV
added 2017/07/17 12:0 a.m.4 views

UBUNTU-CVE-2017-10982

An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in frdhcpdecodeoptions" and a denial of service...

7.5CVSS7.2AI score0.03635EPSS
Exploits0References5
pentestit
pentestit
added 2017/07/16 4:28 p.m.27 views

NetworkRecon: PowerShell to Identify Network Vulnerabilities!

PenTestIT RSS Feed As PowerShell becomes more prevalent in the Windows environment, so will it's use for vulnerability assessment and penetration tests. I have covered a few of them earlier such as PowerSploit, PSAttack. However none of the ones I mentioned help you detect network vulnerabilities...

7.5AI score
Exploits0
Fedora
Fedora
added 2017/07/08 4:54 p.m.27 views

[SECURITY] Fedora 26 Update: dhcp-4.3.5-7.fc26

DHCP Dynamic Host Configuration Protocol...

7.5CVSS0.8AI score0.18157EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2017/06/15 12:0 a.m.8 views

The vulnerability of the Junos operating system’s jdhcpd daemon allows a attacker to cause the application to terminate and restart, thereby triggering a service failure.

The vulnerability of the Junos operating system’s jdhcpd component is related to improper data processing. Exploiting this vulnerability can allow a remote attacker to cause the application to stop working and restart, as well as trigger a service failure using a specially crafted DHCPv6 packet...

7.8CVSS7.3AI score0.02132EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2017/06/06 12:0 a.m.5 views

Wireshark DHCP Parser Buffer Overflow Vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A buffer overflow vulnerability exists in the Wireshark DHCP parser due to a failure to...

7.5CVSS9.4AI score0.02852EPSS
Exploits0References1
OSV
OSV
added 2017/06/02 5:29 a.m.3 views

ALPINE-CVE-2017-9351

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by extracting the Vendor Class Identifier more carefully...

7.5CVSS6.7AI score0.02852EPSS
Exploits0References1
Rows per page
Query Builder