398 matches found
Design/Logic Flaw
A vulnerability in the fragmentation handling code of tunnel protocol packets in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected system to reload, resulting in a denial of service DoS condition. This vulnerability is due to the improper handling of large...
CVE-2023-20027 Cisco IOS XE Software Virtual Fragmentation Reassembly Denial of Service Vulnerability
A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly VFR feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper reassembly of large packe...
PT-2023-2218 · Cisco · Cisco Ios Xe
Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly VFR feature could allow an unauthenticated, remote attacker to cause a denial of service DoS...
PT-2023-1888 · Cisco · Cisco Ios Xe
Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the fragmentation handling code of tunnel protocol packets could allow an unauthenticated, remote attacker to cause an affected system to reload, resulting ...
PT-2023-1665 · Microsoft · Windows 11 +7
Name of the Vulnerable Software and Affected Versions: Windows Server 2008 versions prior to Mar 14, 2023 Windows Server 2012 versions prior to Mar 14, 2023 Windows Server 2016 versions prior to Mar 14, 2023 Windows 10 versions prior to Mar 14, 2023 Windows 11 versions prior to Mar 14, 2023 Windo...
K65615624: BIG-IP FastL4 TMM vulnerability CVE-2017-6166
Security Advisory Description In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel TMM may crash when processing fragmented packets. This vulnerability affects TMM through a virtual server...
K36300805: BIG-IP FastL4 profile vulnerability
Security Advisory Description Under certain conditions for BIG-IP systems using FastL4 profiles, when the Reassemble IP Fragments option is disabled default, a specific sequence of fragmented packets may restart the Traffic Management Microkernel TMM. Impact An attacker may be able to disrupt...
SUSE CVE-2002-0510
The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, which could allow remote attackers to determine that a target system is running Linux...
SUSE CVE-2004-0949
The smbrecvtrans2 function call in the samba filesystem smbfs in Linux kernel 2.4 and 2.6 does not properly handle the re-assembly of fragmented packets correctly, which could allow remote samba servers to 1 read arbitrary kernel information or 2 raise a counter value to an arbitrary number by...
SUSE CVE-2005-0209
Netfilter in Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service kernel crash via crafted IP packet fragments...
SUSE CVE-2007-1365
Buffer overflow in kern/uipcmbuf2.c in OpenBSD 3.9 and 4.0 allows remote attackers to execute arbitrary code via fragmented IPv6 packets due to "incorrect mbuf handling for ICMP6 packets." NOTE: this was originally reported as a denial of service...
SUSE CVE-2008-3145
The fragmentaddwork function in epan/reassemble.c in Wireshark 0.8.19 through 1.0.1 allows remote attackers to cause a denial of service crash via a series of fragmented packets with non-sequential fragmentation offset values, which lead to a buffer over-read...
SUSE CVE-2009-1574
racoon/isakmpfrag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denial of service crash via crafted fragmented packets without a payload, which triggers a NULL pointer dereference...
SUSE CVE-2011-1927
The ipexpire function in net/ipv4/ipfragment.c in the Linux kernel before 2.6.39 does not properly construct ICMPTIMEEXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service invalid pointer dereference via crafted fragmented packets...
SUSE CVE-2012-0043
Buffer overflow in the reassemblemessage function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a series of fragmented RLC...
SUSE CVE-2012-2744
net/ipv6/netfilter/nfconntrackreasm.c in the Linux kernel before 2.6.34, when the nfconntrackipv6 module is enabled, allows remote attackers to cause a denial of service NULL pointer dereference and system crash via certain types of fragmented IPv6 packets...
SUSE CVE-2015-5156
The virtnetprobe function in drivers/net/virtionet.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service buffer overflow and memory corruption via a crafted sequence of fragmented packets...
The vulnerability of the CONFIG_IP_DEFRAG function in the implementation of the IP packet defragmentation algorithm for U-Boot bootloaders of embedded Linux-based operating systems allows a hacker to cause a service failure.
The vulnerability of the CONFIGIPDEFRAG function in the implementation of the IP packet defragmentation algorithm for U-Boot bootloaders of embedded Linux operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious...
CVE-2022-22185
A vulnerability in Juniper Networks Junos OS on SRX Series, allows a network-based unauthenticated attacker to cause a Denial of Service DoS by sending a specific fragmented packet to the device, resulting in a flowd process crash, which is responsible for packet forwarding. Continued receipt and...
USN-5242-1: Open vSwitch vulnerability
It was discovered that Open vSwitch incorrectly handled certain fragmented packets. A remote attacker could possibly use this issue to cause Open vSwitch to consume resources, leading to a denial of service...