388 matches found
Updated srtp packages fix security vulnerability
Srtp before 1.5.3 is vulnerable to a potential DoS attack due to lack of bounds checking on RTP header CSRC count and extension header length CVE-2015-6360...
Cisco Aggregation Services Router 5000 and ASR 5500 System Software Denial of Service Vulnerability
The Cisco Aggregation Services Router 5000 and ASR 5500 System Software are Cisco's 5000 series wireless controller products. A security vulnerability in the Cisco ASR 5000 and ASR 5500 System Software fails to properly validate the length field in the packet header, allowing remote attackers to...
tcpdump denial of service vulnerability (CNVD-2015-01978)
tcpdump is a network protocol analysis tool. The rpki-rtrpduprint function in tcpdump print-rpki-rtr.c fails to properly check header field lengths in RPKI-RTR Protocol Data Units PDUs, allowing attackers to conduct denial of service or arbitrary code execution attacks...
CVE-2015-2153
The rpkirtrpduprint function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read or write and crash via a crafted header length in an RPKI-RTR Protocol Data Unit PDU...
UBUNTU-CVE-2015-2153
The rpkirtrpduprint function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read or write and crash via a crafted header length in an RPKI-RTR Protocol Data Unit PDU...
DEBIAN-CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
Cisco IronPort ESA Subject Header Length Denial of Service Vulnerability
A vulnerability in Subject header length processing on Cisco IronPort Email Security Appliance ESA could allow an unauthenticated, remote attacker to cause a limited denial of service DoS condition on an affected platform. The vulnerability occurs because the appliance does not limit the length o...
Be BeOS 4.0/4.5/5.0 IP Packet Length Field Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1100/info The networking process in BeOS can crash if certain malformed packets are transmitted to it. If the length field is set to a number less than the total length of the IP and protocol TCP or UDP headers alone, the...
tcpdump 3.4 Protocol Four and Zero Header Length Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/313/info A vulnerability in tcpdump causes it to enter an infinite loop within the procedure ipprint from the file printip.c when it receives a packet with IP protocol number four and a zero header length and it tries to...
DEBIAN-CVE-2013-4348
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
PT-2013-4965 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.13 Description: The issue allows remote attackers to cause a denial of service, resulting in an infinite loop. This can be achieved by sending a packet with IPIP encapsulation that contains a small value in th...
Rockwell RNA Message Negative Header Length
...
DEBIAN-CVE-2012-4929
The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differenc...
CVE-2011-1710
Multiple integer overflows in the HTTP server in the Novell XTier framework 3.1.8 allow remote attackers to cause a denial of service service crash or possibly execute arbitrary code via crafted header length variables...
CVE-2011-1710
Multiple integer overflows in the HTTP server in the Novell XTier framework 3.1.8 allow remote attackers to cause a denial of service service crash or possibly execute arbitrary code via crafted header length variables...
LHa Vuffer Overflow Vulnerability in Testing and Extracting Process
Overview LHa for UNIX does not handle the header length information properly when testing or extracting an archive, which could lead to buffer overflow. Impact An attacker could execute arbitrary code with the privilege of the user running LHa. Solution Please refer to the 'Vendor Information'...
Code injection
The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...
CVE-2007-2039
The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...
CVE-2007-2038
The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...
DEBIAN-CVE-2007-0897
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service file descriptor consumption and failed scans via CAB archives with a cabinet header record length of zero, which causes a function to return...