UBUNTU-CVE-2014-0100

Race condition in the inetfragintern function in net/ipv4/inetfragment.c in the Linux kernel through 3.13.6 allows remote attackers to cause a denial of service use-after-free error or possibly have unspecified other impact via a large series of fragmented ICMP Echo Request packets to a system wi...

INSTEON Hub 2242-222 - Lack of Web and API Authentication

INSTEON Hub 2242-222 - Lack of Web and API Authentication Trustwave SpiderLabs Security Advisory TWSL2013-023: Lack of Web and API Authentication Vulnerability in INSTEON Hub Published: 8/01/13 Version: 1.0 Vendor: INSTEON http://www.INSTEON.com/ Product: Hub Version affected: 2242-222 model...

UBUNTU-CVE-2012-6058

Integer overflow in the dissecticmpv6 function in epan/dissectors/packet-icmpv6.c in the ICMPv6 dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Number of Sources value...

Obama will control internet, signs Emergency Internet Control

Barack Obama has signed an executive order that could hand control of the internet to the U.S. Government, in the event of a natural disaster or terrorist attack. "The federal government must have the ability to communicate at all times and under all circumstances to carry out its most critical a...

AZL-6515 CVE-2010-4563 affecting package kernel for versions less than 5.10.78.1-1

The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping...

Report Warns of Woeful Readiness For Cyber Attacks Globally

A new report finds that the ‘bad guys’ are winning, and that most nations are ill-prepared for crippling cyber attacks. The report, by Security & Defence Agenda SDA, was commissioned by the security firm McAfee. It concluded that friendly nations around the globe are losing out in an arms race wi...

LulzSec & Anonymous initiates 'Operation Anti-Security' together

LulzSec & Anonymous initiates 'Operation Anti-Security' together LulzSec has issued a declaration virtual war on any government or governmental agency, the top priority of which they say "is to steal and leak any classified government information, including email spools and documentation...

kernel: sctp: a race between ICMP protocol unreachable and connect()

Race condition in the sctpicmpprotounreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service panic via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and...

PT-2011-1589 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.11-rc2 through 2.6.33 Description: The issue is related to a race condition in the sctp icmp proto unreachable function, which can be triggered by an ICMP unreachable message to a socket that is already locked by a...

Secure Browser 2.0 DOS Exploit

Exploit for php platform in category dos / poc ============================== Secure Browser 2.0 DOS Exploit ============================== -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-==-=-=-=-==-=-=-=-==-=-=-= AUTHOR : Cur53D MAIL : Hyq6xxatgmail.com DATE :...

Record route

This plugin sends packets with the 'Record Route' option. It is a complement to traceroute. OpenVAS Vulnerability Test $Id: recordroute.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Record route Authors: Michel Arboi Copyright: Copyright C 2004 Michel Arboi This program is free software; y...

Source Routed Packets

The remote host accepts loose source routed IP packets. The feature was designed for testing purpose. SPDX-FileCopyrightText: 2003 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

PT-2002-1727 · Netfilter · Netfilter

Name of the Vulnerable Software and Affected Versions: Netfilter "iptables" versions 1.2.6a and earlier Description: The Network Address Translation NAT capability leaks translated IP addresses in ICMP error messages. Recommendations: For versions 1.2.6a and earlier, consider disabling the NAT...

PT-2002-1279 · Pgp · Pgpfire

Name of the Vulnerable Software and Affected Versions: PGPfire version 7.1 for Windows Description: The issue allows remote attackers to determine that the system is running PGPfire by modifying packets in ICMP error messages. This is due to PGPfire altering the system's TCP/IP stack...

CVE-1999-0524

ICMP information such as 1 netmask and 2 timestamp is allowed from arbitrary hosts...

PT-1998-1095 · Ibm +6 · Aix +7

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned Description: The issue allows ICMP messages to broadcast addresses, enabling a Smurf attack. This can cause a denial of service. Recommendations: At the moment, there is no information about a newer...

PT-2014-9107 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: openSUSE kernel versions prior to 3.13.6 Description: The issue is related to multiple vulnerabilities in the openSUSE operating system, specifically in various kernel packages. These vulnerabilities can lead to a violation of confidentiality...