2129 matches found
PT-2010-1832 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.32.4 Description: The issue allows remote attackers to cause a denial of service due to a NULL pointer dereference via an invalid IPv6 jumbogram. Recommendations: For versions prior to 2.6.32.4, update to...
PT-2010-2175 · Thegreenbow · Thegreenbow Ipsec Vpn Client
Name of the Vulnerable Software and Affected Versions: TheGreenBow IPSec VPN Client versions 4.51.001 through 4.65.003 Description: A stack-based buffer overflow issue exists, allowing user-assisted remote attackers to execute arbitrary code via a long OpenScriptAfterUp parameter in a policy .tgb...
Security Best Practice: Protect Yourself from Multiple SMTP Vulnerabilities
Simple Mail Transfer Protocol SMTP is an Internet standard for electronic mail e-mail transmission across Internet Protocol IP networks. SMTP is specified for outgoing mail transport and uses TCP port 25. There are several serious security limitations with the SMTP protocol that allow malicious...
vBulletin - Denial of Service
vBulletin - Denial of Service !/c:/perl/bin VBulletin Denail of Service Exploit by 4.!.5 created : !N 7h3 DARKNESS CODED BY: R3d-D3V!L important = Image Verification in search.php is NOT Enabled. It tested on V3.6.3 Perl Script use Socket; if @ARGV \n"; print "\tex: $0 127.0.0.1 /forum/\n"; print...
Microsoft Windows LSASS Denial of Service Vulnerability (975467)
This host is missing a critical security update according to Microsoft Bulletin MS09-069. OpenVAS Vulnerability Test $Id: secpodms09-069.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft Windows LSASS Denial of Service Vulnerability 974392 Authors: Antu Sanadi Copyright: Copyright c 2009 SecPod,...
Implementations of IPv6 may be vulnerable to denial of service (DoS) attacks
Overview Implementations of Internet Protocol version 6 IPv6 may be vulnerable to denial of service DoS attacks. Implementations of IPv6 contain an issue in the processing of packets related to the Neighbor Discovery Protocol RFC4861, which may lead to a denial of service vulnerablility. For more...
Microsoft Security Bulletin MS09-048 - Critical Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (967723)
Microsoft Security Bulletin MS09-048 - Critical Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution 967723 Published: September 08, 2009 Version: 1.0 General Information Executive Summary This security update resolves several privately reported vulnerabilities in Transmission...
Issue of Access Control Failure in Hitachi Device Manager Server
Overview Hitachi Device Manager servers contain a vulnerability in which access control settings would be rendered invalid in the following cases: - IPv6 format is used for communications between a Hitachi Device Manager server and its clients. - Access controls for Hitachi Device Manager clients...
CVE-2008-4606
Multiple SQL injection vulnerabilities in IP Reg 0.4 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 locationid parameter to locationdel.php and 2 vlanid parameter to vlanedit.php. NOTE: the vlanview.php and vlandel.php vectors are already covered by CVE-2007-6579...
FreeBSD Security Advisory (FreeBSD-SA-06:07.pf.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:07.pf.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
IPSec ESP kernel panics
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service crash via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV...
Microsoft Windows ICMP Fragmented Packet Denial of Service (MS08-001; CVE-2007-0066)
The Internet Control Message Protocol ICMP is one of the core protocols of the Internet protocol suite. The vulnerability is due to an error in the way that Windows Kernel processes fragmented router advertisement ICMP queries. Successful exploitation could allow a denial of service on the affect...
CVE-2007-6439
Wireshark formerly Ethereal 0.99.6 allows remote attackers to cause a denial of service infinite or large loop via the 1 IPv6 or 2 USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is already covered by...
IPv6 oops triggerable by any user
net/ipv6/tcpipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6flsocklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service OOPS or double free by opening a listening IPv6 socket, attaching a flow label, and connecting to...
[SECURITY] Fedora 7 Update: iscsi-initiator-utils-6.2.0.865-0.0.fc7
The iscsi package provides the server daemon for the iSCSI protocol, as well as the utility programs used to manage it. iSCSI is a protocol for distributed disk access using SCSI commands sent over Internet Protocol networks...
[SECURITY] Fedora Core 6 Update: iscsi-initiator-utils-6.2.0.865-0.0.fc6
The iscsi package provides the server daemon for the iSCSI protocol, as well as the utility programs used to manage it. iSCSI is a protocol for distributed disk access using SCSI commands sent over Internet Protocol networks...
[SECURITY] Fedora Core 5 Update: iscsi-initiator-utils-5.2.0.865-0.0.fc5
The iscsi package provides the server daemon for the iSCSI protocol, as well as the utility programs used to manage it. iSCSI is a protocol for distributed disk access using SCSI commands sent over Internet Protocol networks...
IPv6 routing headers issue
The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 type 0 route headers IPV6RTHDRTYPE0 that create network amplification between two routers...
Microsoft Exchange Server MIME Base64 Decoding Code Execution (MS07-026; CVE-2007-0213)
Simple Mail Transfer Protocol SMTP is a core Internet protocol used for transferring e-mail across the Internet. Multipurpose Internet Mail Extension MIME is the standard for attaching non-text files graphics, audio, video and other binary types to standard Internet mail messages. Microsoft...
DEBIAN-CVE-2006-6893
Tor allows remote attackers to discover the IP address of a hidden service by accessing this service at a high rate, thereby changing the server's CPU temperature and consequently changing the pattern of time values visible through 1 ICMP timestamps, 2 TCP sequence numbers, and 3 TCP timestamps, ...