Lucene search
K

50 matches found

OSV
OSV
added 2022/11/28 10:15 p.m.4 views

CVE-2022-4129

A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol L2TP. A missing lock when clearing skuserdata can lead to a race condition and NULL pointer dereference. A local user could use this flaw to potentially crash the system causing a denial of service...

5.5CVSS7.6AI score0.00172EPSS
Exploits0References6
ThreatPost
ThreatPost
added 2021/09/10 4:31 p.m.110 views

Yandex Pummeled by Potent Meris DDoS Botnet

Technical details tied to a record-breaking distributed-denial-of-service DDoS attack against Russian internet behemoth Yandex are surfacing as the digital dust settles. A massive botnet, dubbed Mēris, is believed responsible, flooding Yandex with millions of HTTP requests for webpages at the sam...

9.1CVSS8.8AI score0.96087EPSS
Exploits23References7
OSV
OSV
added 2020/09/17 7:15 p.m.3 views

DEBIAN-CVE-2020-0429

In l2tpsessiondelete and related functions of l2tpcore.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

6.7CVSS7AI score0.00176EPSS
Exploits0References1
0day.today
0day.today
added 2016/02/26 12:0 a.m.27 views

Linux io_submit L2TP sendmsg - Integer Overflow

Exploit for linux platform in category dos / poc / Source: https://code.google.com/p/google-security-research/issues/detail?id=735 In certain kernel versions it is possible to use the AIO subsystem iosubmit syscall to pass size values larger than MAXRWCOUNT to the networking subsystem's sendmsg...

7AI score
Exploits0
OSV
OSV
added 2014/01/06 12:0 a.m.5 views

UBUNTU-CVE-2013-7264

The l2tpiprecvmsg function in net/l2tp/l2tpip.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel stack memory via a 1 recvfrom, 2 recvmmsg, ...

4.9CVSS6.6AI score0.00434EPSS
Exploits0References18
NVD
NVD
added 2004/02/17 5:0 a.m.20 views

CVE-2003-1029

The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service infinite loop and memory consumption via a packet with invalid data to UDP port 1701, which causes l2tpavpprint to use a bad length value when calling printoctets...

5CVSS6.3AI score0.0992EPSS
Exploits0References12
OSV
OSV
added 2004/02/17 5:0 a.m.9 views

CVE-2003-1029

The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service infinite loop and memory consumption via a packet with invalid data to UDP port 1701, which causes l2tpavpprint to use a bad length value when calling printoctets...

6.3AI score
Exploits0References13
Cvelist
Cvelist
added 2004/01/15 5:0 a.m.24 views

CVE-2003-1029

The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service infinite loop and memory consumption via a packet with invalid data to UDP port 1701, which causes l2tpavpprint to use a bad length value when calling printoctets...

6.2AI score0.0992EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2004/01/15 5:0 a.m.42 views

CVE-2003-1029

The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service infinite loop and memory consumption via a packet with invalid data to UDP port 1701, which causes l2tpavpprint to use a bad length value when calling printoctets...

5CVSS4.9AI score0.0992EPSS
Exploits0
securityvulns
securityvulns
added 2003/12/22 12:0 a.m.28 views

Remote crash in tcpdump from OpenBSD

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------- Original Message -------- Subject: user/3610: repetable tcpdump remote crash Resent-Date: Sat, 20 Dec 2003 08:55:02 -0700 MST Resent-From: [email protected] GNATS Filer Resent-To: [email protected] Date: Sat, 20 Dec 2003 16:42:25 +01...

7AI score
Exploits0
Rows per page
Query Builder