46 matches found
CVE-2016-8784
Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices. When the values of some parameters in the packet are abnormal, the LDP...
CVE-2016-8782
Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices repeatedly. Due to improper validation of some specific fields of the...
Memory corruption
Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices repeatedly. Due to improper validation of some specific fields of the...
CVE-2016-8784
Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices. When the values of some parameters in the packet are abnormal, the LDP...
CVE-2016-8782
Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices repeatedly. Due to improper validation of some specific fields of the...
CVE-2016-8782
Huawei CloudEngine 12800 firmware versions V100R003C00, V100R003C10, V100R005C00, V100R005C10, and V100R006C00 are affected by a memory-leak vulnerability in the LDP processing path caused by improper validation of certain fields in LDP packets. An unauthenticated attacker can repeatedly send cra...
CVE-2016-8784
Huawei CloudEngine 12800 devices running firmware V100R003C00, V100R003C10, V100R005C00, V100R005C10, or V100R006C00 are affected by a memory-leak vulnerability in the LDP processing module. An unauthenticated attacker can send crafted LDP packets; when certain parameters are abnormal, the device...
PT-2017-3911
Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.3 Description The issue is related to a buffer over-read in the LDP parser of the tcpdump utility, specifically in the ldp tlv print function located in print-ldp.c. This can be exploited by a remote attacker to...
CVE-2017-2312
On Juniper Networks devices running Junos OS affected versions and with LDP enabled, a specific LDP packet destined to the RE Routing Engine will consume a small amount of the memory allocated for the rpd routing protocol daemon process. Over time, repeatedly receiving this type of LDP packets wi...
Huawei CloudEngine 12800 Switch Memory Disclosure Vulnerability (CNVD-2016-12844)
Huawei CloudEngine 12800 is a switch device from Huawei, China. The Huawei CloudEngine 12800 switch memory leak vulnerability. The memory leak is caused by the LDP processing module not freeing the memory requested for processing messages when it processes messages and finds abnormal values for...
Huawei CloudEngine 12800 Switch Memory Leak Vulnerability
Huawei CloudEngine 12800 is a switch device from Huawei, China. The Huawei CloudEngine 12800 switch memory disclosure vulnerability. Due to a lack of validation of certain fields in a message, the LDP Label Distribution Protocol processing module does not free memory requested to process the...
Cisco NX-OS Software Label Distribution Protocol Message Vulnerability (Cisco-SA-20140123-CVE-2014-0677)
A vulnerability in the Label Distribution Protocol LDP message processing of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to stop accepting valid LDP sessions during a 60-second period. Copyright C 2016 Greenbone Networks GmbH Some text...
Juniper Junos RPD Routing Process DoS (JSA10715)
According to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability due to a flaw in the Label Distribution Protocol LDP implementation. An unauthenticated, remote attacker attacker can exploit this, by sending a specially crafted LDP...
Juniper Networks Junos OS Routing Engine Denial of Service Vulnerability
Juniper Networks Junos on SRX Series devices is a set of network operating systems that run in SRX Series service gateway devices.Routing Engine is one of the routing engine components. The Routing Engine for Juniper Networks Junos OS crashes the RPD routing process when a remote attacker submits...
CVE-2016-1257
The Routing Engine in Juniper Junos OS 13.2R5 through 13.2R8, 13.3R1 before 13.3R8, 13.3R7 before 13.3R7-S3, 14.1R1 before 14.1R6, 14.1R3 before 14.1R3-S9, 14.1R4 before 14.1R4-S7, 14.1X51 before 14.1X51-D65, 14.1X53 before 14.1X53-D12, 14.1X53 before 14.1X53-D28, 14.1X53 before 4.1X53-D35, 14.2R...
Cisco NX-OS Software Label Distribution Protocol Message Vulnerability
A vulnerability in the Label Distribution Protocol LDP message processing of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to stop accepting valid LDP sessions during a 60-second period. The vulnerability is due to how certain malformed LDP Hello...
Cisco NX-OS Software Label Distribution Protocol Message Vulnerability (Cisco-SA-20140123-CVE-2014-0677)
A vulnerability in the Label Distribution Protocol LDP message processing of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to stop accepting valid LDP sessions during a 60-second period. Copyright C 2014 Greenbone Networks GmbH Some text...
Code injection
The Label Distribution Protocol LDP functionality in Cisco NX-OS allows remote attackers to cause a denial of service temporary LDP session outage via LDP discovery traffic containing malformed Hello messages, aka Bug ID CSCul88851...
Cisco IOS XR Software Multiprotocol Label Switching Packet Vulnerability (cisco-sa-20100324-ldp)
A device running Cisco IOS XR Software is vulnerable to a remote denial of service DoS condition if it is configured for Multiprotocol Label Switching MPLS and has support for Label Distribution Protocol LDP. A crafted LDP UDP packet can cause an affected device running Cisco IOS XR Software to...
UBUNTU-CVE-2012-5240
Buffer overflow in the dissecttlv function in epan/dissectors/packet-ldp.c in the LDP dissector in Wireshark 1.8.x before 1.8.3 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a malformed packet...