CVE-2023-41354

Chunghwa Telecom NOKIA G-040W-Q Firewall function does not block ICMP TIMESTAMP requests by default, an unauthenticated remote attacker can exploit this vulnerability by sending a crafted package, resulting in partially sensitive information exposed to an actor...

OPTO 22 SNAP PAC S1 资源管理错误漏洞

The OPTO 22 SNAP PAC S1 is a controller from OPTO 22 USA. A security vulnerability exists in the OPTO 22 SNAP PAC S1 R10.3b firmware version, which stems from If the controller has the built-in web server enabled, but the built-in web server is not fully setup and configured, an attacker exploiti...

Contiki-NG 缓冲区错误漏洞

Contiki-NG is an open source cross-platform operating system for next-generation IoT Internet of Things devices. A buffer error vulnerability exists in Contiki-NG 4.8 and earlier versions, which stems from an out-of-bounds read issue when processing ICMP DAO input...

Microsoft Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

Microsoft Internet Control Message Protocol ICMP is a remote code execution vulnerability in Microsoft Internet Control Message Protocol ICMP, an ICMP protocol used in Windows. A remote code execution vulnerability exists in Microsoft Internet Control Message Protocol ICMP, which could be exploit...

The vulnerability in the implementation of the ICMP protocol in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the ICMP protocol implementation in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2023-23415

Internet Control Message Protocol ICMP Remote Code Execution Vulnerability...

KLA48553 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface, cause denial of service, bypass security restrictions. Below is a complete list of...

SUSE CVE-2004-1011

Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote attackers to execute arbitrary code via a long 1 PROXY or 2 LOGIN command, a different vulnerability than CVE-2004-1015...

SUSE CVE-2008-2829

phpimap.c in PHP 5.2.5, 5.2.6, 4.x, and other versions, uses obsolete API calls that allow context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a long IMAP request, which triggers an "rfc822.c legacy routine buffer overflow" error message, related...

SUSE CVE-2015-6496

conntrackd in conntrack-tools 1.4.2 and earlier does not ensure that the optional kernel modules are loaded before using them, which allows remote attackers to cause a denial of service crash via a 1 DCCP, 2 SCTP, or 3 ICMPv6 packet...

The vulnerability in the implementation of the ICMP protocol in Linux kernel allows a attacker to access confidential information.

The vulnerability of the ICMP kernel in the Linux operating system is related to the use of insufficiently random values. Exploiting this vulnerability can allow a remote attacker to gain access to confidential information...

CVE-2022-26071

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, a flaw in the way reply ICMP packets are limited in the Traffic Management Microkernel TMM allows an attack...

The vulnerability of microprogrammed software for controllers CAPITAL VSTAR, APOGEE MBC, APOGEE MEC, APOGEE PXC, TALON TC, and the operating system Nucleus relates to errors in processing ICMP packet headers. This vulnerability allows attackers to gain access to protected information or cause service interruptions.

The vulnerability of microprogrammed software for controllers CAPITAL VSTAR, APOGEE MBC, APOGEE MEC, APOGEE PXC, TALON TC, and the operating system Nucleus is related to errors in processing ICMP packet headers. Exploiting this vulnerability can allow a remote attacker to gain access to protected...

DEBIAN-CVE-2021-20322

A flaw in the processing of received ICMP errors ICMP fragment needed and ICMP redirect in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest...

The vulnerability in the web interface of the microprogramming software for Cisco Analog Telephone Adapter (ATA) model 190 allows a perpetrator to cause a service failure.

The vulnerability of the web interface of the microprogramming software for Cisco Analog Telephone Adapter ATA series 190 devices is related to deficiencies in rate-limiting mechanisms when sending ICMP packets. Exploiting this vulnerability could allow a malicious actor to cause service...

OESA-2021-1429 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An improper validation of an array index and out of bounds memory read in the Linux kernel s Integrated Services Digital Network ISDN functionality was found in the way users call ioctl CMTPCONNADD. A local user could use this fl...

UBUNTU-CVE-2021-20322

A flaw in the processing of received ICMP errors ICMP fragment needed and ICMP redirect in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest...

High Infinity Technology HiKam S6 1.3.26 Spoofing / Broken Authentication

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Critical Vulnerabilities product: High Infinity Technology HiKam S6 vulnerable version: =1.3.26 fixed version: CVE number: impact: Critical homepage:...

DEBIAN-CVE-2021-22947

When curl = 7.20.0 and = 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS security, the server can respond and send back multiple responses at once that curl caches. curl would then upgrade to TLS but not flush the in-queue of cached responses but instea...

The vulnerability in the implementation of the ICMP checksum protocol for TCP/IP implementations like NicheLite and InterNiche allows a attacker to cause a service failure.

The vulnerability of the ICMP checksum implementation in TCP/IP implementations like NicheLite and InterNiche is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...