UBUNTU-CVE-2021-39272

Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH...

PT-2021-7066 · Linux +8 · Linux Kernel +8

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw in the processing of received ICMP errors, specifically ICMP fragment needed and ICMP redirect, allows an off-path remote user to quickly scan open UDP ports and bypass the sour...

UBUNTU-CVE-2021-38372

In KDE Trojita 0.7, man-in-the-middle attackers can create new folders because untagged responses from an IMAP server are accepted before STARTTLS...

HCC Embedded InterNiche 缓冲区错误漏洞

InterNiche Technologies NicheStack is a small footprint, RFC-compliant embedded stack that is portable to commercial or proprietary non-MMU operating systems. InterNiche Technologies NicheStack suffers from an input validation error vulnerability that stems from a boundary condition in the ICMP...

kernel: ICMP rate limiting can be used for DNS poisoning attack

A flaw in the way reply ICMP packets are limited in the Linux kernel functionality was found that allows to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypassing source port UDP randomization. The highest threat from this vulnerability is to confidentialit...

The vulnerability of the microprogramming software of Cisco IOS XE routing devices in the Cisco Catalyst 9800 Series is related to access control errors. This vulnerability allows a attacker to send ICMPv6 traffic until the client enters a RUN state.

The vulnerability of the microprogramming software in Cisco IOS XE wireless communication controller and Cisco Catalyst 9800 Series routers is related to access control errors. Exploiting this vulnerability allows a malicious actor to send ICMPv6 traffic until the client enters a RUN state...

Mozilla: Security downgrade with IMAP STARTTLS leads to information leakage

The Mozilla Foundation Security Advisory describes this flaw as: If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection...

UBUNTU-CVE-2019-12827

Buffer overflow in respjsipmessaging in Digium Asterisk versions 13.21-cert3, 13.27.0, 15.7.2, 16.4.0 and earlier allows remote authenticated users to crash Asterisk by sending a specially crafted SIP MESSAGE message...

Mongoose Buffer Overflow Vulnerability

Cesanta Mongoose is a set of embedded server libraries from the Irish company Cesanta, which includes features such as TCP, HTTP client and server, WenSocket client and server. A buffer overflow vulnerability exists in the 'parsemqtt' function of the mgmqtt.c file in Cesanta Mongoose versions pri...

tcpdump: Buffer over-read in print-icmp6.c:icmp6_print() in ICMPv6 parser

The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6print...

Gentoo net-im/jabberd2 elevation of privilege vulnerability

The Gentoo net-im/jabberd2 package is an XMPP Extensible Message Processing Field Protocol package from the Gentoo Foundation. A security vulnerability exists in the Gentoo net-im/jabberd2 package version 2.6.1 and earlier. A local attacker can exploit the vulnerability to terminate arbitrary...

MikroTik Denial of Service Vulnerability

MikroTik is a set of routing operating system based on Linux core development of Latvian MikroTik company. The system turns a PC computer into a professional router. A security vulnerability exists in MikroTik version 6.40.5. A remote attacker can exploit this vulnerability with a large number of...

UBUNTU-CVE-2017-13012

The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmpprint...

Cisco TelePresence ICMP Denial of Service Vulnerability

Cisco TelePresence is a Cisco TelePresence solution that creates a unique face-to-face experience for people interacting with places and all aspects of their work life, enabled by a combination of innovative video, audio and interactive components software and hardware over the network. A denial ...

CVE-2016-6378

Cisco IOS XE 3.1 through 3.17 and 16.1 through 16.2 allows remote attackers to cause a denial of service device reload via crafted ICMP packets that require NAT, aka Bug ID CSCuw85853...

CVE-2016-1445

Cisco Adaptive Security Appliance ASA Software 8.2 through 9.4.3.3 allows remote attackers to bypass intended ICMP Echo Reply ACLs via vectors related to subtypes...

Cisco Nexus 9000 Application Centric Infrastructure Mode Denial of Service Vulnerability

The Cisco Nexus 9000 Application Centric Infrastructure ACI Mode is a Cisco 9000 Series switch for Application Centric Infrastructure ACI applications. A security vulnerability in Cisco Nexus 9000 Series ACI Mode Switches using software versions prior to 11.01c can be exploited by a remote attack...

The vulnerability of the Cisco IOS operating system, which allows a remote attacker to trigger a service failure

The vulnerability in the VFR interface allows a remote attacker to trigger a service failure by using specially crafted ICMPv4 packets...

The sword refers to the Android and iOS system DoubleDirect middle attack-vulnerability warning-the black bar safety net

A security researcher found a new man in the middle attack technique, it targets mostly run of the Android system and iOS system of smartphone and tablets. This is called DoubleDirect of art belonging to the middleman（MITM attack. An attacker can use this technique to put the victim to visit...

UBUNTU-CVE-2014-7142

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service crash via a crafted 1 ICMP or 2 ICMP6 packet size...