688 matches found
Cisco ASA 8.4.4.6 8.2.5.32 - Ethernet Information Leak
Cisco ASA 8.4.4.6 8.2.5.32 - Ethernet Information Leak !/usr/bin/env python CVE-2003-0001 'Etherleak' exploit ================================= Exploit for hosts which use a network device driver that pads ethernet frames with data which vary from one packet to another, likely taken from kernel...
Moderate: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix several security issues and three bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
TP-Link TL-WR740N Wireless Router - Denial of Service
!/usr/local/bin/perl TP-Link TL-WR740N Wireless Router Remote Denial Of Service Exploit Vendor: TP-LINK Technologies Co., Ltd. Product web page: http://www.tp-link.us Affected version: - Firmware version: 3.16.4 Build 130205 Rel.63875n Released: 2/5/2013 - Hardware version: WR740N v4 00000000...
RedHat Update for qemu-kvm RHSA-2011:0919-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
PT-2012-3829 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.4.5 Description: The issue is related to the sock alloc send pskb function in the Linux kernel, which does not properly validate a certain length value. This can be exploited by local users to cause a denial o...
[SECURITY] Fedora 14 Update: NetworkManager-0.8.5.92-1.git20110927.fc14
NetworkManager is a system network service that manages your network devices and connections, attempting to keep active network connectivity when availa ble. It manages ethernet, WiFi, mobile broadband WWAN, and PPPoE devices, and provides VPN integration with a variety of different VPN services...
Linux Kernel TCP Sequence Number Generation Security Weakness
The Linux kernel is prone to a security weakness related to TCP sequence number generation. Attackers can exploit this issue to inject arbitrary packets into TCP sessions using a brute-force attack. An attacker may use this vulnerability to create a denial of service condition or a...
CentOS Update for kernel CESA-2009:1455 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
[SECURITY] Fedora 15 Update: NetworkManager-0.8.9997-5.git20110702.fc15
NetworkManager is a system network service that manages your network devices and connections, attempting to keep active network connectivity when availa ble. It manages ethernet, WiFi, mobile broadband WWAN, and PPPoE devices, and provides VPN integration with a variety of different VPN services...
Design/Logic Flaw
The bondselectqueue function in drivers/net/bonding/bondmain.c in the Linux kernel before 2.6.39, when a network device with a large number of receive queues is installed but the default txqueues setting is used, does not properly restrict queue indexes, which allows remote attackers to cause a...
Metasploit 3.5.1 adds Cisco device exploitation !
Metasploit now enables security professionals to exploit Cisco devices, performs passive reconnaissance through traffic analysis, provides more exploits and evaluates an organization's password security by brute forcing an ever increasing range of services. This latest release adds stealth...
The Five Key Things to Know About the Security of Your Networking Gear
Measuring the performance and security of your network equipment has never been more important than it is today. While there will always be tradeoffs between maximum throughput and maximum security, I want to emphasize the “and” in “performance and security.” Your devices must perform while...
Moderate: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Updated 23rd February 2010 This update adds references to two KBase articles...
Debian DSA-1351-1 : bochs - buffer overflow
Tavis Ormandy discovered that bochs, a highly portable IA-32 PC emulator, is vulnerable to a buffer overflow in the emulated NE2000 network device driver, which may lead to privilege escalation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
Packeteer Web Management Interface Detection
The remote web server is a Packeteer web management interface. nnposter GPL include"compat.inc"; if description scriptid25568; scriptversion "1.10"; name"english"="Packeteer Web Management Interface Detection"; scriptnameenglish:name"english"; scriptsetattributeattribute:"synopsis", value: "The...
Linux Kernel 2.0.x2.2.x2.4.x (FreeBSD 4.x) - Network Device Driver Frame Padding Information Disclosure
Linux Kernel 2.0.x2.2.x2.4.x FreeBSD 4.x - Network Device Driver Frame Padding Information Disclosure source: https://www.securityfocus.com/bid/6535/info Network device drivers for several vendors have been reported to disclose potentially sensitive information to attackers. Frames that are small...
Linux Kernel 2.0.x/2.2.x/2.4.x (FreeBSD 4.x) - Network Device Driver Frame Padding Information Disclosure
source: https://www.securityfocus.com/bid/6535/info Network device drivers for several vendors have been reported to disclose potentially sensitive information to attackers. Frames that are smaller than the minimum frame size should have the unused portion of the frame buffer padded with null or...
CVE-2006-5213
Sun Solaris 10 before 20061006 uses "incorrect and insufficient permission checks" that allow local users to intercept or spoof packets by creating a raw socket on a link aggregation network device aggregation...
[VulnWatch] iDefense Security Advisory 01.17.06: Cisco Systems IOS 11 Web Service CDP Status Page Code Injection Vulnerability
Cisco Systems IOS 11 Web Service CDP Status Page Code Injection Vulnerability iDefense Security Advisory 01.17.06 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=372 January 17, 2006 I. BACKGROUND Cisco IOS Software is the world's leading network infrastructure software,...
SureCom EP-9510AX/EP-4504AX Network Device - Malformed Web Authorisation Request Denial of Service (2)
// source: https://www.securityfocus.com/bid/9795/info An issue in the handling of specific web requests by SureCom network devices has been identified. By placing a malformed request to the web configuration interface, it is possible for an attacker to deny service to legitimate users of a...