16 matches found
CVE-2023-23576
Incorrect behavior order in the Command Centre Server could allow privileged users to gain physical access to the site for longer than intended after a network outage when competencies are used in the access decision. This issue affects: Gallagher Command Centre: 8.90 prior to vEL8.90.1620 MR2,...
Open5GS Denial of Service Vulnerability (CNVD-2025-08796)
Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a denial of service vulnerability that can be exploited by attackers to cause network outages...
Open5GS å®å Øę¼ę“
Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a denial of service vulnerability that can be exploited by attackers to cause network outages...
Full Operational Shutdownāanother cybercrime case from the Microsoft Detection and Response Team
Recently, we published our first case report 001: ā¦And Then There Were Six by the Microsoft Detection and Response Team DART. We received significant positive response from our customers and colleagues and our team has been getting inquiries asking for more reports. We are glad to share the DART...
The Disgruntled Employee?
When we talk about cyber threat actors one of the terms we use is āDisgruntled Employeeā. Everyone knows what that means; someone who is fed up at work, has an axe to grind, feels aggrieved etc. There are sometimes other factors though, ones that arenāt as obviousā¦ The symptoms and effects I was...
DDoS Attacks Target Amazon, SoftLayer and Telecom Infrastructure
The last 30 days has seen a renewed increase in distributed denial-of-service DDoS activity, according to researchers, who said that they have observed a number of criminal campaigns mounting TCP reflection DDoS attacks against corporations. Researchers at Radware said that the list of victims...
Ecessa WANWorx WVR-30 < 10.7.4 - Cross-Site Request Forgery (Add Superuser) Vulnerability
Exploit for hardware platform in category web applications Exploit title: Ecessa WANWorx WVR-30 input type="hidden" name="userusername1" value=...
The State of the Internet: A Decade of Change
The State of the Internet Report is growing up - with this issue, it enters its tenth year of publication. Over time, it has matured in many ways, including its length, design, and the content it includes. Looking back at that first issue all 17 pages of it, for the first quarter of 2008, we find...
FreeBSD : fetchmail -- STARTTLS denial of service (f7d838f2-9039-11e0-a051-080027ef73ec)
Matthias Andree reports : Fetchmail version 5.9.9 introduced STLS support for POP3, version 6.0.0 added STARTTLS for IMAP. However, the actual STARTTLS-initiated in-band SSL/TLS negotiation was not guarded by a timeout. Depending on the operating system defaults as to TCP stream keepalive mode,...
WordPress DDoS Attacks Primarily From China !
After recovering from the largest Distributed Denial of Service attack in the service's history "multiple Gigabits per second and tens of millions of packets per second" yesterday morning, blog host WordPress.com was attacked again very early this morning, finally stabilizing its service at 11:15...
Large DDoS Attacks Still a Serious Problem
In the world of botnets and denial-of-service attacks, 2009 was a very interesting year. While a handful of large, noisy botnets got most of the attention, there were thousands of serious, prolonged DDoS attacks that not only chewed up huge amounts of bandwidth but likely caused major problems fo...
Ubuntu 6.06 LTS / 7.10 : gnome-screensaver vulnerabilities (USN-669-1)
It was discovered that the notify feature in gnome-screensaver could let a local attacker read the clipboard contents of a locked session by using Ctrl-V. CVE-2007-6389 Alan Matsuoka discovered that gnome-screensaver did not properly handle network outages when using a remote authentication...
Ubuntu Update for gnome-screensaver vulnerabilities USN-669-1
Ubuntu Update for Linux kernel vulnerabilities USN-669-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6691.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for gnome-screensaver vulnerabilities USN-669-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-669-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-669-1: gnome-screensaver vulnerabilities
It was discovered that the notify feature in gnome-screensaver could let a local attacker read the clipboard contents of a locked session by using Ctrl-V. CVE-2007-6389 Alan Matsuoka discovered that gnome-screensaver did not properly handle network outages when using a remote authentication...
Cisco IOS vulnerable to DoS via unrecognized transitive attribute in BGP UPDATE
Overview There is a denial-of-service vulnerability in several specific but common configurations of Cisco IOS. Description There is a problem involving BGP updates on Cisco routers with BGP4 Prefix Filtering and Inbound Route Maps enabled. A route update with an unrecognized transitive attribute...