Lucene search
K

892 matches found

OpenVAS
OpenVAS
added 2017/01/05 12:0 a.m.19 views

Debian Security Advisory DSA 3753-1 (libvncserver - security update)

It was discovered that libvncserver, a collection of libraries used to implement VNC/RFB clients and servers, incorrectly processed incoming network packets. This resulted in several heap-based buffer overflows, allowing a rogue server to either cause a DoS by crashing the client, or potentially...

7.5CVSS0.7AI score0.03748EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/01/04 12:0 a.m.24 views

Debian: Security Advisory (DSA-3753-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.03748EPSS
Exploits0References3
Citrix
Citrix
added 2016/12/02 12:0 a.m.8 views

What is promiscuous mode for a NIC (interface)

Question: What is promiscuous mode for a NIC interface? Answer: In a network,promiscuous modeallows a network device to intercept and read each network packet that arrives in its entirety. In anEthernetlocal area network LAN, promiscuous mode is a mode of operation in which...

6.9AI score
Exploits0
CNVD
CNVD
added 2016/11/17 12:0 a.m.3 views

Siemens SIMATIC S7-300/1200/1500 CPU Denial of Service Vulnerability

Siemens SIMATIC S7-300, 1200 and 1500 CPUs are modular general-purpose controllers for the manufacturing industry from Siemens, Germany, and are widely used in tobacco, petrochemical, water and other important industrial control sites. A denial of service vulnerability exists in the Siemens SIMAT...

6.6AI score
Exploits0
Debian
Debian
added 2016/07/30 10:8 a.m.20 views

[SECURITY] [DLA 575-1] collectd security update

Package : collectd Version : 5.1.0-3+deb7u1 CVE ID : CVE-2016-6254 Debian Bug : 832507 832577 Emilien Gaspar discovered that collectd, a statistics collection and monitoring daemon, incorrectly processed incoming network packets. This resulted in a heap overflow, allowing a remote attacker to...

9.1CVSS9.6AI score0.05695EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.9 views

The vulnerability of the automated system for managing technological processes of SIMATIC WinCC OA allows a malicious individual to bypass the file system without going through the authentication procedures as a regular user.

The vulnerability of the SIMATIC WinCC OA software is related to errors that occur when processing specially crafted TCP packets. Exploiting this vulnerability allows a malicious individual to bypass the file system on the server in the context of the current user, without going through the...

5CVSS5.5AI score0.03507EPSS
Exploits0References14Affected Software1
OpenVAS
OpenVAS
added 2016/05/10 12:0 a.m.24 views

Cisco IOS-XE Fragmented Packet Resource Consumption Vulnerability

A vulnerability in the packet reassembly subsystem of Cisco IOS-XE could allow an unauthenticated, remote attacker to consume CPU resources which may lead to a denial of service DoS condition. The vulnerability is due to an error message that is triggered to the console and the syslog when a...

5CVSS7AI score0.01811EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/05/06 12:0 a.m.24 views

Debian: Security Advisory (DSA-3387-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.02133EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/03/23 12:0 a.m.46 views

F5 BIG-IP - Linux kernel vulnerability CVE-2015-2922

The remote host is missing a security patch. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...

3.3CVSS6.5AI score0.03052EPSS
Exploits1References1
n0where
n0where
added 2016/03/10 2:36 p.m.219 views

WYSIWYG Network Packet Editor: WireEdit

WYSIWYG Network Packet Editor WireEdit is first-of-a-kind and the only full stack cross-platform WYSIWYG network packets editor. It allows editing packets data at all stack layers as “rich text” in a simple point-and-click interface. The input and output format is Pcap. Is WireEdit a Pcap Editor?...

Exploits0
BDU FSTEC
BDU FSTEC
added 2016/02/24 12:0 a.m.5 views

The vulnerability of Cisco Adaptive Security Appliance’s microprogramming software allows a perpetrator to trigger a service failure or execute arbitrary code.

The vulnerability of IKEv1 and IKEv2 microprogramming software implementations of the Cisco Adaptive Security Appliance is caused by buffer overflow attacks. Exploiting this vulnerability can allow a malicious actor to trigger a service failure device reboot or execute arbitrary code by sending...

10CVSS8.4AI score0.77462EPSS
Exploits4References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.4 views

Vulnerability of the Java Platform software platform, allowing a perpetrator to execute arbitrary code

The vulnerability of the 2D software platform of Java Platform is related to errors in the code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code via network packets through an Java Web Start application or an applet...

10CVSS7.3AI score0.07211EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.8 views

Vulnerability of the Java Platform software platform, which allows a perpetrator to gain access to data for reading purposes

The vulnerability of the JMX subsystem of the Java Platform’s software platform is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to data through network packets...

4CVSS6.5AI score0.03531EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.4 views

Vulnerability of JRockit and Java Platform software frameworks, which allow attackers to read data or modify data.

The vulnerability of the Security Jrockit and Java Platform subcomponent is related to errors in the code. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain access to read, modify, add, or delete data using network packets...

4CVSS6.5AI score0.0288EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.6 views

The vulnerability of the MySQL database management system allows a hacker to gain access to read data.

The vulnerability of the Server: Security: Encryption sub-component of the MySQL database management system is related to errors in the code. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain access to data through network packets...

2.6CVSS7AI score0.05031EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.7 views

The vulnerability of the Oracle Database database management system allows a hacker to execute arbitrary code.

The vulnerability of the Java VM component of the Oracle Database management system is related to errors in the code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely through network packets...

9CVSS7.7AI score0.02992EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.5 views

The vulnerability of the MySQL database management system allows a hacker to cause a service failure.

The vulnerability of the Server sub-component of the MySQL database management system’s options involves code errors. Exploiting this vulnerability can allow a malicious actor to cause the operating system to become unresponsive, or in rare cases, to cause an emergency shutdown through network...

6.8CVSS7AI score0.07505EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.5 views

The vulnerability of the MySQL database management system allows a hacker to cause a service failure.

The vulnerability of the Server sub-component in the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a crash or, in rare cases, cause an emergency shutdown through network packets...

3.5CVSS7AI score0.03404EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.6 views

The vulnerability of the MySQL database management system allows a hacker to cause partial service interruptions.

The vulnerability of the InnoDB sub-component of the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause partial service interruptions through network packets...

3.5CVSS7AI score0.03404EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.7 views

The vulnerability of the MySQL database management system allows a hacker to modify data.

The vulnerability of the Server: Security: Encryption sub-component of the MySQL database management system is related to errors in the code. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to modify, add, or delete data using network packets...

3.5CVSS7AI score0.03651EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder