892 matches found
Debian Security Advisory DSA 3753-1 (libvncserver - security update)
It was discovered that libvncserver, a collection of libraries used to implement VNC/RFB clients and servers, incorrectly processed incoming network packets. This resulted in several heap-based buffer overflows, allowing a rogue server to either cause a DoS by crashing the client, or potentially...
Debian: Security Advisory (DSA-3753-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
What is promiscuous mode for a NIC (interface)
Question: What is promiscuous mode for a NIC interface? Answer: In a network,promiscuous modeallows a network device to intercept and read each network packet that arrives in its entirety. In anEthernetlocal area network LAN, promiscuous mode is a mode of operation in which...
Siemens SIMATIC S7-300/1200/1500 CPU Denial of Service Vulnerability
Siemens SIMATIC S7-300, 1200 and 1500 CPUs are modular general-purpose controllers for the manufacturing industry from Siemens, Germany, and are widely used in tobacco, petrochemical, water and other important industrial control sites. A denial of service vulnerability exists in the Siemens SIMAT...
[SECURITY] [DLA 575-1] collectd security update
Package : collectd Version : 5.1.0-3+deb7u1 CVE ID : CVE-2016-6254 Debian Bug : 832507 832577 Emilien Gaspar discovered that collectd, a statistics collection and monitoring daemon, incorrectly processed incoming network packets. This resulted in a heap overflow, allowing a remote attacker to...
The vulnerability of the automated system for managing technological processes of SIMATIC WinCC OA allows a malicious individual to bypass the file system without going through the authentication procedures as a regular user.
The vulnerability of the SIMATIC WinCC OA software is related to errors that occur when processing specially crafted TCP packets. Exploiting this vulnerability allows a malicious individual to bypass the file system on the server in the context of the current user, without going through the...
Cisco IOS-XE Fragmented Packet Resource Consumption Vulnerability
A vulnerability in the packet reassembly subsystem of Cisco IOS-XE could allow an unauthenticated, remote attacker to consume CPU resources which may lead to a denial of service DoS condition. The vulnerability is due to an error message that is triggered to the console and the syslog when a...
Debian: Security Advisory (DSA-3387-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
F5 BIG-IP - Linux kernel vulnerability CVE-2015-2922
The remote host is missing a security patch. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...
WYSIWYG Network Packet Editor: WireEdit
WYSIWYG Network Packet Editor WireEdit is first-of-a-kind and the only full stack cross-platform WYSIWYG network packets editor. It allows editing packets data at all stack layers as “rich text” in a simple point-and-click interface. The input and output format is Pcap. Is WireEdit a Pcap Editor?...
The vulnerability of Cisco Adaptive Security Appliance’s microprogramming software allows a perpetrator to trigger a service failure or execute arbitrary code.
The vulnerability of IKEv1 and IKEv2 microprogramming software implementations of the Cisco Adaptive Security Appliance is caused by buffer overflow attacks. Exploiting this vulnerability can allow a malicious actor to trigger a service failure device reboot or execute arbitrary code by sending...
Vulnerability of the Java Platform software platform, allowing a perpetrator to execute arbitrary code
The vulnerability of the 2D software platform of Java Platform is related to errors in the code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code via network packets through an Java Web Start application or an applet...
Vulnerability of the Java Platform software platform, which allows a perpetrator to gain access to data for reading purposes
The vulnerability of the JMX subsystem of the Java Platform’s software platform is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to data through network packets...
Vulnerability of JRockit and Java Platform software frameworks, which allow attackers to read data or modify data.
The vulnerability of the Security Jrockit and Java Platform subcomponent is related to errors in the code. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain access to read, modify, add, or delete data using network packets...
The vulnerability of the MySQL database management system allows a hacker to gain access to read data.
The vulnerability of the Server: Security: Encryption sub-component of the MySQL database management system is related to errors in the code. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain access to data through network packets...
The vulnerability of the Oracle Database database management system allows a hacker to execute arbitrary code.
The vulnerability of the Java VM component of the Oracle Database management system is related to errors in the code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely through network packets...
The vulnerability of the MySQL database management system allows a hacker to cause a service failure.
The vulnerability of the Server sub-component of the MySQL database management system’s options involves code errors. Exploiting this vulnerability can allow a malicious actor to cause the operating system to become unresponsive, or in rare cases, to cause an emergency shutdown through network...
The vulnerability of the MySQL database management system allows a hacker to cause a service failure.
The vulnerability of the Server sub-component in the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a crash or, in rare cases, cause an emergency shutdown through network packets...
The vulnerability of the MySQL database management system allows a hacker to cause partial service interruptions.
The vulnerability of the InnoDB sub-component of the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause partial service interruptions through network packets...
The vulnerability of the MySQL database management system allows a hacker to modify data.
The vulnerability of the Server: Security: Encryption sub-component of the MySQL database management system is related to errors in the code. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to modify, add, or delete data using network packets...