1155 matches found
The vulnerability of DNS-client TCP/IP clients of NicheLite and InterNiche allows a hacker to induce a service failure.
The vulnerability of DNS-client TCP/IP implementations like NicheLite and InterNiche involves an escape from the expected range of values for certain indicators. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
Siemens SIMATIC 安全特征问题漏洞
The LOGO! CMR family is a communication system for monitoring and controlling distributed devices and systems via text messages or e-mail.Siemens SIMATIC RTU3000C is a compact RTU from Siemens, Germany is a low-power remote terminal unit RTU for energy self-sufficiency. A vulnerability in the...
EulerOS 2.0 SP2 : curl (EulerOS-SA-2021-2364)
According to the version of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in libcurl, is used to...
PT-2021-6413 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to the implementation of the Windows SMB network protocol in the Microsoft Windows operating system, specifically concerning access control weaknesses...
About the security content of macOS Big Sur 11.6
About the security content of macOS Big Sur 11.6 This document describes the security content of macOS Big Sur 11.6. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...
EulerOS 2.0 SP5 : curl (EulerOS-SA-2021-2325)
According to the version of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in libcurl, is used to...
FANUC Robot Controllers (Update A)
1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: FANUC Equipment: R-30iA and R-30iB series controllers Vulnerabilities: Integer Coercion Error, Out-of-bounds Write 2. UPDATE INFORMATION This advisory is a follow-up to the original advisory titled ICSA-21-243-02P FANUC...
The vulnerability in the implementation of the TCP/IP protocol stack for Juniper Networks Junos OS allows a attacker to cause a service failure.
The vulnerability of the TCP/IP protocol stack implementation in Juniper Networks Junos OS lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted packets...
CVE-2021-26424
Windows TCP/IP Remote Code Execution Vulnerability...
CVE-2021-22925
curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...
CVE-2021-22925
curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...
Stack overflow
curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...
CVE-2021-22925
CVE-2021-22925 affects curl/libcurl’s TELNET OPTION handling (-t / CURLOPT_TELNETOPTIONS). A flaw in the option parser for NEW_ENV variables can cause uninitialized data from a stack buffer to be sent to the server, due to incorrect sscanf usage when parsing the provided string. This could reveal...
CVE-2021-22925
curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...
CVE-2021-22925
curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...
DEBIAN-CVE-2020-22283
A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...
Ubuntu 18.04 LTS / 20.04 LTS : curl vulnerabilities (USN-5021-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5021-1 advisory. Harry Sintonen and Tomas Hoger discovered that curl incorrectly handled TELNET connections when the -t option was used on the command line...
kernel: use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c
A flaw use-after-free in the Linux kernel CIPSO network packet labeling protocol functionality was found in the way user open local network connection with the usage of the security labeling that is IP option number 134. A local user could use this flaw to crash the system or possibly escalate...
[ASA-202107-48] linux: privilege escalation
Arch Linux Security Advisory ASA-202107-48 ========================================== Severity: High Date : 2021-07-21 CVE-ID : CVE-2021-3609 CVE-2021-3612 CVE-2021-33909 Package : linux Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-2181 Summary ======= The...
Juniper Networks Junos OS 缓冲区错误漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. Junos OS suffers from a buffer error vulnerability that originates from a buffer overflow vulnerability in the device's...