454 matches found
PT-2009-4384 · Microsoft · Windows Vista +2
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista versions Gold, SP1, and SP2 Microsoft Windows Server 2008 versions Gold and SP2 Description: A remote code execution issue exists due to improper management of state information in the TCP/IP implementation. This allow...
FreeBSD IPv6 SIOCSIFINFO_IN6权限检查绕过安全限制漏洞
BUGTRAQ ID: 35285 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 IPv6是用于替换当前IPv4的新一代Internet协议,可通过ioctl2接口配置FreeBSD IPv6网络栈的很多属性。由于SIOCSIFINFOIN6 ioctl缺少必要的权限检查,本地用户(包括非root用户和牢笼中用户)可以设置一些IPv6接口属性,包括更改链路MTU和完全禁用接口。请注意这个漏洞只影响IPv6,无法利用这个漏洞影响IPv4功能。 FreeBSD FreeBSD 7.2 FreeBSD FreeBSD 7.1 FreeBSD FreeBS...
FreeBSD Security Advisory (FreeBSD-SA-09:10.ipv6.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-09:10.ipv6.asc ADV FreeBSD-SA-09:10.ipv6.asc OpenVAS Vulnerability Test $ Description: Auto generated from ADV FreeBSD-SA-09:10.ipv6.asc Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
Addonics NAS Adapter Post-Auth DoS
Remote: Yes Local: No Credit: Michael Cyr Vulnerable: R3282-1.33c LOADER32 1.15, NASU2FW41 Loader 1.17 Not Vulnerable: Discussion: Addonics NAS Adapter Post-Auth DoS Addonics NAS Adapter is prone to several post authentication buffer overflows. Each of these buffer overflows will crash the entire...
FreeBSD -- arc4random(9) predictable sequence vulnerability
Problem Description: When the arc4random9 random number generator is initialized, there may be inadequate entropy to meet the needs of kernel systems which rely on arc4random9; and it may take up to 5 minutes before arc4random9 is reseeded with secure entropy from the Yarrow random number...
USN-558-1: Linux kernel vulnerabilities
The minix filesystem did not properly validate certain filesystem values. If a local attacker could trick the system into attempting to mount a corrupted minix filesystem, the kernel could be made to hang for long periods of time, resulting in a denial of service. CVE-2006-6058 Certain calculatio...
CVE-2007-2829
The 802.11 network stack in net80211/ieee80211input.c in MadWifi before 0.9.3.1 allows remote attackers to cause a denial of service system hang via a crafted length field in nested 802.3 Ethernet frames in Fast Frame packets, which results in a NULL pointer dereference...
CVE-2007-2829
CVE-2007-2829 affects the MadWifi driver before 0.9.3.1. The vulnerability exists in the 802.11 stack (net80211/ieee80211_input.c) where a crafted length field in nested 802.3 frames within Fast Frame packets can trigger a NULL pointer dereference, leading to a remote denial of service (system ha...
Microsoft Windows Vista - Forged ARP packet Network Stack Denial of Service
!/usr/bin/env python :: Kristian Hermansen :: Date: 20070514 Reference: CVE-2007-1531 Description: Microsoft Windows Vista SP0 dumps interfaces when it receives this ARP packet. This DoS is useful for an internet cafe, wireless venue, or legitimate local attack. The victim will need to manually...
Microsoft Windows Vista - Forged ARP packet Network Stack Denial of Service
Microsoft Windows Vista - Forged ARP packet Network Stack Denial of Service !/usr/bin/env python :: Kristian Hermansen :: Date: 20070514 Reference: CVE-2007-1531 Description: Microsoft Windows Vista SP0 dumps interfaces when it receives this ARP packet. This DoS is useful for an internet cafe,...
kernel -- ipfw packet matching errors with address tables
Problem Description The ipfw tables lookup code caches the result of the last query. The kernel may process multiple packets concurrently, performing several concurrent table lookups. Due to an insufficient locking, a cached result can become corrupted that could cause some addresses to be...
CVE-2001-1055
The CVE-2001-1055 entry affects the Microsoft Windows network stack . The vulnerability allows a remote attacker to exhaust CPU resources by sending a flood of malformed ARP request packets with random source IP and MAC addresses, resulting in denial of service . The effect is described as CPU co...
CVE-2001-1055
The Microsoft Windows network stack allows remote attackers to cause a denial of service CPU consumption via a flood of malformed ARP request packets with random source IP and MAC addresses, as demonstrated by ARPNuke...
Microsoft Windows 98 - ARP Denial of Service
source: https://www.securityfocus.com/bid/3113/info A potential denial of service vulnerability exists in some versions of the Microsoft Windows network stack. The problem occurs when a large number of extraneous ARP packets sent to a host running Windows. This can cause the system to use all...