Cisco IOS XE ANI IPv6 Packets DoS (cisco-sa-20170320-aniipv6)

According to its self-reported version, the Cisco IOS XE software running on the remote device is affected by a denial of service vulnerability in the Autonomic Networking Infrastructure ANI component due to incomplete input validation of certain crafted IPv6 packets. An unauthenticated, remote...

Cisco IOS DHCP Denial of Service Vulnerability

Cisco IOS is an operating system developed by Cisco for its network devices. A security vulnerability exists in the DHCP client implementation of Cisco IOS. A remote attacker can exploit this vulnerability to send specially crafted DHCP messages to conduct denial-of-service attacks...

Cisco IOS and IOS XE Software ANI Registration Function Denial of Service Vulnerability

Cisco IOS and IOS XE Software are both operating systems developed by Cisco in the United States for its network devices. The Autonomic Networking Infrastructure ANI registration feature in Cisco IOS and IOS XE Software fails to adequately filter packets. A remote attacker could exploit the...

Cisco IOS and IOS XE Software ANI IPv6 Message Denial of Service Vulnerability

Cisco IOS and IOS XE Software are both operating systems developed by Cisco in the United States for its network devices. The Autonomic Networking Infrastructure ANI feature in Cisco IOS and IOS XE Software fails to adequately filter packets. A remote attacker could exploit the vulnerability by...

RHEL 6 : kernel (RHSA-2017:0817)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

RedHat Update for kernel RHSA-2017:0817-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-3850

A vulnerability in the Autonomic Networking Infrastructure ANI feature of Cisco IOS Software 15.4 through 15.6 and Cisco IOS XE Software 3.7 through 3.18, and 16 could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to incomplete inpu...

Input validation

A vulnerability in the Autonomic Networking Infrastructure ANI registrar feature of Cisco IOS Software possibly 15.2 through 15.6 and Cisco IOS XE Software possibly 3.7 through 3.18, and 16 could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The...

CVE-2017-3849

A vulnerability in the Autonomic Networking Infrastructure ANI registrar feature of Cisco IOS Software possibly 15.2 through 15.6 and Cisco IOS XE Software possibly 3.7 through 3.18, and 16 could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The...

CVE-2017-3849

Cisco IOS and IOS XE ANI Registrar Denial of Service (CVE-2017-3849) affects the Autonomic Networking Infrastructure (ANI) registrar feature in Cisco IOS/IOS XE where incomplete input validation of crafted packets can be exploited by an unauthenticated, adjacent attacker. Conditions: device runs ...

CVE-2017-3849

A vulnerability in the Autonomic Networking Infrastructure ANI registrar feature of Cisco IOS Software possibly 15.2 through 15.6 and Cisco IOS XE Software possibly 3.7 through 3.18, and 16 could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The...

kernel: net: Out of bounds stack read in memcpy_fromiovec

A flaw was found in the Linux networking subsystem where a local attacker with CAPNETADMIN capabilities could cause an out-of-bounds memory access by creating a smaller-than-expected ICMP header and sending to its destination via sendto...

Cisco IOS Software Autonomic Networking Infrastructure Registrar Denial of Service Vulnerability (cisco-sa-20170320-ani)

A vulnerability in the Autonomic Networking Infrastructure ANI registrar feature of Cisco IOS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a reference...

Cisco IOS Software IPv6 Denial of Service Vulnerability (cisco-sa-20170320-aniipv6)

A vulnerability in the Autonomic Networking Infrastructure ANI feature of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, a...

Cisco IOS XE Software Autonomic Networking Infrastructure Registrar Denial of Service Vulnerability

A vulnerability in the Autonomic Networking Infrastructure ANI registrar feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a...

Cisco IOS and IOS XE Software Autonomic Networking Infrastructure Registrar Denial of Service Vulnerability

A vulnerability in the Autonomic Networking Infrastructure ANI registrar feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due to incomplete input validation on certain crafted...

BGP Swiss Army Knife: ExaBGP

ExaBGP provides a convenient way to implement Software Defined Networking by transforming BGP messages into friendly plain text or JSON, which can then be easily handled by simple scripts or your BSS/OSS. It is routinely used to improve service resilience and provide protection against network or...

DIGISOL DG-HR1400 1.00.02 Privilege Escalation

Title: ====== Cookie based privilege escalation in DIGISOL DG-HR1400 1.00.02 wireless router. CVE Details: ============ CVE-2017-6896 Reference: ========== https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6896 https://vuldb.com/sv/?id.97954...

DIGISOL DG-HR1400 1.00.02 Wireless Router - Privilege Escalation Vulnerability

Exploit for hardware platform in category web applications Title: ====== Cookie based privilege escalation in DIGISOL DG-HR1400 1.00.02 wireless router. CVE Details: ============ CVE-2017-6896 Reference: ========== https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6896...

DIGISOL DG-HR1400 1.00.02 Wireless Router - Privilege Escalation

Title: ====== Cookie based privilege escalation in DIGISOL DG-HR1400 1.00.02 wireless router. CVE Details: ============ CVE-2017-6896 Reference: ========== https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6896 https://vuldb.com/sv/?id.97954...