Lucene search
K

37 matches found

ATTACKERKB
ATTACKERKB
added 2022/02/10 7:32 a.m.7 views

CVE-2022-24705

The radpacketrecv function in radius/packet.c suffers from a memcpy buffer overflow, resulting in an overly-large recvfrom into a fixed buffer that causes a buffer overflow and overwrites arbitrary memory. If the server connects with a malicious client, crafted client requests can remotely trigge...

9.8CVSS6.2AI score0.01182EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/03/11 11:15 p.m.3 views

CVE-2019-5182

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file.The destination buffer sp+0x440 is...

5.5CVSS6.4AI score0.00526EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2019/12/10 12:0 a.m.4 views

The vulnerability of the tftp_receive_packet function in the libcurl library, related to buffer overflow in memory, allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the tftpreceivepacket function in the libcurl library is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

9.8CVSS6.7AI score0.17939EPSS
Exploits0References18Affected Software13
Prion
Prion
added 2019/04/30 5:29 p.m.12 views

Design/Logic Flaw

Fujifilm FCR Capsula X/ Carbon X/ FCR XC-2, model versions CR-IR 357 FCR Carbon X, CR-IR 357 FCR XC-2, FCR-IR 357 FCR Capsula X are susceptible to a denial-of-service condition as a result of an overflow of TCP packets, which requires the device to be manually rebooted...

7.8CVSS8AI score0.01564EPSS
Exploits0References1
NVD
NVD
added 2019/04/30 5:29 p.m.21 views

CVE-2019-10948

Fujifilm FCR Capsula X/ Carbon X/ FCR XC-2, model versions CR-IR 357 FCR Carbon X, CR-IR 357 FCR XC-2, FCR-IR 357 FCR Capsula X are susceptible to a denial-of-service condition as a result of an overflow of TCP packets, which requires the device to be manually rebooted...

7.8CVSS8.1AI score0.01564EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/08/24 12:0 a.m.26 views

SUSE SLES12 Security Update : freeradius-server (SUSE-SU-2017:2243-1)

This update for freeradius fixes the following issues: Security issues fixed : - CVE-2017-10988: Decode 'signed' attributes correctly. bnc1049086 - CVE-2017-10987: Check for option overflowing the packet. bnc1049086 - CVE-2017-10985: Fix infinite loop and memory exhaustion with 'concat' attribute...

9.8CVSS8AI score0.06015EPSS
Exploits0References14
OSV
OSV
added 2017/06/01 9:25 p.m.8 views

MGASA-2017-0152 Updated openvpn packages fix security vulnerability

It was discovered that OpenVPN improperly triggered an assert when receiving an oversized control packet in some situations. A remote attacker could use this to cause a denial of service server or client crash CVE-2017-7478. It was discovered that OpenVPN improperly triggered an assert when packe...

7.5CVSS6.6AI score0.13892EPSS
Exploits2References4
Oracle linux
Oracle linux
added 2017/05/26 12:0 a.m.90 views

kernel security, bug fix, and enhancement update

3.10.0-514.21.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.1 - kernel sched/core: Fix an SMP ordering race in trytowakeup vs...

9.3CVSS7.4AI score0.17827EPSS
Exploits18
OSV
OSV
added 2017/01/25 9:59 p.m.2 views

DEBIAN-CVE-2017-5597

In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the DHCPv6 dissector could go into a large loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dhcpv6.c by changing a data type to avoid an integer overflow...

7.5CVSS7.8AI score0.02004EPSS
Exploits0References1
CNVD
CNVD
added 2016/08/21 12:0 a.m.0 views

Denial of Service Vulnerability in a Component of RealInfo for Zijin Bridge Monitoring and Configuration Software

Zijinqiao monitoring and control configuration software is a general industrial configuration software developed by Zijinqiao Company in long-term scientific research and engineering practice. A security vulnerability exists in a component of the software, which allows an attacker to exploit the...

7AI score
Exploits0
CNVD
CNVD
added 2016/08/21 12:0 a.m.4 views

QEMU '/hw/net/net_tx_pkt.c' integer overflow vulnerability

QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. QEMU suffers from an integer overflow vulnerability. An attacker can exploit the vulnerability to collide instances of QEMU, resulting in a denial of service situation...

4.4CVSS8AI score0.00381EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

Kerio Personal Firewall <= 2.1.4 - Remote Authentication Packet Overflow

No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...

7.1AI score
Exploits0
OSV
OSV
added 2013/10/28 10:55 p.m.2 views

DEBIAN-CVE-2010-1159

Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service crash and execute arbitrary code via a 1 large length value in an EAPOL packet or 2 long EAPOL packet...

6.8CVSS8AI score0.07263EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2009/11/26 12:0 a.m.73 views

ISS PAM.dll ICQ Parser Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ISS PAM.dll...

7.5CVSS0.4AI score0.7333EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2009/03/09 12:0 a.m.27 views

FileZilla FTP Server < 0.9.31 SSL/TLS Packet Overflow DoS

Binary data 4952.prm...

4.3CVSS7.3AI score0.03421EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/10/26 12:0 a.m.38 views

Skype security advisory

Synopsis ======== The EADS/CRC security team discovered a flaw in Skype client. Skype is a P2P VoIP software that can bypass firewalls and NAT to connect to the Skype network. Skype is very popular because of its sound quality and ease of use. Skype client is available for Windows, Linux, Mac OS ...

1.1AI score
Exploits0
NVD
NVD
added 2002/10/04 4:0 a.m.25 views

CVE-2002-1024

Cisco IOS 12.0 through 12.2, when supporting SSH, allows remote attackers to cause a denial of service CPU consumption via a large packet that was designed to exploit the SSH CRC32 attack detection overflow CVE-2001-0144...

7.1CVSS6.5AI score0.03297EPSS
Exploits0References4
Rows per page
Query Builder