114 matches found
Cambium ePMP 1000 - Multiple Vulnerabilities
July 14, 2015: First contacted Cambium July 14, 2015: Initial vendor response July 16, 2015: Vuln Details reported to Cambium July 31, 2015: Followup on advisory and fix timelines August 03, 2015: Vendor gives mid-Aug as fix v2.5 release timeline. Ceases communication. Nov 19, 2015: Releasing...
Cambium ePMP 1000 Command Injection / Privilege Escalation
July 14, 2015: First contacted Cambium July 14, 2015: Initial vendor response July 16, 2015: Vuln Details reported to Cambium July 31, 2015: Followup on advisory and fix timelines August 03, 2015: Vendor gives mid-Aug as fix v2.5 release timeline. Ceases communication. Nov 19, 2015: Releasing...
SolarWinds Log and Event Manager Arbitrary Code Execution Vulnerability (CNVD-2015-06702)
SolarWinds Log and Event Manager is a log and event manager that provides real-time log analysis, memory event correlation, and threat attack response. A security vulnerability exists in the command line management console CMC of SolarWinds Log and Event Manager. This allows remote attackers to...
CVE-2015-3636
The pingunhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allows local users to gain privileges or cause a denial of service use-after-free and system crash by leveraging the ability to make a...
Updated kernel-vserver packages fix multiple vulnerabilities
Updated kernel-vserver provides upstream 3.10.40 kernel and fixes the following security issues: The microcode on AMD 16h 00h through 0Fh processors does not properly handle the interaction between locked instructions and write-combined memory types, which allows local users to cause a denial of...
CVE-2014-2851
Integer overflow in the pinginitsock function in net/ipv4/ping.c in the Linux kernel through 3.14.1 allows local users to cause a denial of service use-after-free and system crash or possibly gain privileges via a crafted application that leverages an improperly managed reference counter...
CVE-2014-2851
Integer overflow in the pinginitsock function in net/ipv4/ping.c in the Linux kernel through 3.14.1 allows local users to cause a denial of service use-after-free and system crash or possibly gain privileges via a crafted application that leverages an improperly managed reference counter...
NETGEAR DGN2200 N300 Wireless Router - Multiple Vulnerabilities
NETGEAR DGN2200 N300 Wireless Router - Multiple Vulnerabilities Title: Multiple vulnerabilities in NETGEAR N300 WIRELESS ADSL2+ MODEM ROUTER DGN2200 ==================================================================================== Notification Date: 11 February 2014 Affected Vendor: NetGear...
CVE-2013-6432
The pingrecvmsg function in net/ipv4/ping.c in the Linux kernel before 3.12.4 does not properly interact with read system calls on ping sockets, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging unspecified privileges to execute a crafte...
CVE-2013-6432
The pingrecvmsg function in net/ipv4/ping.c in the Linux kernel before 3.12.4 does not properly interact with read system calls on ping sockets, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging unspecified privileges to execute a crafte...
QNAP VioStor NVR / QNAP NAS Devices RCE Vulnerability (Jun 2013) - Active Check
QNAP VioStor NVR / QNAP NAS devices are prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...
[Full-disclosure] Yoggie Pico Pro Remote Code Execution
This vulnerability affects the Yoggie Pico Pro and most certainly the Yoggie Pico, due to them being effectively identical security appliance. They expose a 'ping' function in their web interface for diagnostic purposes, which passes the IP/hostname given directly to ping in the form of 'ping -c ...
networking_utils.php
Title: The bug in networkingutils.php http://www.sourcecraft.org/downloads networkingutilsPHP Show Files Vulnerability Summary: networkingutils.php Includes a ping function, a traceroute function, and an nslookup function. Vulnerable systems: networkingutils networkingutils.php of the...
PHP.networking_utils
Title: The bug in networkingutils.php http://www.sourcecraft.org/downloads networkingutilsPHP Show Files Vulnerability Summary: networkingutils.php Includes a ping function, a traceroute function, and an nslookup function. Vulnerable systems: networkingutils networkingutils.php of the...