SUSE CVE-2026-5358

REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold start cache...

EUVD-2026-23977

The obsolete nislocalprincipal function in the GNU C Library version 2.43 and older may overflow a buffer in the data section, which could allow an attacker to spoof a crafted response to a UDP request generated by this function and overwrite neighboring static data in the requesting application...

CVE-2026-5358

Rejected reason: REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold...

CVE-2026-5358

REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold start cache...

PT-2026-33850

Name of the Vulnerable Software and Affected Versions glibc versions prior to 2.44 Description The obsolete nis local principal function may overflow a buffer in the data section. This allows an attacker to spoof a crafted response to a UDP request generated by this function and overwrite...

CVE-2025-24356

The CVE-2025-24356 affects the fastd VPN daemon. When fastd receives a data packet from an unknown IP/port, it may assume a peer moved and trigger a fast-reconnect handshake (~150 bytes of UDP payload), creating an amplification factor of about 12–13 for UDP traffic. This can be exploited by spoo...

freeradius: forgery attack

A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...

RSPET - Python Reverse Shell and Post Exploitation Tool

RSPET Reverse Shell and Post Exploitation Tool is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario. Features Remote Command Execution Trafic masking XORed insted of cleartext; for better results use port 4431 Built-in File/Binary transfer both...

LinkLogger 2.4.10.15 - 'syslog' Denial of Service

!/usr/bin/perl LinkLogger 2.4.10.15 syslog DoS Tested against 2.4.10.15 Coded by Mike Cyr, aka h00die mcyr2 at csc dotcom Notes: 1. Based on code from http://www.pythonprasanna.com/Papers%20and%20Articles/Sockets/udpspoofpl.txt 2. The exact amount of packets to overwhelm the program and shut down...

ID Software Quake 1.9 - Denial of Service

ID Software Quake 1.9 - Denial of Service // source: https://www.securityfocus.com/bid/3051/info Quake is a very popular 3D "first-person-shooter" game from ID software. A flaw has been identified in the product's network play features which allows a maliciously designed client to prevent...

Hybrid_network_cable_modems.txt

KSRT Security Advisories http://www.ksrt.org Contact Account: [email protected] Advisory Subscription: Send an empty message to: [email protected] ---- KSRT Advisory 012 Date: Oct. 6 1999 ID : hybr-hsmp-012 Affected Program: Hybrid Network's Cable Modems Author: David Goldsmith...