27 matches found
Astra Linux - уязвимость в open-iscsi
A issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data. It...
VulnCheck KEV: CVE-2019-12263
Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component issue 4 of 4. There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition...
VulnCheck KEV: CVE-2019-12255
Wind River VxWorks has a Buffer Overflow in the TCP component issue 1 of 4. This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow...
CVE-2019-12261
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component issue 3 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect to a remote host...
SUSE CVE-2020-17437
An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by...
OESA-2022-1757 Open-iSCSI security update
The Open-iSCSI project is a high-performance, transport independent, multi-platform implementation of RFC3720 iSCSI. Security Fixes: An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore th...
EulerOS 2.0 SP2 : iscsi-initiator-utils (EulerOS-SA-2021-1307)
According to the versions of the iscsi-initiator-utils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when...
DEBIAN-CVE-2020-17437
An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by...
UBUNTU-CVE-2020-17437
An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by...
The vulnerability of TCP protocols in real-time operating systems like Wind River VxWorks allows attackers to execute arbitrary code.
The vulnerability of the TCP protocol in real-time operating systems like Wind River VxWorks stems from errors related to the TCP Urgent Pointer during the use of shared resources „Race Conditions“. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending...
The vulnerability of TCP protocols in real-time operating systems like Wind River VxWorks allows attackers to trigger service interruptions.
The vulnerability of the TCP protocol in real-time operating systems like Wind River VxWorks stems from the loss of the integer value “TCP Urgent Pointer=0”. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted TCP packets...
The vulnerability of TCP protocols in real-time operating systems like Wind River VxWorks allows attackers to execute arbitrary code.
The vulnerability of the TCP protocol in real-time operating systems like Wind River VxWorks stems from errors in the TCP Urgent Pointer during the “connect” operation when connecting to a remote host. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending specially...
The vulnerability of TCP protocols in real-time operating systems like Wind River VxWorks allows attackers to execute arbitrary code.
The vulnerability of the TCP protocol in real-time operating systems like Wind River VxWorks is related to errors in the TCP Urgent Pointer. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted TCP packets...
VxWorks 6.8 - TCP Urgent Pointer = 0 Integer Underflow Exploit
Exploit Title: VxWorks TCP Urgent pointer = 0 integer underflow vulnerability Discovered By: Armis Security PoC Author: Zhou Yu twitter: @504137480 Vendor Homepage: https://www.windriver.com Tested on: VxWorks 6.8 CVE: CVE-2019-12255 More Details:...
VxWorks 6.8 Integer Underflow
Exploit Title: VxWorks TCP Urgent pointer = 0 integer underflow vulnerability Discovered By: Armis Security PoC Author: Zhou Yu twitter: @504137480 Vendor Homepage: https://www.windriver.com Tested on: VxWorks 6.8 CVE: CVE-2019-12255 More Details:...
VxWorks 6.8 - TCP Urgent Pointer 0 Integer Underflow
VxWorks 6.8 - TCP Urgent Pointer 0 Integer Underflow Exploit Title: VxWorks TCP Urgent pointer = 0 integer underflow vulnerability Discovered By: Armis Security PoC Author: Zhou Yu twitter: @504137480 Vendor Homepage: https://www.windriver.com Tested on: VxWorks 6.8 CVE: CVE-2019-12255 More...
CVE-2019-12260
Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component issue 2 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option...
CVE-2019-12261
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component issue 3 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect to a remote host...
Buffer overflow
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component issue 3 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect to a remote host...
CVE-2019-12261
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component issue 3 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect to a remote host...