386 matches found
AST-2008-010: Asterisk IAX 'POKE' resource exhaustion
Asterisk Project Security Advisory - AST-2008-010 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | Asterisk IAX 'POKE' resource exhaustion |...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA Document ID: 105444 Advisory ID: cisco-sa-20080604-asa http://www.cisco.com/warp/public/707/cisco-sa-20080604-asa.shtml Revision 1.0 For Public Release 2008 June 04 1600 UTC...
Design/Logic Flaw
Cisco Adaptive Security Appliance ASA and Cisco PIX security appliance 7.1.x before 7.1270, 7.2.x before 7.24, and 8.0.x before 8.0310 allows remote attackers to cause a denial of service via a crafted TCP ACK packet to the device interface...
CVE-2008-2055
Cisco Adaptive Security Appliance ASA and Cisco PIX security appliance 7.1.x before 7.1270, 7.2.x before 7.24, and 8.0.x before 8.0310 allows remote attackers to cause a denial of service via a crafted TCP ACK packet to the device interface...
Asterisk IAX2 calls spoofing
Insuficient check of server ACK and weak call number generation allows blind spoofing...
CVE-2008-1897
The CVE-2008-1897 issue affects the IAX2 channel driver in Asterisk Open Source (various 1.0.x, 1.2.x before 1.2.28, 1.4.x before 1.4.19.1; AsteriskNOW; Business Editions; and s800i prior to listed versions). The vulnerability arises when unauthenticated calls are allowed and the ACK response doe...
CVE-2008-1897
The IAX2 channel driver chaniax2 in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow...
USN-574-1: Linux kernel vulnerabilities
The minix filesystem did not properly validate certain filesystem values. If a local attacker could trick the system into attempting to mount a corrupted minix filesystem, the kernel could be made to hang for long periods of time, resulting in a denial of service. This was only vulnerable in Ubun...
Null pointer dereference
The tcpsacktagwritequeue function in net/ipv4/tcpinput.c in Linux kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows remote attackers to cause a denial of service crash via crafted ACK responses that trigger a NULL pointer dereference...
CVE-2007-5501
The tcpsacktagwritequeue function in net/ipv4/tcpinput.c in Linux kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows remote attackers to cause a denial of service crash via crafted ACK responses that trigger a NULL pointer dereference...
CVE-2007-1530
The LLTD Mapper in Microsoft Windows Vista does not properly gather responses to EMIT packets, which allows remote attackers to cause a denial of service mapping failure by omitting an ACK response, which triggers an XML syntax error...
CVE-2007-1530
The CVE-2007-1530 entry affects the LLTD Mapper in Microsoft Windows Vista. The vulnerability arises because the LLTD Mapper does not properly handle responses to EMIT packets, enabling a remote attacker to cause a denial-of-service (mapping failure) by omitting an ACK response, which then trigge...
MSRPC Service Detection
The remote host is running a Windows RPC service. This service replies to the RPC Bind Request with a Bind Ack response. However it is not possible to determine the uuid of this service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid22319; scriptversion"1.10";...
security flaw
Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a malformed HB-ACK chunk...
CVE-2006-3920
The TCP implementation in Sun Solaris 8, 9, and 10 before 20060726 allows remote attackers to cause a denial of service resource exhaustion via a TCP packet with an incorrect sequence number, which triggers an ACK storm...
CVE-2006-3920
The TCP implementation in Sun Solaris 8, 9, and 10 before 20060726 allows remote attackers to cause a denial of service resource exhaustion via a TCP packet with an incorrect sequence number, which triggers an ACK storm...
Buffer overflow
Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a malformed HB-ACK chunk...
CVE-2006-1857
Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a malformed HB-ACK chunk...
CVE-2006-1242
The ippushpendingframes function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan nmap -sI attack, which bypasses intended protections against such attacks...
Code injection
The ippushpendingframes function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan nmap -sI attack, which bypasses intended protections against such attacks...