70 matches found
Juniper Networks Junos OS 安全漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that stems from an incorrect locking vulnerability in...
The vulnerability of the SIP Application Layer Gateway (ALG) on Juniper Networks’ Junos operating systems allows a attacker to trigger a system failure and restart the device.
The vulnerability of the SIP Application Layer Gateway ALG on Juniper Networks Junos operating systems is related to the use of an uninitialized pointer in the stack. Exploiting this vulnerability can allow a malicious actor to trigger a system failure and restart the device remotely...
CVE-2022-22236
An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When specific valid SIP packets are received the PFE will crash and...
CVE-2022-22236
The CVE-2022-22236 affects Juniper Junos OS on SRX/MX series, caused by an uninitialized pointer in the SIP Application Layer Gateway (ALG) that can crash the PFE and trigger DoS when specific SIP packets arrive. Affected versions include 20.4R3-S4 and earlier for 20.4, 21.1R3-S2 and earlier, 21....
Juniper Junos OS Vulnerability (JSA69892)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA69892 advisory. - An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated,...
Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability
A vulnerability in the DNS application layer gateway ALG functionality that is used by Network Address Translation NAT in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to a logic error that occurs when an...
The vulnerability of the “SIP ALG” module (SIP Application Layer Gateway) in the Realtek SDK for the eCos operating system allows a hacker to execute arbitrary code.
The vulnerability of the “SIP ALG” module SIP Application Layer Gateway in the Realtek SDK for the eCos operating system is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted UDP packet...
CVE-2022-22204
An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol SIP Application Layer Gateway ALG of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service DoS. On all MX and SRX platforms, if the...
Design/Logic Flaw
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5, and 14.1.x versions prior to 14.1.4.6, when a Session Initiation Protocol SIP message routing framework MRF application layer gateway ALG profile is configured on a Message Routing virtual server, undisclosed request...
Juniper Networks Junos OS 安全漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS that originates from improper locking of the SI...
The vulnerability of the Session Initiation Protocol (SIP) implementation and the Network Address Translation (NAT) function of the Application Layer Gateway (ALG) in microprogrammable network interface devices from Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to circumvent security restrictions and establish unauthorized connections.
The vulnerability of the Session Initiation Protocol SIP implementation and the Network Address Translation NAT function of the Application Layer Gateway ALG in microprogrammable network devices such as Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to...
The vulnerability of the File Transfer Protocol (FTP) implementation and the NAT functions of the Application Layer Gateway (ALG) in microprogrammable network devices such as Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to circumvent security restrictions and establish unauthorized connections.
The vulnerability of the File Transfer Protocol FTP implementation and the Network Address Translation NAT function of the Application Layer Gateway ALG in microprogrammable network devices such as Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to...
CVE-2021-34790
Multiple vulnerabilities in the Application Level Gateway ALG for the Network Address Translation NAT feature of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass the ALG and open unauthorized...
PT-2021-4718 · Cisco · Cisco Ftd +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: The issue is related to the incorrect implementation of security checks fo...
Cisco IOS XE Denial of Service Vulnerability (CNVD-2021-22190)
Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the DNS Application Layer Gateway ALG feature used by Network Address Translation NAT in Cisco IOS XE. The vulnerability stems from a...
Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability
A vulnerability in the DNS application layer gateway ALG functionality used by Network Address Translation NAT in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to a logic error that occurs when an affected...
Cisco IOS XE Software 代码问题漏洞
Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the DNS Application Layer Gateway ALG feature used by Network Address Translation NAT in Cisco IOS XE. The vulnerability stems from a...
New NAT/Firewall Bypass Attack Lets Hackers Access Any TCP/UDP Service
A new research has demonstrated a technique that allows an attacker to bypass firewall protection and remotely access any TCP/UDP service on a victim machine. Called NAT Slipstreaming, the method involves sending the target a link to a malicious site or a legitimate site loaded with malicious ads...
Cisco IOS XE Software NAT Session Initiation Protocol Application Layer Gateway DoS (cisco-sa-20190925-sip-alg)
According to its self-reported version, Cisco IOS XE Software is affected by a denial of service DoS vulnerability in the Network Address Translation NAT Session Initiation Protocl SIP Application Layer Gateway ALG. This allows an unauthenticated, remote attacker to cause an affected device to...
The vulnerability of the Application Layer Gateway (ALG) and the ZBFW network interface of the Cisco IOS XE operating system, which allows a attacker to trigger a reboot of the vulnerable device
The vulnerability of the Application Layer Gateway ALG and the ZBFW network firewall of the Cisco IOS XE operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a reboot of the vulnerable device...