Juniper Junos SRX Series Application Layer Gateway DoS (JSA10751)

According to its self-reported version number and configuration, the remote Juniper Junos device is affected by a denial of service vulnerability in the application layer gateway ALG that is triggered when matching in-transit traffic. An unauthenticated, remote attacker can exploit this to cause ...

The vulnerability of the Cisco IOS operating system, which allows a remote attacker to trigger a service failure

A bug in the Application Layer Gateway ALG module of the Cisco IOS operating system allows a remote attacker to reboot the device by using a specially crafted DNS packet with NAT enabled...

Juniper Junos RTSP Packet Handling flowd DoS (JSA10721)

According to its self-reported version number, the remote Juniper Junos device is affected by denial of service vulnerability due to a flaw in the Real Time Streaming Protocol Application Layer Gateway RTSP ALG implementation. An unauthenticated, remote attacker can exploit this, via a crafted RT...

Input validation

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.1X48 before 12.3X48-D20, and 15.1X49 before 15.1X49-D30 on SRX series devices, when the Real Time Streaming Protocol Application Layer Gateway RTSP ALG is enabled, allow remote attackers to cause a denial of service flowd crash v...

CVE-2016-1262

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.1X48 before 12.3X48-D20, and 15.1X49 before 15.1X49-D30 on SRX series devices, when the Real Time Streaming Protocol Application Layer Gateway RTSP ALG is enabled, allow remote attackers to cause a denial of service flowd crash v...

CVE-2015-6272

Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064...

Code injection

Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064...

Design/Logic Flaw

Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted SIP packet, aka Bug IDs CSCta74749 and CSCta77008...

CVE-2015-6272

Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064...

Cisco ASR 1000 Series Router H.323 Message Handling Denial of Service Vulnerability

The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. A security vulnerability exists in the Cisco ASR 1000 Series Router's processing of H.323 messages, which allows a remote attacker to exploit...

Password Change Vulnerability in Beijing PaiNet Software Panabit System

Panabit is an application layer traffic management system based on FreeBSDLinux operating system developed by Beijing Panabit. A password modification vulnerability exists in the Panabit system. The vulnerability allows an attacker to remotely execute system commands, resulting in information...

System Command Injection Vulnerability in Beijing PaiNet Software Panabit System

Panabit is an application layer traffic management system based on FreeBSDLinux operating system developed by Beijing Panabit. A system command injection vulnerability exists in the Panabit system. The vulnerability allows an attacker to remotely execute system commands, resulting in information...

Design/Logic Flaw

The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway ALG is enabled, allows remote attackers to cause a denial of service flowd crash...

CVE-2014-3825

The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway ALG is enabled, allows remote attackers to cause a denial of service flowd crash...

SlowHTTPTest - Application Layer DoS attack simulator

SlowHTTPTest is a highly configurable tool that simulates some Application Layer Denial of Service attacks. It works on majority of Linux platforms, OSX and Cygwin - a Unix-like environment and command-line interface for Microsoft Windows. It implements most common low-bandwidth Application Layer...

Phony Googlebots Becoming a Real DDoS Attack Tool

Even an enterprise with the harshest, strictest blocking rules in place is likely to leave the door ajar for Google’s search bot software known as a Googlebot. Googlebots crawl websites collecting data along the way in order to build a searchable index that assures a site will be listed and ranke...

Bro - Passive Open-Source Network Traffic Analyzer

While focusing on network security monitoring, Bro provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Bro has successfully bridged the traditional gap between academia and operations since its inception. Today, it ...

Cisco IOS Software Multiple Network Address Translation (NAT) Denial of Service Vulnerabilities (cisco-sa-20140326-nat)

According to its self-reported version, the version of Cisco IOS running on the remote host is affected by multiple denial of service vulnerabilities in the Network Address Translation NAT implementation : - An issue exists in the TCP Input module due to the improper handling of certain sequences...

Vulnerability in World Largest Video Site Turned Million of Visitors into DDoS Zombies

An application layer or 'layer 7' distributed denial of service DDoS attacks is one of the most complicated web attack that disguised to look like legitimate traffic but targets specific areas of a website, making it even more difficult to detect and mitigate. Just Yesterday Cloud-based security...

CVE-2014-2111

The Application Layer Gateway ALG module in Cisco IOS 12.2 through 12.4 and 15.0 through 15.4, when NAT is used, allows remote attackers to cause a denial of service device reload via crafted DNS packets, aka Bug ID CSCue00996...