14 matches found
EUVD-2002-1086
Malware in sbrugna...
CVE-2024-7595 GRE and GRE6 Protocols (RFC2784) do not validate or verify the source of a network packet
GRE and GRE6 Protocols RFC2784 do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can be considered simil...
CVE-2024-41570
An Unauthenticated Server-Side Request Forgery SSRF in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server...
CVE-2024-20323
A vulnerability in Cisco Intelligent Node iNode Software could allow an unauthenticated, remote attacker to hijack the TLS connection between Cisco iNode Manager and associated intelligent nodes and send arbitrary traffic to an affected device. This vulnerability is due to the presence of...
Cisco NX-OS Software Unexpected IP in IP Packet Processing (CVE-2020-10136)
Multiple products that implement the IP Encapsulation within IP standard RFC 2003, STD 1 decapsulate and route IP-in-IP traffic without any validation, which could allow an unauthenticated remote attacker to route arbitrary traffic via an exposed network interface and lead to spoofing, access...
K44453423: IP-in-IP Packet Processing vulnerability CVE-2020-10136
Security Advisory Description Multiple products that implement the IP Encapsulation within IP standard RFC 2003, STD 1 decapsulate and route IP-in-IP traffic without any validation, which could allow an unauthenticated remote attacker to route arbitrary traffic via an exposed network interface an...
GO-2022-0643 Denial of service in github.com/elastic/beats
A local attacker can cause a panic if they are able to send arbitrary traffic to a monitored port, due to an out of bounds read...
Internet Bug Bounty: IP-in-IP protocol routes arbitrary traffic by default - CVE-2020-10136
Many machines 150K-180K on the internet accept and route IP over IP by default. IP-in-IP encapsulation is a tunneling protocol specified in RFC 2003 that allows for IP packets to be encapsulated inside another IP packets. This is very similar to IPSEC VPNs in tunnel mode, except in the case of...
Elasticsearch Packetbeat PostgreSQL protocol handler denial of service vulnerability
Elasticsearch Packetbeat is a set of lightweight network packet analysis tools from the Dutch company Elasticsearch.PostgreSQL protocol handler is one of the PostgreSQL protocol handlers. A denial of service vulnerability exists in the PostgreSQL protocol handler in Elasticsearch Packetbeat...
Canon digital multifunction copiers FTP bounce vulnerability
Overview Some models of Canon digital multifunction copiers are vulnerable to the FTP bounce attack. Description From the Problems With The FTP PORT Command document:The FTP Bounce Attack To conform with the FTP protocol, the PORT command has the originating machine specify an arbitrary destinati...
CVE-2006-4508
Unspecified vulnerability in 1 Tor 0.1.0.x before 0.1.0.18 and 0.1.1.x before 0.1.1.23, and 2 ScatterChat before 1.0.2, allows remote attackers operating a Tor entry node to route arbitrary Tor traffic through clients or cause a denial of service flood via unspecified vectors...
CVE-2006-2561
Edimax BR-6104K router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter possibly within NewInternalClient, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary...
CVE-2002-1098
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound XML-Autoforward/in" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, which ultimately allows arbitrary traffic to pass through the concentrator...
CVE-2002-1098
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound XML-Autoforward/in" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, which ultimately allows arbitrary traffic to pass through the concentrator...