pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion

An unbounded recursion flaw has been discovered in the pypi pyasn1 library. This uncontrolled recursion occurs when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing nested SEQUENCE 0x30 or SET 0x31 tags with Indefinite Length 0x80 markers. Thi...

GHSA-JR27-M4P2-RC6R Denial of Service in pyasn1 via Unbounded Recursion

Summary The pyasn1 library is vulnerable to a Denial of Service DoS attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing nested SEQUENCE 0x30 or SET 0x31 tags with Indefinite Length 0x80 markers. This...

EUVD-2019-6847

Malware in sbrugna...

SUSE: Security Advisory (SUSE-SU-2016:0727-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for linux, linux-source-2.6.15/20/22 vulnerabilities USN-625-1

Ubuntu Update for Linux kernel vulnerabilities USN-625-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6251.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux, linux-source-2.6.15/20/22 vulnerabilities USN-625-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networ...

Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : linux, linux-source-2.6.15/20/22 vulnerabilities (USN-625-1)

Dirk Nehring discovered that the IPsec protocol stack did not correctly handle fragmented ESP packets. A remote attacker could exploit this to crash the system, leading to a denial of service. CVE-2007-6282 Johannes Bauer discovered that the 64bit kernel did not correctly handle hrtimer updates. ...

USN-625-1: Linux kernel vulnerabilities

Dirk Nehring discovered that the IPsec protocol stack did not correctly handle fragmented ESP packets. A remote attacker could exploit this to crash the system, leading to a denial of service. CVE-2007-6282 Johannes Bauer discovered that the 64bit kernel did not correctly handle hrtimer updates. ...

CVE-2004-0699

Heap-based buffer overflow in ASN.1 decoding library in Check Point VPN-1 products, when Aggressive Mode IKE is implemented, allows remote attackers to execute arbitrary code by initiating an IKE negotiation and then sending an IKE packet with malformed ASN.1 data...

CVE-2004-0699

CVE-2004-0699 describes a heap-based buffer overflow in the ASN.1 decoding library used by Check Point VPN-1 products when Aggressive Mode IKE is enabled. The root cause is a vulnerability in ASN.1 decoding that can be triggered by sending a malformed IKE packet after initiating a negotiation, al...

MIT Kerberos 5 ASN.1 decoding functions insecurely deallocate memory (double-free)

Overview The MIT Kerberos 5 library does not securely deallocate heap memory when decoding ASN.1 structures, resulting in double-free vulnerabilities. An unauthenticated, remote attacker could execute arbitrary code on a KDC server, which could compromise an entire Kerberos realm. An attacker may...

Check Point VPN-1 products contain boundary error in the ASN.1 decoding library

Overview A vulnerability exists in Check Point's VPN-1 Server, which is included in many Check Point products. This vulnerability may permit a remote attacker to compromise the gateway system. Description Check Point VPN-1 Server is a Virtual Private Network VPN application. A buffer overflow...

ISS Protection Brief: Checkpoint VPN-1 ASN.1 Decoding Remote Compromise

-----BEGIN PGP SIGNED MESSAGE----- nternet Security Systems Protection Brief July 28, 2004 Check Point VPN-1 ASN.1 Decoding Remote Compromise Summary: ISS has shipped protection for a flaw X-Force has discovered in CheckPoint VPN-1 Server. The Check Point VPN-1 product is widely relied upon to...

Immunity Canvas: MS04_007

Name| ms04007 ---|--- CVE| CVE-2003-0818 Exploit Pack| CANVAS Description| ASN.1 bitstring decoding exploit Notes| References: http://www.eeye.com/html/Research/Advisories/AD20040210-2.html CVE Name: CVE-2003-0818 VENDOR: Microsoft MSADV: MS04-007 Repeatability: Single shot Date public: Not publi...