12 matches found
ROS-20260420-73-0020
Vulnerability ASN.1 in the pyasn1 library of the Python programming language is related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
EUVD-2011-0470
Malware in sbrugna...
EUVD-2003-0424
Malware in sbrugna...
CVE-2023-37005
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an Initial Context Setup Failure message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2024-34235
Open5GS MME versions
CVE-2018-11056
RSA BSAFE Micro Edition Suite, prior to 4.1.6.1 in 4.1.x, and RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.3 in 4.0.x contain an Uncontrolled Resource Consumption 'Resource Exhaustion' vulnerability when parsing ASN.1 data. A remote attacker could use maliciously constructed ASN.1 dat...
MIT Kerberos ASN.1 asn1_decode_generaltime Uninitialized Pointer Reference - Ver2 (CVE-2009-0846)
MIT Kerberos V5 is an implementation of the Kerberos protocol that allows for the negotiation of an authenticated, and optionally encrypted, communication channel between two points on a network. The MIT Kerberos V5 server utilizes the encrypted SUN-RPC protocol to communicate with its remote...
VocalTec VGW120/VGW480 Telephony Gateway Remote H.225 - Denial of Service
// source: https://www.securityfocus.com/bid/10411/info It has been reported that the VocalTec VGW120 and VGW480 Telephony Gateways are prone to a remote denial of service vulnerability. The issue is reported to exist in the ASN.1/H.323/H.225 stack. A remote attacker may exploit this issue to den...
MS04-007: ASN.1 Vulnerability Could Allow Code Execution (828028) (uncredentialed check) (HTTP)
The remote Windows host has an ASN.1 library with a vulnerability that could allow an attacker to execute arbitrary code on this host. To exploit this flaw, an attacker would need to send a specially crafted ASN.1 encoded packet with improperly advertised lengths. This particular check sent a...
MS04-007: ASN.1 Vulnerability Could Allow Code Execution (828028) (uncredentialed check) (NTLM)
The remote Windows host has an ASN.1 library that could allow an attacker to execute arbitrary code on this host. To exploit this flaw, an attacker would need to send a specially crafted ASN.1 encoded packet with improperly advertised lengths. This particular check sent a malformed NTLM packet an...
Microsoft Security Bulletin MS04-007
Microsoft Security Bulletin MS04-007 ASN.1 Vulnerability Could Allow Code Execution 828028 Issued: February 10, 2004 Version Number: 1.0 Summary Who should read this document: Customers who are using Microsoft® Windows® Impact of vulnerability: Remote Code Execution Maximum Severity Rating:...
MS04-007: ASN.1 parsing vulnerability (828028)
The remote Windows host has a ASN.1 library that is vulnerable to a flaw that could allow an attacker to execute arbitrary code on this host. To exploit this flaw, an attacker would need to send a specially crafted ASN.1 encoded packet either an IPsec session negotiation, or an HTTPS request with...