196 matches found
Debian Security Advisory DSA 3203-1 (tor - security update)
Several denial-of-service issues have been discovered in Tor, a connection-based low-latency anonymous communication system. Jowr discovered that very high DNS query load on a relay could trigger an assertion error. A relay could crash with an assertion error if a buffer of exactly the wrong layo...
ISC BIND 9 Assertion Error Resource Record RDATA Query Parsing Remote DoS
Binary data 6808.prm...
ISC BIND Assertion Error Resource Record RDATA Query Parsing Remote DoS
According to its self-reported version number, the remote installation of BIND will exit with an assertion failure if a resource record with RDATA in excess of 65535 bytes is loaded and then subsequently queried. Note that Nessus has only relied on the version itself and has not attempted to...
Scientific Linux Security Update : openldap on SL5.x i386/x86_64
A flaw was found in the way OpenLDAP handled authentication failures being passed from an OpenLDAP slave to the master. If OpenLDAP was configured with a chain overlay and it forwarded authentication failures, OpenLDAP would bind to the directory as an anonymous user and return success, rather th...
Wireshark ASN.1 BER Dissector Denial of Service Vulnerability - Mac OS X
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Wireshark ASN.1 BER Dissector Denial of Service Vulnerability (Mac OS X)
This host is installed with Wireshark and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbwiresharkasn1berdissectordosvulnmac.nasl 6018 2017-04-24 09:02:24Z teissa $ Wireshark ASN.1 BER Dissector Denial of Service Vulnerability Mac OS X Authors: Sooraj KS Copyright:...
CVE-2011-4132
The cleanupjournaltail function in the Journaling Block Device JBD functionality in the Linux kernel 2.6 allows local users to cause a denial of service assertion error and kernel oops via an ext3 or ext4 image with an "invalid log first block value."...
CentOS Update for compat-openldap CESA-2011:0346 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Wireshark ASN.1 BER Dissector Denial of Service Vulnerability (Windows)
This host is installed with Wireshark and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbwiresharkasn1berdissectordosvulnwin.nasl 7015 2017-08-28 11:51:24Z teissa $ Wireshark ASN.1 BER Dissector Denial of Service Vulnerability Windows Authors: Sooraj KS Copyright:...
SuSE9 Security Update : OpenLDAP 2 (YOU Patch Number 12222)
This update fixes a security problem in the liblber client library of openldap that allowed remote attackers to cause a denial of service program termination via crafted ASN.1 BER datagrams, which triggers an assertion error. CVE-2008-2952 Additionally a bug was fixed in ldapfreeconnection which...
openSUSE Security Update : openldap2 (openldap2-145)
This update fixes a security problem in the liblber client library of openldap that allowed remote attackers to cause a denial of service program termination via crafted ASN.1 BER datagrams, which triggers an assertion error. CVE-2008-2952 Additionally a bug was fixed in ldapfreeconnection which...
Quagga Denial of Service Vulnerability
Quagga for Linux is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mandriva Update for bind MDKSA-2007:030 (bind)
Check for the Version of bind OpenVAS Vulnerability Test Mandriva Update for bind MDKSA-2007:030 bind Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Mandriva Update for bind MDKSA-2007:030 (bind)
Check for the Version of bind OpenVAS Vulnerability Test Mandriva Update for bind MDKSA-2007:030 bind Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Ubuntu: Security Advisory (USN-601-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-0770
dkim-milter 2.6.0 through 2.8.0 allows remote attackers to cause a denial of service crash by signing a message with a key that has been revoked in DNS, which triggers an assertion error...
Code injection
dkim-milter 2.6.0 through 2.8.0 allows remote attackers to cause a denial of service crash by signing a message with a key that has been revoked in DNS, which triggers an assertion error...
CVE-2009-0770
dkim-milter 2.6.0 through 2.8.0 allows remote attackers to cause a denial of service crash by signing a message with a key that has been revoked in DNS, which triggers an assertion error...
Debian DSA-1732-1 : squid3 - denial of service
Joshua Morin, Mikko Varpiola and Jukka Taimisto discovered an assertion error in squid3, a full featured Web Proxy cache, which could lead to a denial of service attack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
CVE-2009-0770
CVE-2009-0770 affects dkim-milter 2.6.0 through 2.8.0, where a DKIM signing operation using a DNS-revoked key can trigger an assertion error and cause a denial of service (crash). Related connected sources (Debian DSA-1728-1, OpenVAS entry) indicate a fixed/update is available; practitioners shou...