CVE-1999-0305

The system configuration control sysctl facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the 1 dosourceroute or 2 forwarding variables are set, which allows remote attackers to spoof TCP...

EUVD-2001-0163

Malware in sbrugna...

EUVD-2023-31690

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2018-18541

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Teeworlds before 0.6.5, connection packets could be forged. There was no challenge-response involved in the connection build up. A remote attacker could send...

SUSE CVE-2020-35685

An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existing...

IBM WebSphere Application Server 7.0.0.0 <= 7.0.0.45 / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.15 / 9.0.0.0 <= 9.0.0.10 Connection Spoofing Vulnerability

The IBM WebSphere Application Server running on the remote host is vulnerable to a connection spoofing vulnerability that could allow a remote attacker to spoof connection information which could then be used in further attacks against the system. C Tenable Network Security, Inc...

CVE-2018-1902

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to spoof connection information which could be used to launch further attacks against the system. IBM X-Force ID: 152531...

DEBIAN-CVE-2018-18541

In Teeworlds before 0.6.5, connection packets could be forged. There was no challenge-response involved in the connection build up. A remote attacker could send connection packets from a spoofed IP address and occupy all server slots, or even use them for a reflection attack using map download...

Xerox WorkCentre 4260 / 4265 Multiple Vulnerabilities (XRX15AV) (FREAK) (Logjam)

According to its model number and software version, the remote Xerox WorkCentre 4260 / 4265 device is affected by multiple vulnerabilities : - A security feature bypass vulnerability, known as FREAK Factoring attack on RSA-EXPORT Keys, exists due to the support of weak EXPORTRSA cipher suites wit...

Vulnerability in core server (CVE-2012-0867)

SSL certificate name checks are truncated to 32 characters, allowing connection spoofing under some circumstances when using third party certificate authorities...

Mandriva Update for postgresql MDVSA-2012:026 (postgresql)

Check for the Version of postgresql OpenVAS Vulnerability Test Mandriva Update for postgresql MDVSA-2012:026 postgresql Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...

Mandriva Linux Security Advisory : postgresql (MDVSA-2012:026)

Multiple vulnerabilities has been discovered and corrected in postgresql : Permissions on a function called by a trigger are not properly checked CVE-2012-0866. SSL certificate name checks are truncated to 32 characters, allowing connection spoofing under some circumstances when using third-party...

Weak initial sequence number generation

Weak initial sequence number generation allows to spoof TCP connection...

Multiple IRIX bugs

TCP connections spoofing, DoS...

CVE-2002-1463

Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor Models 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 generate easily predictable initial sequence numbers ISN, which allows remote attackers to spoof connections...

Half-Life Server 1.13.1 - New Player Flood Denial of Service

Half-Life Server 1.13.1 - New Player Flood Denial of Service source: https://www.securityfocus.com/bid/5076/info Half-Life is a popular game distributed and maintained by Valve Software. It includes features that allow users to game locally, or in distributed network environments. Valve Software...

FreeBSD-SA-01:39.tcp-isn

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:39 Security Advisory FreeBSD, Inc. Topic: TCP initial sequence number generation contains statistical vulnerability Category: core Module: kernel Announced: 2001-05-02...

PT-2001-1393 · Microsoft · Wince

Name of the Vulnerable Software and Affected Versions: WinCE version 3.0.9348 Description: The issue allows remote attackers to spoof or hijack TCP connections due to the generation of predictable TCP Initial Sequence Numbers ISNs. Recommendations: For WinCE version 3.0.9348, at the moment, there...

PT-1999-1099 · Linux · Linux

Name of the Vulnerable Software and Affected Versions: Linux versions prior to 2.0.36 Description: The issue allows remote attackers to spoof a TCP connection and pass data to the application layer before fully establishing the connection. Recommendations: For Linux versions prior to 2.0.36, upda...