Wireshark 1.6.x < 1.6.11 DRDA DoS

The installed version of Wireshark 1.6 is earlier than 1.6.11. It thus is affected by a denial of service vulnerability. A malformed packet can cause the 'DRDA' dissector to enter an infinite loop thereby consuming excessive CPU resources. C Tenable Network Security, Inc. include"compat.inc"; if...

Wireshark LDP PPP and HSRP dissector Multiple Vulnerabilities (Windows)

This host is installed with Wireshark and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbwiresharkmultdissectormultvulnwin.nasl 5888 2017-04-07 09:01:53Z teissa $ Wireshark LDP PPP and HSRP dissector Multiple Vulnerabilities Windows Authors: Madhuri D Copyright: Copyright...

Wireshark LDP PPP and HSRP dissector Multiple Vulnerabilities - Windows

Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...

USN-1527-2: XML-RPC for C and C++ vulnerabilities

USN-1527-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for XML-RPC for C and C++. Both issues described in the original advisory affected XML-RPC for C and C++ in Ubuntu 10.04 LTS, 11.04, 11.10 and 12.04 LTS. Original advisory details: It was discovered that Exp...

Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service

source: https://www.securityfocus.com/bid/64048/info Net-SNMP is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the SNMPD to crash, exhaust CPU resources or trigger infinite loop; denying service to legitimate users. Net-SNMP 5.7.1 is vulnerable; othe...

Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service

Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service source: https://www.securityfocus.com/bid/64048/info Net-SNMP is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the SNMPD to crash, exhaust CPU resources or trigger infinite loop; denying...

Wireshark Multiple Vulnerabilities - August 2012 (Windows)

This host is installed with Wireshark and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbwiresharkmultvulnaug12win.nasl 5988 2017-04-20 09:02:29Z teissa $ Wireshark Multiple Vulnerabilities - August 2012 Windows Authors: Madhuri D Copyright: Copyright c 2012 Greenbone...

Wireshark Multiple Vulnerabilities (Aug 2012) - Windows

Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...

USN-1527-1: Expat vulnerabilities

It was discovered that Expat computed hash values without restricting the ability to trigger hash collisions predictably. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service by consuming excessive CPU resources...

Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : expat vulnerabilities (USN-1527-1)

It was discovered that Expat computed hash values without restricting the ability to trigger hash collisions predictably. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service by consuming excessive CPU resources...

Mandriva Update for wireshark MDVSA-2012:125 (wireshark)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Wireshark 1.8.x < 1.8.1 Multiple Denial of Service Vulnerabilities

The installed version of Wireshark is 1.8.x before 1.8.1. This version is affected by the following vulnerabilities : - An error exists in the 'PPP' dissector that can cause the application to crash when reading a malformed packet from either the wire or from a capture file. CVE-2012-4048 - An...

Wireshark 1.6.x < 1.6.9 Multiple Denial of Service Vulnerabilities

The installed version of Wireshark is 1.6.x before 1.6.9. This version is affected by the following vulnerabilities : - An error exists in the 'PPP' dissector that can cause the application to crash when reading a malformed packet from either the wire or from a capture file. CVE-2012-4048 - An...

Exploit Code Released for ASP.NET Flaw

A few days after MIcrosoft released a patch to fix a vulnerability in ASP.NET that could enable a denial-of-service attack, someone has released exploit code for the vulnerability. The proof-of-concept exploit code was posted to the Full Disclosure mailing list and is available for download from...

Microsoft to Release Emergency Fix for ASP.NET DoS Flaw

UPDATED Microsoft on Thursday plans to release an emergency out-of-band update to address a vulnerability in ASP.NET that could allow an attacker to consume all of the resources on a vulnerable server with a single specially designed HTTP request. The vulnerability affects a wide range of Web...

Ubuntu Update for linux USN-1227-1

Ubuntu Update for Linux kernel vulnerabilities USN-1227-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12271.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux USN-1227-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu 10.04 LTS : linux vulnerabilities (USN-1218-1)

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

USN-1208-1: Linux kernel (Marvel DOVE) vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

Ubuntu 11.04 : linux vulnerabilities (USN-1193-1)

Timo Warns discovered that the GUID partition parsing routines did not correctly validate certain structures. A local attacker with physical access could plug in a specially crafted block device to crash the system, leading to a denial of service. CVE-2011-1577 Phil Oester discovered that the...

IBM solidDB RPC Test Commands Denial of Service Vulnerabilities

This host is running IBM solidDB and is prone to multiple denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gbibmsoliddbrpctestsvcdosvuln.nasl 7015 2017-08-28 11:51:24Z teissa $ IBM solidDB RPC Test Commands Denial of Service Vulnerabilities Authors: Antu Sanadi Copyright:...