5 matches found
EUVD-2011-1925
Malware in sbrugna...
Design/Logic Flaw
A vulnerability in the fragmentation handling code of tunnel protocol packets in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected system to reload, resulting in a denial of service DoS condition. This vulnerability is due to the improper handling of large...
Null pointer dereference
The ipexpire function in net/ipv4/ipfragment.c in the Linux kernel before 2.6.39 does not properly construct ICMPTIMEEXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service invalid pointer dereference via crafted fragmented packets...
CVE-2011-1927
The ipexpire function in net/ipv4/ipfragment.c in the Linux kernel before 2.6.39 does not properly construct ICMPTIMEEXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service invalid pointer dereference via crafted fragmented packets...
CVE-2010-0751
The CVE-2010-0751 issue affects libnids ip_evictor in ip_fragment.c before version 1.24, used by dsniff and possibly other products. A remote attacker can trigger a denial of service via crafted fragmented packets, causing a NULL pointer dereference and crash. Public advisories (SUSE, Fedora, SUS...