5 matches found
K06878231: LLDPD vulnerabilities CVE-2015-8011 and CVE-2015-8012
Security Advisory Description CVE-2015-8011 Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV...
CVE-2015-8012
lldpd before 0.8.0 allows remote attackers to cause a denial of service assertion failure and daemon crash via a malformed packet...
CVE-2015-8012
CVE-2015-8012 affects lldpd up to version 0.8.0. A malformed packet can trigger an assertion failure in the daemon, causing denial of service via a crash. Multiple connected sources corroborate: remote attacker–sent malformed LLDP frames lead to daemon instability/crash (no confirmed remote code ...
CVE-2015-8012
lldpd before 0.8.0 allows remote attackers to cause a denial of service assertion failure and daemon crash via a malformed packet...
FreeBSD : lldpd -- Buffer overflow/Denial of service (2a4a112a-7c1b-11e5-bd77-0800275369e2)
The lldpd developer Vincent Bernat reports : A buffer overflow may allow arbitrary code execution only if hardening was disabled. Malformed packets should not make lldpd crash. Ensure we can handle them by not using assert in this part. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...