9 matches found
CVE-2019-12258
Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options...
URGENT/11 Scanner, Based On Detection Tool By Armis
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'URGENT/11 Scanner, Based on Detection Tool by Armis', 'Description' = %q This module detects VxWorks and the IPnet IP stack, along with devices...
Hirschmann HiOS Switches Argument Injection or Modification (CVE-2019-12258)
An attacker with the source and destination TCP-port and IP-addresses of a session can inject invalid TCP-segments into the flow, causing the TCP-session to be reset. An application will see this as an ECONNRESET error message when using the socket after such an attack. The most likely outcome is...
Siemens Improper Neutralization of Argument Delimiters in a Command in Wind River VxWorks (CVE-2019-12258)
Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. C Tenable,...
CVE-2019-12258
creationtimestamp| type| source ---|---|--- 2019-10-21 16:13:35+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/vxworks/urgent11check.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:12+00:00| seen|...
URGENT/11 Scanner, Based on Detection Tool by Armis
This module detects VxWorks and the IPnet IP stack, along with devices vulnerable to CVE-2019-12258. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'URGENT/11 Scanner, Based on Detection Tool b...
CVE-2019-12258
CVE-2019-12258 affects Wind River VxWorks 6.6–vx7 via the IPNet TCP stack, causing a session-fixation vulnerability that can lead to a TCP DoS from malformed TCP options. Public sources describe this as part of the URGENT/11 set and note the related IPNet flaws across IPv4/TCP handling. Mitigatio...
URGENT/11: VxWorks RTOS 11 0 day vulnerabilities affect 20 million device-bug warning-the black bar safety net
Armis Labs security researchers recently in the currently most widely used embedded devices in real timeoperating system real-time operating systems, RTOS)VxWorks found 11 a 0 day vulnerability, theoperating systemis widely used in aerospace, defense, industrial, medical, electronic, network, and...
Xerox WorkCentre Multiple Vulnerabilities (XRX19-016) (URGENT/11)
According to its self-reported version, the remote Xerox WorkCentre is affected by multiple remote code execution and denial-of-service vulnerabilities in the IPnet TCP/IP stack. An unauthenticated, remote, attacker could leverage these vulnerabilities to gain full access to the affected device o...