46 matches found
MiracleLinux 4 : openslp-2.0.0-4.AXS4 (AXSA:2020-049:01)
The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-049:01 advisory. openslp: Heap-based buffer overflow in ProcessSrvRqst in slpdprocess.c leading to remote code execution CVE-2019-5544 CVE-2019-5544 OpenSLP as used in ESXi an...
MiracleLinux 7 : openslp-2.0.0-8.el7 (AXSA:2019-4405:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4405:01 advisory. openslp: Heap-based buffer overflow in ProcessSrvRqst in slpdprocess.c leading to remote code execution CVE-2019-5544 Tenable has extracted the preceding...
CBL Mariner 2.0 Security Update: openslp (CVE-2019-5544)
The version of openslp installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-5544 advisory. - OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the...
CVE-2019-5544 affecting package openslp for versions less than 2.0.0-26
CVE-2019-5544 affecting package openslp for versions less than 2.0.0-26. A patched version of the package is available...
Security Bulletin: OpenSLP vulnerability affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products
Summary A vulnerability in OpenSLP affects IBM SAN Volume Controller, IBM Storwize V7000, V5000, V5100, V3700 and V3500, IBM Spectrum Virtualize Software, IBM Spectrum Virtualize for Public Cloud and IBM FlashSystem V9000 and 9100 family products. The applicable vulnerability is CVE-2019-5544...
CVE-2019-5544 affecting package openslp for versions less than 2.0.0-26
CVE-2019-5544 affecting package openslp for versions less than 2.0.0-26. A patched version of the package is available...
Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.16.0.1)
The version of AOS installed on the remote host is prior to 5.16.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.16.0.1 advisory. - OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of...
Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.17)
The version of AOS installed on the remote host is prior to 5.17. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.17 advisory. - A heap overflow flaw was found in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The...
Security Bulletin: Vulnerability in OpenSLP affects Power Hardware Management Console (CVE-2019-5544)
Summary The opensslp packages provide Service Location Protocol SLP which is an Internet Engineering Task Force IETF standards track protocol and provides a framework to allow networking applications to discover the existence, location, and configuration of networked services in enterprise...
Ubuntu 16.04 LTS : OpenSLP vulnerability (USN-4919-1)
The remote Ubuntu 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4919-1 advisory. It was discovered that OpenSLP did not properly validate URLs. A remote attacker could use this issue to cause OpenSLP to crash or possibly execute arbitrary code...
Exploit for Out-of-bounds Write in Vmware Horizon_Daas
VMwareESXIOpenSLPPoCs CVE-2020-3992...
CVE-2019-5544
creationtimestamp| type| source ---|---|--- 2021-02-02 11:03:16+00:00| exploited| https://t.me/truesecator/1384 2021-02-03 21:05:11+00:00| exploited| https://t.me/xakepru/10338 2021-11-08 08:58:20+00:00| seen| MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422 2021-11-20 09:53:52+00:00| seen|...
VulnCheck KEV: CVE-2019-5544
VMware ESXi and Horizon Desktop as a Service DaaS OpenSLP contains a heap-based buffer overflow vulnerability that allows an attacker with network access to port 427 to overwrite the heap of the OpenSLP service to perform remote code execution...
EulerOS 2.0 SP2 : openslp (EulerOS-SA-2020-1655)
According to the version of the openslp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the...
Huawei EulerOS: Security Advisory for openslp (EulerOS-SA-2020-1655)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-202005-12 : OpenSLP: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202005-12 OpenSLP: Multiple vulnerabilities Multiple vulnerabilities have been discovered in OpenSLP. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for detail...
NewStart CGSL MAIN 4.05 : openslp Vulnerability (NS-SA-2020-0015)
The remote NewStart CGSL host, running version MAIN 4.05, has openslp packages installed that are affected by a vulnerability: - OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range...
Huawei EulerOS: Security Advisory for openslp (EulerOS-SA-2020-1418)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : openslp (EulerOS-SA-2020-1418)
According to the version of the openslp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the...
EulerOS 2.0 SP5 : openslp (EulerOS-SA-2020-1120)
According to the version of the openslp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the...