1995 matches found
DEBIAN-CVE-2010-0441
Asterisk Open Source 1.6.0.x before 1.6.0.22, 1.6.1.x before 1.6.1.14, and 1.6.2.x before 1.6.2.2, and Business Edition C.3 before C.3.3.2, allows remote attackers to cause a denial of service daemon crash via an SIP T.38 negotiation with an SDP FaxMaxDatagram field that is 1 missing, 2 modified ...
Symantec Norton Firewall NBNS response Remote Heap Corruption (CVE-2004-0444)
When Symantec firewalls allow incoming UDP datagrams to port 137, any inbound UDP datagrams with a source port of 137 will be treated as NetBIOS Name Service messages and will be validated and parsed. The Symantec firewall product line is vulnerable to a remote heap corruption attack in the...
CentOS 5 : openssl (CESA-2009:1335)
Updated openssl packages that fix several security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that implements the Secure...
kernel: udp socket NULL ptr dereference
The udpsendmsg function in the UDP implementation in 1 net/ipv4/udp.c and 2 net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash via vectors involving the MSGMORE flag and a UDP socket...
DSA-1888-1 openssl - cryptographic weakness
Bulletin has no description...
RedHat Security Advisory RHSA-2009:1335
The remote host is missing updates announced in advisory RHSA-2009:1335. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols, as well as a full-strength general purpose cryptography library. Datagram TLS DTLS is a protocol based on...
openssl: DTLS out-of-sequence message handling NULL deref DoS
The dtls1retrievebufferedfragment function in ssl/d1both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an out-of-sequence DTLS handshake message, related to a "fragment bug."...
OpenSSL: DTLS pointer use-after-free flaw (DoS)
Use-after-free vulnerability in the dtls1retrievebufferedfragment function in ssl/d1both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service openssl sclient crash and possibly have unspecified other impact via a DTLS packet, as demonstrated by a packet from a server tha...
OpenSSL: DTLS fragment handling memory DoS
Multiple memory leaks in the dtls1processoutofseqmessage function in ssl/d1both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service memory consumption via DTLS records that 1 are duplicates or 2 have sequence numbers much greater than current sequenc...
kernel: udp socket NULL ptr dereference
The udpsendmsg function in the UDP implementation in 1 net/ipv4/udp.c and 2 net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash via vectors involving the MSGMORE flag and a UDP socket...
kernel: udp socket NULL ptr dereference
The udpsendmsg function in the UDP implementation in 1 net/ipv4/udp.c and 2 net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash via vectors involving the MSGMORE flag and a UDP socket...
DEBIAN-CVE-2009-1377
The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...
Mandriva Linux Security Advisory : kernel (MDVSA-2008:112)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.18, and probably other versions, does not properly check feature lengths, which might allow remote attackers to execute arbitrary code,...
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS : linux, linux-source-2.6.15/22 vulnerabilities (USN-659-1)
It was discovered that the direct-IO subsystem did not correctly validate certain structures. A local attacker could exploit this to cause a system crash, leading to a denial of service. CVE-2007-6716 It was discovered that the disabling of the ZEROPAGE optimization could lead to large memory...
Fedora 9 : udev-124-4.fc9 (2009-3712)
udev provides a user-space API and implements a dynamic device directory, providing only the devices present on the system. udev replaces devfs in order to provide greater hot plug functionality. Netlink is a datagram oriented service, used to transfer information between kernel modules and...
OpenBSD <= 4.5 IP datagram Null Pointer Deref DoS Exploit
Exploit for openbsd platform in category dos / poc ========================================================= OpenBSD = 4.5 IP datagram Null Pointer Deref DoS Exploit ========================================================= import sys from scapy import victim=sys.argv1 icmpv6=58 p=IPdst=victim...
OpenBSD <= 4.5 IP datagram Null Pointer Deref DoS Exploit
No description provided by source. import sys from scapy import victim=sys.argv1 icmpv6=58 p=IPdst=victim p.proto=icmpv6 srp,timeout=1 milw0rm.com 2009-04-14...
OpenBSD 4.5 - IP datagram Null Pointer Deref Denial of Service
import sys from scapy import victim=sys.argv1 icmpv6=58 p=IPdst=victim p.proto=icmpv6 srp,timeout=1 milw0rm.com 2009-04-14...
Mandriva Update for kernel MDVSA-2008:112 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2008:112 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1
Ubuntu Update for Linux kernel vulnerabilities USN-659-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6591.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks...