Lucene search
K

96 matches found

Tenable Nessus
Tenable Nessus
added 2018/12/06 12:0 a.m.35 views

Debian DLA-1603-1 : suricata security update

Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching. CVE-2017-15377 It was possible to trigger lots of redundant checks on the...

7.5CVSS6.5AI score0.24712EPSS
Exploits4References5
Prion
Prion
added 2018/05/09 7:29 a.m.33 views

Heap overflow

An issue was discovered in HAProxy before 1.8.8. The incoming H2 frame length was checked against the maxframesize setting instead of being checked against the bufsize. The maxframesize only applies to outgoing traffic and not to incoming, so if a large enough frame size is advertised in the...

5CVSS7.8AI score0.0843EPSS
Exploits0References3Affected Software2
Citrix
Citrix
added 2017/11/14 12:0 a.m.13 views

How to Defragment a PVS vDisk with minimum downtime

The purpose of this guide is to instruct a PVS Administrator on the quickest way to perform a defragmentation process on a vDisk, while minimizing the amount of downtime incurred for the PVS Targets. It is important to note that, while this process can be performed without having to Power Down th...

7AI score
Exploits0
OSV
OSV
added 2017/03/18 8:59 p.m.1 views

DEBIAN-CVE-2017-7177

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching...

7.5CVSS7AI score0.01256EPSS
Exploits0References1
NVD
NVD
added 2017/03/18 8:59 p.m.18 views

CVE-2017-7177

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching...

7.5CVSS7.5AI score0.01256EPSS
Exploits0References4
OSV
OSV
added 2017/03/18 8:59 p.m.21 views

CVE-2017-7177

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching...

7.5CVSS7.5AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2017/03/18 8:59 p.m.19 views

CVE-2017-7177

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching...

7.5CVSS7.1AI score0.01256EPSS
Exploits0References3
Prion
Prion
added 2017/03/18 8:59 p.m.13 views

Design/Logic Flaw

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching...

5CVSS7.5AI score0.01256EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2017/03/18 8:10 p.m.69 views

CVE-2017-7177

Suricata (IDS/IPS) is affected by CVE-2017-7177 due to an IPv4 defragmentation evasion flaw: it does not check the IP protocol during fragment matching. This can enable an attacker to craft fragments that bypass reassembly/detection. Affected are Suricata releases prior to 3.2.1. Remediation: upg...

7.5CVSS7.3AI score0.01256EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2017/03/18 8:10 p.m.20 views

CVE-2017-7177

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching...

7.4AI score0.01256EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2017/03/18 8:10 p.m.21 views

CVE-2017-7177

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching...

7.5CVSS7.5AI score0.01256EPSS
Exploits0
OSV
OSV
added 2016/12/28 7:59 a.m.1 views

DEBIAN-CVE-2016-9755

The netfilter subsystem in the Linux kernel before 4.9 mishandles IPv6 reassembly, which allows local users to cause a denial of service integer overflow, out-of-bounds write, and GPF or possibly have unspecified other impact via a crafted application that makes socket, connect, and writev system...

7.8CVSS8.1AI score0.0039EPSS
Exploits0References1
OSV
OSV
added 2015/05/26 3:59 p.m.2 views

UBUNTU-CVE-2015-3813

The fragmentaddwork function in epan/reassemble.c in the packet-reassembly feature in Wireshark 1.12.x before 1.12.5 does not properly determine the defragmentation state in a case of an insufficient snapshot length, which allows remote attackers to cause a denial of service memory consumption vi...

5CVSS6.4AI score0.02821EPSS
Exploits0References3
securityvulns
securityvulns
added 2009/12/11 12:0 a.m.62 views

[USN-869-1] Linux kernel vulnerabilities

=========================================================== Ubuntu Security Notice USN-869-1 December 10, 2009 linux vulnerability CVE-2009-1298, CVE-2009-4131 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.10 This...

7.8CVSS0.1AI score0.03872EPSS
Exploits2
securityvulns
securityvulns
added 2009/12/11 12:0 a.m.55 views

Linux kernel multiple security vulnerabilities

Crash on malformed IP packet defragmentation, privilege escalation with Ext4 "move extents" ioctl...

7.8CVSS2.6AI score0.03872EPSS
Exploits2References1Affected Software1
Ubuntu
Ubuntu
added 2009/12/10 12:56 a.m.81 views

USN-869-1: Linux kernel vulnerabilities

David Ford discovered that the IPv4 defragmentation routine did not correctly handle oversized packets. A remote attacker could send specially crafted traffic that would cause a system to crash, leading to a denial of service. The fix was included in the earlier kernels from USN-864-1...

7.8CVSS7.9AI score0.03872EPSS
Exploits2
Rows per page
Query Builder