166 matches found
CVE-2016-4739
CVE-2016-4739 – Apple mDNSResponder information disclosure : In OS X builds prior to 10.12, when VMnet.framework is used, mDNSResponder can cause a DNS proxy to listen on all interfaces, enabling remote attackers to extract sensitive information by sending a DNS query to an unintended interface. ...
CVE-2016-4739
mDNSResponder in Apple OS X before 10.12, when VMnet.framework is used, arranges for a DNS proxy to listen on all interfaces, which allows remote attackers to obtain sensitive information by sending a DNS query to an unintended interface...
Configurable DNS Proxy: foghorn
Configurable DNS Proxy foghorn is a configurable DNS proxy to allow for black-, white-, and greylisting of DNS resources. DNS is an essential utility for the functioning of internet-connected resources, and one which a careful administrator can control. The foghorn utility provides a means to add...
Juniper Networks Junos OS SRX and J-Series BIND DoS Vulnerability
Junos OS BIND on SRX-Series and J-Series is prone to a Denial of Service vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
IPFire < 2.17 - Core Update 93 Multiple Vulnerabilities
IPFire is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Juniper Networks Junos OS Bind Denial of Service Vulnerability
Denial of Service vulnerability in Junos ISC Bind version. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; if...
[SECURITY] [DSA 3251-1] dnsmasq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3251-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 05, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3251-1] dnsmasq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3251-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 05, 2015 http://www.debian.org/security/faq -...
ProxyDroid - Set Proxys (Http / Socks4 / Socks5) on your Android devices
ProxyDroid is an app that can help you to set the proxy http / socks4 / socks5 on your android devices. FEATURES 1. Support HTTP / HTTPS / SOCKS4 / SOCKS5 proxy 2. Support basic / NTLM / NTLMv2 authentication methods 3. Individual proxy for only one or several apps 4. Multiple profiles support 5...
CloudFlare Aims to Defeat Massive DDoS Attacks with Virtual DNS
DDoS attacks have been a persistent problem for the the better part of 20 years, and as ISPs and enterprises have adjusted their defenses, attackers have adapted their tactics. One of the more effective tools in the attackers’ arsenal now is the use of botnets to generate massive numbers of DNS...
CVE-2015-1028
Multiple cross-site scripting XSS vulnerabilities in D-Link DSL-2730B router rev C1 with firmware GE1.01 allow remote authenticated users to inject arbitrary web script or HTML via the 1 domainname parameter to dnsProxy.cmd DNS Proxy Configuration Panel; the 2 brName parameter to lancfg2get.cgi L...
CVE-2015-1028
CVE-2015-1028 affects the D-Link DSL-2730B router (rev C1) with firmware GE_1.01, exposing multiple XSS vulnerabilities that allow remote authenticated users to inject arbitrary scripts via parameters in dnsProxy.cmd, lancfg2get.cgi, wlsecrefresh.wl, and wlsecurity.wl. Connected sources corrobora...
PT-2015-5024 · D Link · D-Link Dsl-2730B
Name of the Vulnerable Software and Affected Versions: D-Link DSL-2730B router rev C1 with firmware GE 1.01 Description: The issue allows remote authenticated users to inject arbitrary web script or HTML via several parameters, including the domainname parameter to "dnsProxy.cmd" DNS Proxy...
Symantec Gateway Products DNS Cache Poisoning - High Confidence (CVE-2005-0817)
The Symantec Firewall has a DNS proxy service, DNSD.exe, that acts as a proxy and cache server for the DNS requests generated by internal systems...
[DNSChef v0.2.1] DNS Proxy Relesead
DNSChef is a highly configurable DNS proxy for Penetration Testers and Malware Analysts. A DNS proxy aka “ Fake DNS “ is a tool used for application network traffic analysis among other uses. Changelog v0.2.1 It introduces IPv6 support, large number of new DNS record types, custom ports and other...
CVE-2006-4562
The proxy DNS service in Symantec Gateway Security SGS allows remote attackers to make arbitrary DNS queries to third-party DNS servers, while hiding the source IP address of the attacker. NOTE: another researcher has stated that the default configuration does not proxy DNS queries received on th...
PT-2006-5355 · Symantec · Symantec Gateway Security
Name of the Vulnerable Software and Affected Versions: Symantec Gateway Security SGS affected versions not specified Description: The issue allows remote attackers to make arbitrary DNS queries to third-party DNS servers while hiding the source IP address of the attacker. It is related to the pro...
CVE-2005-0817
Unknown vulnerability in the DNSd proxy, as used in Symantec Gateway Security 5400 2.x and 5300 1.x, Enterprise Firewall 7.0.x and 8.x, and VelociRaptor 1100/1200/1300 1.5, allows remote attackers to poison the DNS cache and redirect users to malicious sites...
CVE-2004-1754
The DNS proxy DNSd for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records...
gigafast.txt
This router is/was widely sold in CompUSA stores. It is a Gigafast router, re-branded as a CompUSA router. All firmware versions are affected. When reported to the manufacturer on 5/13/04, I had received a response stating that the information would be passed on to firmware developer. Almost a ye...