UBUNTU-CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

CVE-2017-13196

In several places in ihevcddecode.c, a dead loop could occur due to incomplete frames which could lead to memory leaks. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation...

Design/Logic Flaw

In several places in ihevcddecode.c, a dead loop could occur due to incomplete frames which could lead to memory leaks. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2017-14150 · Apache · Apache Qpid Broker-J

Name of the Vulnerable Software and Affected Versions: Apache Qpid Broker-J versions 6.1.0 through 6.1.4 Description: The issue arises from the broker's failure to properly enforce a maximum frame size in AMQP 1.0 frames, allowing a remote unauthenticated attacker to cause the broker to exhaust a...

CVE-2017-5729

Frame replay vulnerability in Wi-Fi subsystem in Intel Dual-Band and Tri-Band Wireless-AC Products allows remote attacker to replay frames via channel-based man-in-the-middle...

Cisco Meeting Server Denial of Service Vulnerability (CNVD-2017-34912)

Cisco Meeting Server formerly known as Acano Conferencing Server, CMS is the United States Cisco Cisco company's set of audio and video conferencing server software. A denial of service vulnerability exists in the H.26 decoder function in Cisco Meeting Server. A remote attacker can exploit this...

GNU Binutils Denial of Service Vulnerability (CNVD-2017-34506)

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data, and assembly source code. A denial of service vulnerability exists in the displaydebugframes function in dwarf.c in GNU Binutils 2.29.1. A remote attacker can exploit this...

CVE-2017-16867

Amazon Key through 2017-11-16 mishandles Cloud Cam 802.11 deauthentication frames during the delivery process, which makes it easier for 1 delivery drivers to freeze a camera and re-enter a house for unfilmed activities or 2 attackers to freeze a camera and enter a house if a delivery driver fail...

CVE-2017-16867

Amazon Key through 2017-11-16 mishandles Cloud Cam 802.11 deauthentication frames during the delivery process, which makes it easier for 1 delivery drivers to freeze a camera and re-enter a house for unfilmed activities or 2 attackers to freeze a camera and enter a house if a delivery driver fail...

CVE-2017-16867

The CVE-2017-16867 entry describes Amazon Key’s Cloud Cam mishandling 802.11 deauthentication frames during delivery, allowing a camera to be frozen and an interior entry under two scenarios. Affected: Cloud Cam devices used with Amazon Key up to 2017-11-16. Root cause: mishandling of deauth fram...

UBUNTU-CVE-2017-16828

The displaydebugframes function in dwarf.c in GNU Binutils 2.29.1 allows remote attackers to cause a denial of service integer overflow and heap-based buffer over-read, and application crash or possibly have unspecified other impact via a crafted ELF file, related to printdebugframe...

Cisco Wireless LAN Controller Denial of Service Vulnerability (CNVD-2017-32924)

Cisco Wireless LAN Controller WLC is a wireless LAN controller product from Cisco USA. The product provides security policy, intrusion detection and other functions in the wireless LAN. A denial of service vulnerability exists in the Access Network Query Protocol ANQP ingress frame handling...

Cisco Aironet 3800 Series Access Points Denial of Service Vulnerability

The Cisco Aironet 3800 Series Access Points are a set of wireless access point devices from Cisco, Inc. 802.11w Protected Management Frames PAF is one of the frame encryption protection components. A denial of service vulnerability exists in the Cisco Aironet 3800 series. The vulnerability arises...

Design/Logic Flaw

A vulnerability in the handling of 802.11w Protected Management Frames PAF by Cisco Aironet 3800 Series Access Points could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device, aka Denial of Service. The vulnerability exists because the affected...

Cisco Aironet Access Points Denial of Service Vulnerability (CNVD-2017-32920)

The Cisco Aironet 1560, 2800, and 3800 Series Access Points are router access devices from Cisco, Inc. A denial of service vulnerability exists in the Extensible Authentication Protocol EAP ingress frames handling in the Cisco Aironet 1560, 2800, and 3800 Series Access Points, which stems from a...

Cisco Aironet Access Points Protected Management Frames User Denial of Service Vulnerability

A vulnerability in the handling of 802.11w Protected Management Frames PAF by Cisco Aironet 3800 Series Access Points could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might...

Cisco Aironet 3800 Series Access Points Protected Management Frames User Denial of Service Vulnerability

A vulnerability in the handling of 802.11w Protected Management Frames PAF by Cisco Aironet 3800 Series Access Points could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerability exists because the affected device does not properl...

The vulnerability of Broadcom BCM4355C0 Wi-Fi chip drivers allows attackers to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the Broadcom BCM4355C0 Wi-Fi chip driver is caused by buffer overflow. Exploiting this vulnerability allows a remote attacker to compromise data confidentiality, integrity, and accessibility, by using a specially crafted RRM frame...

The vulnerability of Broadcom BCM4355C0 Wi-Fi chip drivers allows a hacker to induce a service failure.

The vulnerability of the Broadcom BCM4355C0 Wi-Fi chip driver is caused by an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to trigger a stack overflow, cause the Wi-Fi device to become overloaded, and result in service failure, usin...

CVE-2017-13078

Wi-Fi Protected Access WPA and WPA2 allows reinstallation of the Group Temporal Key GTK during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients...