3830 matches found
CVE-2017-12232
Cisco ISR G2 routers running Cisco IOS 15.0–15.6 are affected by CVE-2017-12232 due to a misclassification of Ethernet frames, which allows an unauthenticated adjacent attacker to cause a reload and a DoS condition by sending a crafted Ethernet frame. The vulnerability impact is a denial of servi...
CVE-2017-12232
A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 ISR G2 Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The...
CVE-2017-11120
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craft a malformed RRM neighbor report frame to trigger an internal buffer overflow in the Wi-Fi firmware, aka B-V2017061204...
CVE-2017-11121
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205...
Stack overflow
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205...
Cisco Integrated Services Routers Generation 2 Denial of Service Vulnerability
Cisco Integrated Services Routers Generation 2 ISR G2 Routers is a router device from Cisco.IOS is one of the operating systems used for network devices. A denial of service vulnerability exists in the protocol implementation of IOS versions 15.0 through 15.6 in Cisco Integrated Services Routers...
CVE-2017-11121
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205...
Cisco IOS Software for Cisco Integrated Services Routers Generation 2 Denial of Service Vulnerability
A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 ISR G2 Routers running Cisco IOS Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The vulnerabilit...
PT-2017-4196 · Cisco · Cisco Integrated Services Routers Generation 2 (Isr G2) Routers +1
Name of the Vulnerable Software and Affected Versions: Cisco IOS versions 15.0 through 15.6 Description: A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 ISR G2 Routers could allow an unauthenticated, adjacent attacker to cause an affected devi...
Broadcom 802.11v WNM Sleep Mode Response Heap Overflow Vulnerability
Broadcom suffers from a heap overflow vulnerability when handling 802.11v WNM Sleep Mode Response. Broadcom: Heap overflow when handling 802.11v WNM Sleep Mode Response CVE-2017-7065 Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are...
Apple iOS 10.2 - Broadcom Out-of-Bounds Write when Handling 802.11k Neighbor Report Response
Apple iOS 10.2 - Broadcom Out-of-Bounds Write when Handling 802.11k Neighbor Report Response Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1289 The exploit gains code execution on the Wi-Fi firmware on the iPhone 7. The exploit has been tested against the Wi-Fi firmware as...
The vulnerability of the mv_read_header function in the multimedia library Ffmpeg (libavformat/mvdec.c) allows a attacker to trigger memory consumption and service failure.
The vulnerability of the mvreadheader function in the FFmpeg multimedia library libavformat/mvdec.c is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to trigger memory consumption and service failures by using a specially created MV format file...
Clickjacking Through Frames
bolt/bolt is vulnerable to clickjacking attacks. The vulnerability exists as bolt did not have sameorigin set in the X-Frame-Options header...
CVE-2017-11121
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205...
UBUNTU-CVE-2017-14055
In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mvreadheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nbframes" field in the header but does not contain sufficient backing data, is provided, the loop over t...
CVE-2015-7516
ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service NULL pointer dereference and switch disconnect by sending two Ethernet frames with ethertype Jumbo Frame 0x8870...
CVE-2015-7516
ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service NULL pointer dereference and switch disconnect by sending two Ethernet frames with ethertype Jumbo Frame 0x8870...
CVE-2015-7516
CVE-2015-7516 affects ONOS before 1.5.0 when using the ifwd app. A remote attacker can cause a denial of service by sending two Ethernet frames with ether_type 0x8870, triggering a NULL pointer dereference and switch disconnect. The available documents describe the impact as DoS but do not specif...
DEBIAN-CVE-2017-12855
Xen maintains the GTFread,writing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in use. Under some circumstances, Xen will clear the...
Technicolor TC8717T Device Time Warner Firmware Unauthorized Access Vulnerability
Technicolor TC8717T devices is a router from the French company Technicolor.Time Warner is the firmware that runs on it. A security vulnerability exists in the Time Warner firmware on Technicolor TC8717T devices. A remote attacker could exploit the vulnerability to gain network access by reading...