25 matches found
CLSA-2026-1778238289 frr: Fix of 4 CVEs
CVE-2022-43681: fix bgpd crash on malformed BGP OPEN messages with insufficient data - CVE-2022-40318: fix out-of-bounds read in bgpopenoptionparse with extended option params - CVE-2023-31489: fix out-of-bounds read in BGP Long-lived Graceful-Restart capability parsing - CVE-2023-46752: fix bgpd...
MiracleLinux 7 : httpd-2.4.6-45.4.0.1.el7.AXS7 (AXSA:2017-1628:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1628:01 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. Security issues fixed with this release: CVE-2016-0736 RESERVED This...
EUVD-2019-0835
Malware in sbrugna...
EUVD-2019-0856
Malware in sbrugna...
EUVD-2022-27316
Malicious code in bioql PyPI...
Juniper Junos OS Vulnerability (JSA75723)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA75723 advisory. - An Improper Handling of Exceptional Conditions vulnerability in BGP session processing of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated...
CVE-2024-21585
An Improper Handling of Exceptional Conditions vulnerability in BGP session processing of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker, using specific timing outside the attacker's control, to flap BGP sessions and cause the routing protocol daem...
Design/Logic Flaw
An Improper Handling of Exceptional Conditions vulnerability in BGP session processing of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker, using specific timing outside the attacker's control, to flap BGP sessions and cause the routing protocol daem...
PT-2023-23361 · Frrouting +5 · Frrouting Bgpd +5
Name of the Vulnerable Software and Affected Versions: Frrouting bgpd version 8.4.2 Description: An issue in Frrouting bgpd allows a remote attacker to cause a denial of service via the bgp capability llgr function. Recommendations: For version 8.4.2, consider disabling the bgp capability llgr...
CLSA-2022-1650575725 Update of php 5.3: Fix segfault during graceful Apache restart
ELS-42: Fix segfault during graceful Apache restart...
OPENSUSE-SU-2022:0024-1 Security update for lighttpd
This update for lighttpd fixes the following issues: lighttpd was updated to 1.4.64: CVE-2022-22707: off-by-one stack overflow in the modextforward plugin boo1194376 graceful restart/shutdown timeout changed from 0 disabled to 8 seconds. configure an alternative with: server.feature-flags +=...
CVE-2022-22169
An Improper Initialization vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an attacker who sends specific packets in certain orders and at specific timings to force OSPFv3 to unexpectedly enter graceful-restart GR helper mode even though...
CVE-2022-22169
An Improper Initialization vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an attacker who sends specific packets in certain orders and at specific timings to force OSPFv3 to unexpectedly enter graceful-restart GR helper mode even though...
Openlitespeed 1.7.9 - (Notes) Stored Cross-Site Scripting Vulnerability
Exploit Title: Openlitespeed 1.7.9 - 'Notes' Stored Cross-Site Scripting Exploit Author: cmOs Vendor Homepage: https://openlitespeed.org/ Software Link: https://openlitespeed.org/kb/install-from-binary/ Version: 1.7.9 Tested on Ubuntu 20.04 Step 1: Log in to the dashboard using the Administrator...
Openlitespeed 1.7.9 Cross Site Scripting
Exploit Title: Openlitespeed 1.7.9 - 'Notes' Stored Cross-Site Scripting Date: 3/30/2021 Exploit Author: cmOs Vendor Homepage: https://openlitespeed.org/ Software Link: https://openlitespeed.org/kb/install-from-binary/ Version: 1.7.9 Tested on Ubuntu 20.04 Step 1: Log in to the dashboard using th...
Openlitespeed Web Server 1.7.8 - Command Injection (Authenticated) (1)
Exploit Title: Openlitespeed WebServer 1.7.8 - Command Injection Authenticated Date: 26/1/2021 Exploit Author: cmOs - SunCSR Vendor Homepage: https://openlitespeed.org/ Software Link: https://openlitespeed.org/kb/install-from-binary/ Version: 1.7.8 Tested on Windows 10 Step 1: Log in to the...
CVE-2019-0049
On Junos devices with the BGP graceful restart helper mode enabled or the BGP graceful restart mechanism enabled, a certain sequence of BGP session restart on a remote peer that has the graceful restart mechanism enabled may cause the local routing protocol daemon RPD process to crash and restart...
Design/Logic Flaw
On Junos devices with the BGP graceful restart helper mode enabled or the BGP graceful restart mechanism enabled, a BGP session restart on a remote peer that has the graceful restart mechanism enabled may cause the local routing protocol daemon RPD process to crash and restart. By simulating a...
CVE-2019-0028
On Junos devices with the BGP graceful restart helper mode enabled or the BGP graceful restart mechanism enabled, a BGP session restart on a remote peer that has the graceful restart mechanism enabled may cause the local routing protocol daemon RPD process to crash and restart. By simulating a...
CVE-2019-0028
The CVE-2019-0028 entry affects Junos OS where BGP graceful restart (helper mode or mechanism) is enabled. A remote peer with graceful restart enabled can trigger a crafted BGP session restart that crashes the local Routing Protocol Daemon (RPD), crashing and restarting it and enabling a prolonge...