UBUNTU-CVE-2026-3184

A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can modify the supplied remote hostname before setting PAMRHOST. A remote attacker could exploit this by providing a specially crafted hostname, potentially bypassing...

OESA-2026-1636 util-linux security update

The util-linux package contains a random collection of files that implements some low-level basic linux utilities. Security Fixes: A vulnerability exists in util-linux package that allows access control bypass due to improper hostname canonicalization.CVE-2026-3184...

EUVD-2021-20231

Malware in sbrugna...

The vulnerability of the /boafrm/formStaticDHCP file of the Authorization Interface component in D-Link DWR-M961 microprogrammed router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the /boafrm/formStaticDHCP file of the Authorization Interface component in D-Link DWR-M961 routers’ microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the DHCP server of TP-Link’s Wi-Fi router software, the VN020 F3v(T), allows a intruder to cause a service failure.

The vulnerability of the DHCP server of TP-Link’s Wi-Fi router model VN020 F3vT lies in the issue where operations are performed outside the buffer in memory when processing the hostname parameter. Exploiting this vulnerability allows an attacker to cause a service failure by sending specially...

CVE-2021-33539

In Weidmueller Industrial WLAN devices in multiple versions an exploitable authentication bypass vulnerability exists in the hostname processing. A specially configured device hostname can cause the device to interpret selected remote traffic as local traffic, resulting in a bypass of web...

CVE-2021-33539

In Weidmueller Industrial WLAN devices in multiple versions an exploitable authentication bypass vulnerability exists in the hostname processing. A specially configured device hostname can cause the device to interpret selected remote traffic as local traffic, resulting in a bypass of web...

CVE-2020-17467

An issue was discovered in FNET through 4.6.4. The code for processing the hostname from an LLMNR request doesn't check for '\0' termination. Therefore, the deduced length of the hostname doesn't reflect the correct length of the actual data. This may lead to Information Disclosure in fnetllmnrpo...

Information disclosure

An issue was discovered in FNET through 4.6.4. The code for processing the hostname from an LLMNR request doesn't check for '\0' termination. Therefore, the deduced length of the hostname doesn't reflect the correct length of the actual data. This may lead to Information Disclosure in fnetllmnrpo...

CVE-2020-17467

The CVE-2020-17467 issue affects the FNET stack up to version 4.6.4, where hostname processing for LLMNR requests does not terminate with a null character. This can cause the code path in fnet_llmnr_poll to deduce an incorrect hostname length, enabling information disclosure in responses to malic...

PT-2020-15009 · Fnet · Fnet

Name of the Vulnerable Software and Affected Versions: FNET versions through 4.6.4 Description: An issue was discovered in the code for processing the hostname from an LLMNR request, which doesn't check for '0' termination. This may lead to Information Disclosure in fnet llmnr poll in fnet llmnr....

Authentication flaw

An exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A specially configured device hostname can cause the device to interpret select remote traffic as local traffic, resulting in a bypass of web authentication. An attack...

Security Advisory: FreeBSD-SA-00:63.getnameinfo

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:63 Security Advisory FreeBSD, Inc. Topic: getnameinfo function allows remote denial of service Category: core Module: libc Announced: 2000-11-01 Credits: Pavel Kankovsky...