Lucene search
K

19 matches found

RedHat Linux
RedHat Linux
added 2026/06/24 4:29 a.m.4 views

kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

A flaw was found in the Linux kernel's IPv6 tunnel implementation. A remote attacker could exploit this flaw by sending malicious ICMPv6 error messages to cause a stack-based buffer overflow in the kernel's IPv4-over-IPv6 tunnel error handling code. This could result in a kernel crash denial of...

9.8CVSS6.9AI score0.00563EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-0067

Malware in sbrugna...

5CVSS6AI score0.10742EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-0066

Malware in sbrugna...

10CVSS6AI score0.01937EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2023/02/21 6:27 p.m.51 views

K4583: Insufficient validation of ICMP error messages VU#222750 / CVE-2004-0790 (9.x - 10.x)

Security Advisory Description This article applies to BIG-IP 9.x through 10.x. However, a regression for this vulnerability was introduced in later BIG-IP versions. For information about other versions, refer to the following article: K23440942: Insufficient validation of ICMP error messages...

5CVSS6.4AI score0.80675EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2020/03/13 12:0 a.m.25 views

Cisco IOS XR Software IPsec Packet Processor DoS (cisco-sa-iosxr-ipsec-dos-q8UPX6m)

According to its self-reported version, Cisco IOS XR Software is affected by a denial of service DoS vulnerability in the IPsec packet processor due to improper handling of packets. An unauthenticated, remote attacker can exploit this, by sending malicious ICMP error messages to an affected devic...

5.8CVSS6AI score0.01319EPSS
Exploits0References3
OSV
OSV
added 2020/03/04 7:15 p.m.2 views

CVE-2020-3190

A vulnerability in the IPsec packet processor of Cisco IOS XR Software could allow an unauthenticated remote attacker to cause a denial of service DoS condition for IPsec sessions to an affected device. The vulnerability is due to improper handling of packets by the IPsec packet processor. An...

5.8CVSS6.2AI score
Exploits0References1
Prion
Prion
added 2020/03/04 7:15 p.m.19 views

Design/Logic Flaw

A vulnerability in the IPsec packet processor of Cisco IOS XR Software could allow an unauthenticated remote attacker to cause a denial of service DoS condition for IPsec sessions to an affected device. The vulnerability is due to improper handling of packets by the IPsec packet processor. An...

5CVSS5.8AI score0.01319EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/03/04 6:35 p.m.10 views

CVE-2020-3190 Cisco IOS XR Software IPsec Packet Processor Denial of Service Vulnerability

A vulnerability in the IPsec packet processor of Cisco IOS XR Software could allow an unauthenticated remote attacker to cause a denial of service DoS condition for IPsec sessions to an affected device. The vulnerability is due to improper handling of packets by the IPsec packet processor. An...

5.8CVSS7.1AI score0.01319EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/05/08 12:0 a.m.43 views

F5 Networks BIG-IP : Insufficient validation of ICMP error messages (K23440942)

The vulnerability described in this article was initially fixed in earlier versions, but a regression was reintroduced in BIG-IP 12.x through13.x. For information about earlier versions, refer toK4583: Insufficient validation of ICMP error messages - VU222750 / CVE-2004-07909.x - 10.x. Multiple...

10CVSS5.7AI score0.80675EPSS
Exploits10References9
Tenable Nessus
Tenable Nessus
added 2015/09/18 12:0 a.m.105 views

F5 Networks BIG-IP : Insufficient validation of ICMP error messages (SOL4583)

The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL4583. The text description of this plugin is C F5 Networks...

5CVSS5.3AI score0.80675EPSS
Exploits10References3
NVD
NVD
added 2005/05/02 4:0 a.m.29 views

CVE-2005-0065

The original design of TCP does not check that the TCP sequence number in an ICMP error message is within the range of sequence numbers for data that has been sent but not acknowledged aka "TCP sequence number checking", which makes it easier for attackers to forge ICMP error messages for specifi...

10CVSS6.4AI score0.01937EPSS
Exploits0References2
CVE
CVE
added 2005/01/19 5:0 a.m.62 views

CVE-2005-0067

Technical details for CVE-2005-0067 (affected software/versions, root cause, impact, and fixes) are not publicly available in the provided Connected documents. Monitor for updates.

5CVSS7.6AI score0.13455EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2005/01/19 5:0 a.m.45 views

CVE-2005-0065

The original design of TCP does not check that the TCP sequence number in an ICMP error message is within the range of sequence numbers for data that has been sent but not acknowledged aka "TCP sequence number checking", which makes it easier for attackers to forge ICMP error messages for specifi...

6.3AI score0.01937EPSS
Exploits0References2
NVD
NVD
added 2004/12/22 5:0 a.m.30 views

CVE-2005-0067

The original design of TCP does not require that port numbers be assigned randomly aka "Port randomization", which makes it easier for attackers to forge ICMP error messages for specific TCP connections and cause a denial of service, as demonstrated using 1 blind connection-reset attacks with...

5CVSS6.4AI score0.13455EPSS
Exploits0References2
NVD
NVD
added 2004/12/22 5:0 a.m.23 views

CVE-2005-0066

The original design of TCP does not check that the TCP Acknowledgement number in an ICMP error message generated by an intermediate router is within the range of possible values for data that has already been acknowledged aka "TCP acknowledgement number checking", which makes it easier for...

5CVSS6.4AI score0.10742EPSS
Exploits0References2
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.33 views

CVE-2002-0704

The Network Address Translation NAT capability for Netfilter "iptables" 1.2.6a and earlier leaks translated IP addresses in ICMP error messages...

7.5AI score0.03242EPSS
Exploits0References6
NVD
NVD
added 2002/07/26 4:0 a.m.18 views

CVE-2002-0704

The Network Address Translation NAT capability for Netfilter "iptables" 1.2.6a and earlier leaks translated IP addresses in ICMP error messages...

7.5CVSS7.5AI score0.03242EPSS
Exploits0References6
NVD
NVD
added 2002/05/16 4:0 a.m.14 views

CVE-2002-0208

PGP Security PGPfire 7.1 for Windows alters the system's TCP/IP stack and modifies packets in ICMP error messages in a way that allows remote attackers to determine that the system is running PGPfire...

5CVSS6.6AI score0.01999EPSS
Exploits0References3
Cvelist
Cvelist
added 2002/05/03 4:0 a.m.19 views

CVE-2002-0208

PGP Security PGPfire 7.1 for Windows alters the system's TCP/IP stack and modifies packets in ICMP error messages in a way that allows remote attackers to determine that the system is running PGPfire...

6.6AI score0.01999EPSS
Exploits0References3
Rows per page
Query Builder