20 matches found
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48901: btrfs: do not start relocation until in progress drops are done bsc1229607. CVE-2022-48911: kabi: add nfqueuegetrefs for kabi compliance. bsc1229633...
BIT-APACHE-2022-22720 HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling...
macOS 11.x < 11.6.6 Multiple Vulnerabilities (HT213256)
The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.6.6. It is, therefore, affected by multiple vulnerabilities: - zlib before 1.2.12 allows memory corruption when deflating i.e., when compressing if the input has many distant matches. CVE-2018-25032 - A logic issue...
httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling
A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...
httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling
A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...
httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling
A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...
httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling
A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...
httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling
A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...
httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling
A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...
HTTP Request Smuggling
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling...
CVE-2022-22720
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling...
CVE-2022-22720
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling...
CVE-2022-22720
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling...
Microsoft Windows Firewall: Public: Logging: Log successful connections
This setting specifies logging when Windows Firewall with Advanced Security allows an inbound connection. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Information Disclosure
github.com/tendermint/tendermint is vulnerable to information disclosure. This is due to rejected inbound connection objects due to max peers not closing properly, which causes file descriptors to be leaked. This can also be exploited to cause nodes to panic from use of too many file descriptors...
Unix Command Shell, Reverse TCP (stub)
Creates an interactive shell through an inbound connection stub only, no payload This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 0 include Msf::Payload::Single include...
Active Inbound Connection From Host Listed in Known Bot Database
This plugin has been temporarily disabled. According to the output from netstat, the remote host has an inbound connection from one or more hosts that are listed in a public database as part of a botnet. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2018/08/14. Disabling threat feed...
How to Test Manually Mounting the Veeam vPower NFS Datastore
Purpose This article documents manually mounting the vPower NFS Datastore using the vSphere Web Client. The steps of this article are only intended as a troubleshooting step to help investigate and isolate an issue with vPower NFS-based restores failing. Solution This article's solution is split...
CVE-2006-6265
Teredo clients, when located behind a restricted NAT, allow remote attackers to establish an inbound connection without the guessing required to find a port mapping for a traditional restricted NAT client, by 1 using the client port number contained in the Teredo address or 2 following the...
CVE-2006-6265
CVE-2006-6265 describes a Teredo-related risk where clients behind a restricted NAT can be reached for inbound connections by either using the client port embedded in the Teredo address or via the bubble-to-open procedure. The vulnerability stems from Teredo’s handling of port discovery in constr...