34 matches found
EUVD-2001-0849
Malware in sbrugna...
EUVD-2001-0848
Malware in sbrugna...
EUVD-2001-0844
Malware in sbrugna...
EUVD-2001-0850
Malware in sbrugna...
EUVD-2001-0847
Malware in sbrugna...
EUVD-1999-0445
Malware in sbrugna...
EUVD-2001-0845
Malware in sbrugna...
EUVD-2001-0846
Malware in sbrugna...
Splitting atoms in XNU
Posted by Ian Beer, Google Project Zero TL;DR A locking bug in the XNU virtual memory subsystem allowed violation of the preconditions required for the correctness of an optimized virtual memory operation. This was abused to create shared memory where it wasn't expected, allowing the creation of ...
Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service
Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service source: https://www.securityfocus.com/bid/25352/info Cisco IOS is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain CLI commands. To issue commands that trigger this vulnerability,...
Code injection
Multiple memory leaks in Cisco IOS 12.0 through 12.4 allow remote attackers to cause a denial of service device crash via a malformed SIP packet, aka 1 CSCsf11855, 2 CSCeb21064, 3 CSCse40276, 4 CSCse68355, 5 CSCsf30058, 6 CSCsb24007, and 7 CSCsc60249...
Code injection
Unspecified vulnerability in Cisco Unified Communications Manager CUCM 5.0, 5.1, and 6.0, and IOS 12.0 through 12.4, allows remote attackers to execute arbitrary code via a malformed SIP packet, aka CSCsi80102...
PT-2004-1685 · Cisco · Cisco Ios +1
Name of the Vulnerable Software and Affected Versions: Cisco IOS versions 11.1x through 11.3x Cisco IOS versions 12.0x through 12.2x Description: The issue allows remote attackers to cause a denial of service, resulting in a device reload, via malformed BGP OPEN or UPDATE messages. A Cisco device...
CVE-2001-1097
Cisco IOS 12.0–12.2.1 devices (routers and switches) are affected by CVE-2001-1097, allowing a remote attacker to cause a denial of service via a flood of UDP packets. The vulnerability is described in the CVE/NVD entries as a network-accessible DoS condition with a partial impact on availability...
CVE-2001-0864
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions...
CVE-2001-0861
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 and earlier allows remote attackers to cause a denial of service CPU consumption by flooding the router with traffic that generates a large number of ICMP Unreachable replies...
CVE-2001-0865
Cisco 12000 Series Routers (IOS 12.0) with Engine 2 line cards are affected by CVE-2001-0865. The issue is that the outgoing ACL implementation does not support the fragment keyword, potentially allowing fragmented packets to bypass the ACL as configured (violation of intended access). The descri...
CVE-2001-0866
Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote attackers to bypass the intended access controls...
CVE-2001-0865
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access...
CVE-2001-0862
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL...