Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1216-1)

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

Ubuntu: Security Advisory (USN-1203-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-1208-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.10 : linux-mvl-dove vulnerabilities (USN-1208-1)

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

USN-1208-1: Linux kernel (Marvel DOVE) vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

USN-1203-1: Linux kernel (Marvel DOVE) vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

Cisco IOS Next Hop Resolution Protocol Vulnerability

The Cisco Next Hop Resolution Protocol NHRP feature in Cisco IOS contains a vulnerability that can result in a restart of the device or possible remote code execution. NHRP is a primary component of the Dynamic Multipoint Virtual Private Network DMVPN feature. NHRP can operate in three ways: at t...

Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS - Cisco Systems

Cisco IOS contains multiple vulnerabilities in the Data-link Switching DLSw feature that may result in a reload or memory leaks when processing specially crafted UDP or IP Protocol 91 packets. Cisco has released free software updates that address these vulnerabilities. Workarounds are available t...

kernel security update

CentOS Errata and Security Advisory CESA-2010:0394 Updated kernel packages that fix multiple security issues, several bugs, and add three enhancements are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5.4 Extended Update Support. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores...

Microsoft Windows ISATAP组件IPv6地址欺骗漏洞（MS10-029）

BUGTRAQ ID: 39352 CVE ID: CVE-2010-0812 Microsoft Windows是微软发布的非常流行的操作系统。 由于Windows检查隧道传输的ISATAP报文中内部报文IPv6源址的方法，导致Windows IPv6栈存在欺骗漏洞。成功利用这个漏洞的攻击者可以扮演地址绕过边界或主机防火墙。此外，当目标计算机使用攻击者所指定的源IPv6地址回复消息的话，还可能泄露信息。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP2 Microsoft...

Microsoft Windows Header MDL Fragmentation Remote Code Execution Vulnerability

Description Microsoft Windows TCP/IP protocol implementation is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful attacks will completely compromise affected computers. Technologies Affected...

Microsoft Windows TCP/IP Orphaned Connection Remote Denial of Service Vulnerability

Description Microsoft Windows TCP/IP protocol implementation is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected computer, denying service to legitimate users. Technologies Affected Avaya Messaging Application Server Avaya Messaging...

Microsoft Windows TCP/IP TimeStamps Remote Code Execution Vulnerability

Description Microsoft Windows TCP/IP protocol implementation is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful attacks will completely compromise affected computers. Technologies Affected Avaya...

Detailed explanations of Common Vulnerability scanners and network scanning techniques-vulnerability warning-the black bar safety net

With the rapid development of the Internet,Network Security has gradually become a potential huge problem, how to safeguard their own network security, one of the main method is self-examination and self-correction, and in this process, the own network is scanned to become a more efficient,...

Microsoft Dynamics GP Distributed Process Manager Detection

The remote host is running Microsoft Dynamics GP Distributed Process Manager. Dynamics GP is a business accounting and management software solution from Microsoft. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description...

Code injection

The data-link switching DLSw component in Cisco IOS 12.0 through 12.4 allows remote attackers to cause a denial of service device restart or memory consumption via crafted 1 UDP port 2067 or 2 IP protocol 91 packets...

Cisco Security Advisory: Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS Advisory ID: cisco-sa-20080326-dlsw http://www.cisco.com/warp/public/707/cisco-sa-20080326-dlsw.shtml Revision 1.0 For Public Release 2008 March 26 1600 UTC GMT...

Design/Logic Flaw

Unspecified vulnerability in the Internet Protocol IP implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service panic via unknown vectors, possibly related to ICMP packets and IP fragment reassembly...

Destroy TCP/IP-vulnerabilities and early warning-the black bar safety net

The use of a TCP/IP Protocol software vulnerabilities to attack the classic example is the Ping of Death attack. The use of a specific method is,your opponent create a exceeds the IP Standard's maximum length--6 5 5 3 5 bytes of the IP packet. When this"puffy"data packet arrival time,it makes the...