MS10-058: Vulnerabilities in TCP/IP Could Allow Elevation of Privilege (978886)

The TCP/IP stack installed on the remote Windows host is affected by one or more of the following vulnerabilities : - An error exists in the Windows TCP/IP stack when processing specially crafted IPv6 packets with a malformed extension header that could cause the affected system to stop respondin...

[SECURITY] Fedora 13 Update: libnids-1.24-1.fc13

Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.x and offers IP defragmentation, TCP stream assembly and TCP port scan detection. Using libnids, one has got a convenient access to data carried by a TCP stream, no matter how...

[SECURITY] Fedora 12 Update: libnids-1.24-1.fc12

Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.x and offers IP defragmentation, TCP stream assembly and TCP port scan detection. Using libnids, one has got a convenient access to data carried by a TCP stream, no matter how...

Microsoft Windows头MDL碎片远程代码执行漏洞（MS10-009）

BUGTRAQ ID: 38062 CVE ID: CVE-2010-0240 Microsoft Windows是微软发布的非常流行的操作系统。 当运行自定义网络驱动时Windows TCP/IP栈没有正确的处理UDP数据包碎片上的特制封装安全负载（ESP），远程攻击者可以通过发送特制报文导致执行任意代码。成功利用这个漏洞要求 Windows所安装的自定义网络驱动将UDP头拆分为多个MDL。 Microsoft Windows Vista SP2 Microsoft Windows Vista SP1 Microsoft Windows Vista Microsoft Windows...

Microsoft Windows ICMPv6路由信息远程代码执行漏洞（MS10-009）

BUGTRAQ ID: 38063 CVE ID: CVE-2010-0241 Microsoft Windows是微软发布的非常流行的操作系统。 Windows的TCP/IP栈没有对特制的ICMPv6路由信息报文执行正确的边界检查，匿名攻击者可以通过向启用了IPv6功能的计算机发送特制的 ICMPv6路由信息报文触发缓冲区溢出，导致执行任意代码。成功利用这个漏洞要求攻击者与受害用户处于同一物理或虚拟网络链路中。 Microsoft Windows Vista SP2 Microsoft Windows Vista SP1 Microsoft Windows Vista Microsof...

Update Protection against Microsoft Windows ICMPv6 Router Advertisement Vulnerability (MS10-009)

A remote code execution vulnerability exists in the Windows TCP/IP stack due to insufficient bounds checking when processing specially crafted ICMPv6 Router Advertisement packets. An anonymous attacker could exploit the vulnerability by sending specially crafted ICMPv6 Router Advertisement packet...

Microsoft Windows TCP/IP时间戳远程代码执行漏洞（MS09-048）

BUGTRAQ ID: 36265 CVECAN ID: CVE-2009-1925 Microsoft Windows是微软发布的非常流行的操作系统。 由于TCP/IP栈没有正确地清除状态信息，导致Windows TCP/IP栈中存在远程代码执行漏洞。这会导致TCP/IP栈引用包含有其他信息的字段为函数指针。匿名攻击者可以通过向在网络上监听服务的计算机发送特制的TCP/IP报文来利用这个漏洞，成功利用这个漏洞的攻击者可以完全控制受影响的系统；攻击者之后可以安装程序、查看、更改或删除数据，或创建拥有完全用户权限的新账号。 Microsoft Windows Vista SP2...

CVE-2009-2136

Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv01 through snv82 and snv111 through snv117, when a Cassini GigaSwift Ethernet Adapter aka CE interface is used, allows remote attackers to cause a denial of service panic via vectors involving jumbo...

Addonics NAS Adapter (bts.cgi) Remote DoS Exploit (post-auth)

Remote: Yes Local: No Credit: Mike Cyr, aka h00die Vulnerable: NASU2FW41 Loader 1.17 Not Vulnerable: Discussion: Addonics NAS Adapter Post-Auth DoS Addonics NAS Adapter is prone to several post authentication buffer overflows. Each of these buffer overflows will crash the entire TCP/IP stack and...

Addonics NAS Adapter Post-Auth DoS

Remote: Yes Local: No Credit: Michael Cyr Vulnerable: R3282-1.33c LOADER32 1.15, NASU2FW41 Loader 1.17 Not Vulnerable: Discussion: Addonics NAS Adapter Post-Auth DoS Addonics NAS Adapter is prone to several post authentication buffer overflows. Each of these buffer overflows will crash the entire...

msvista-overflow.txt

phion Security Advisory 21/10/2008 Microsoft VISTA TCP/IP stack buffer overflow Summary ----------------------------- Microsoft Device IO Control wrapped by the iphlpapi.dll API shipping with Windows Vista 32 bit and 64 bit contains a possibly exploitable, buffer overflow corrupting kernel memory...

Microsoft Windows Kernel IGMPv3 Request Processing Code Execution (MS08-001; CVE-2007-0069)

The Internet Group Management Protocol IGMP is a communications protocol used to manage the membership of Internet Protocol multicast groups. IGMP is used by IP hosts and adjacent multicast routers to establish multicast group memberships. Overly long IGMP queries transmitted over a short period ...

Microsoft Windows TCP/IP stack multiple security vulnerabilities

Memory corruption on IGMP/MLD processing, DoS on fragmented ICMP router discovery...

Microsoft Windows TCP/IP协议栈ICMP重置TCP连接漏洞(MS05-19/MS06-064)

Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows的TCP/IP协议栈的ICMP协议处理模块存在漏洞，远程攻击者可能利用此漏洞重置服务器的TCP连接。 Microsoft Windows的ICMP协议处理模块没有充分检查某些类型ICMP消息的合法性，远程攻击者可以向受影响的服务器发送特制的ICMP消息导致服务器和客户端之间的已有TCP连接被重置。 Microsoft Windows 2000 SP4 Microsoft Windows 2000 SP3 Microsoft Windows XP SP2 Microsoft Windows...

CVE-2006-4430

The Cisco Network Admission Control NAC 3.6.4.1 and earlier allows remote attackers to prevent installation of the Cisco Clean Access CCA Agent and bypass local and remote protection mechanisms by modifying 1 the HTTP User-Agent header or 2 the behavior of the TCP/IP stack. NOTE: the vendor has...

CVE-2006-1343

The connected Debian advisory (DSA-1184-2) confirms CVE-2006-1343 as a local information-leak in the Linux 2.6.8 kernel (kernel-source-2.6.8), caused by an information leak in the getsockopt system call that can let a local user leak potentially sensitive memory to userspace. Affected architectur...

CVE-2006-0752

CVE-2006-0752 affects Honeyd before 1.5. It arises because Honeyd replies to certain illegal IP packet fragments that other IP stacks would drop, enabling remote attackers to identify IP addresses being simulated by Honeyd. The connected documents do not provide remediation or patch details; refe...

MS06-007: Vulnerability in TCP/IP Could Allow Denial of Service (913446)

The remote host runs a version of Windows with a flaw in its TCP/IP stack that could allow an attacker to perform a denial of service attack against the remote host. To exploit this vulnerability, an attacker needs to send a specially crafted IGMP packet to the remote host. C Tenable Network...

CVE-2005-1184

The TCP/IP stack in multiple operating systems allows remote attackers to cause a denial of service CPU consumption via a TCP packet with the correct sequence number but the wrong Acknowledgement number, which generates a large number of "keep alive" packets. NOTE: some followups indicate that th...

CVE-2005-1184

The TCP/IP stack in multiple operating systems allows remote attackers to cause a denial of service CPU consumption via a TCP packet with the correct sequence number but the wrong Acknowledgement number, which generates a large number of "keep alive" packets. NOTE: some followups indicate that th...