Lucene search
K

387 matches found

RedHat Linux
RedHat Linux
added 2016/11/09 4:48 p.m.7 views

kernel: use-after-free via crafted IPV6 sendmsg for raw / tcp / udp / l2tp sockets.

It was found that the Linux kernel's IPv6 implementation mishandled socket options. A local attacker could abuse concurrent access to the socket options to escalate their privileges, or cause a denial of service use-after-free and system crash via a crafted sendmsg system call...

7.3CVSS7AI score0.00299EPSS
Exploits0References4
CNVD
CNVD
added 2016/03/16 12:0 a.m.14 views

BusyBox OPTION_6RD Parsing Heap Buffer Overflow Vulnerability

BusyBox is a set of applications containing several linux commands and tools maintained by Ukrainian software developer Denis Vlasenko. A heap buffer overflow vulnerability exists in BusyBox version 1.24.1, which stems from an error in udhcpc when the program parses the IPv6 Rapid Deployment DHCP...

9.8CVSS7.4AI score0.28429EPSS
Exploits4References1
OSV
OSV
added 2016/01/04 5:59 a.m.2 views

UBUNTU-CVE-2015-8714

The dissectdcomOBJREF function in epan/dissectors/packet-dcom.c in the DCOM dissector in Wireshark 1.12.x before 1.12.9 does not initialize a certain IPv4 data structure, which allows remote attackers to cause a denial of service application crash via a crafted packet...

5.5CVSS6.4AI score0.01539EPSS
Exploits0References5
OSV
OSV
added 2015/11/16 9:59 p.m.2 views

DEBIAN-CVE-2015-8215

net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers to cause a denial of service packet loss via a value that is 1 smaller than the minimum compliant value or 2 larger than the MTU of a...

5CVSS5.9AI score0.03693EPSS
Exploits0References1
OSV
OSV
added 2015/11/16 9:59 p.m.4 views

UBUNTU-CVE-2015-8215

net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers to cause a denial of service packet loss via a value that is 1 smaller than the minimum compliant value or 2 larger than the MTU of a...

5CVSS6.7AI score0.03693EPSS
Exploits0References8
OSV
OSV
added 2015/11/16 9:59 p.m.2 views

DEBIAN-CVE-2015-2924

The receivera function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery ND protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit setting via a small hoplimit value in a Router Advertisement RA message, a similar issue to CVE-2015-2922...

3.3CVSS8.1AI score0.01204EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/09/15 12:0 a.m.34 views

F5 Networks BIG-IP : D-Bus vulnerability (SOL17256)

The busconnectionscheckreply function in config-parser.c in D-Bus before 1.6.24 and 1.8.x before 1.8.8 allows local users to cause a denial of service CPU consumption via a large number of method calls. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

2.1CVSS5.6AI score0.00388EPSS
Exploits0References2
CNVD
CNVD
added 2015/03/13 12:0 a.m.5 views

Cisco TelePresence VCS and Conductor SDP Message Denial of Service Vulnerability

Cisco TelePresence is a telepresence conferencing solution developed by Cisco.Cisco Expressway is a video conferencing application. A security vulnerability in Cisco TelePresence VCS and Conductor SDP message handling allows attackers to exploit the vulnerability to submit special IPv4 or IPv6v6...

7.8CVSS6.8AI score0.01895EPSS
Exploits0References1
OSV
OSV
added 2014/11/10 12:0 a.m.2 views

UBUNTU-CVE-2014-7207

A certain Debian patch to the IPv6 implementation in the Linux kernel 3.2.x through 3.2.63 does not properly validate arguments in ipv6selectident function calls, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging 1 tun or 2 macvtap devic...

4.9CVSS7AI score0.00376EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2014/11/04 5:56 p.m.4 views

shim: out-of-bounds memory read flaw in DHCPv6 packet processing

An out-of-bounds memory read flaw was found in the way shim parsed certain IPv6 packets. A specially crafted DHCPv6 packet could possibly cause shim to crash, preventing the system from booting if IPv6 booting was enabled...

5CVSS5.7AI score0.02685EPSS
Exploits0References4
OSV
OSV
added 2013/12/12 6:55 p.m.1 views

DEBIAN-CVE-2013-4458

Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library aka glibc or libc6 2.18 and earlier allows remote attackers to cause a denial of service crash via a 1 hostname or 2 IP address that triggers a large number of AFINET6 address results. NOTE: th...

5CVSS7.3AI score0.04154EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2013/11/20 4:57 p.m.4 views

Kernel: net: IPv6: panic when UFO=On for an interface

net/ipv6/ip6output.c in the Linux kernel through 3.11.4 does not properly determine the need for UDP Fragmentation Offload UFO processing of small packets after the UFO queueing of a large packet, which allows remote attackers to cause a denial of service memory corruption and system crash or...

6.1CVSS7.3AI score0.02578EPSS
Exploits1References4
OSV
OSV
added 2013/11/20 1:19 p.m.2 views

DEBIAN-CVE-2013-4563

The udp6ufofragment function in net/ipv6/udpoffload.c in the Linux kernel through 3.12, when UDP Fragmentation Offload UFO is enabled, does not properly perform a certain size comparison before inserting a fragment header, which allows remote attackers to cause a denial of service panic via a lar...

7.1CVSS6.3AI score0.03899EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2013/11/07 4:47 p.m.5 views

OpenJDK: Inet6Address class IPv6 address processing errors (Libraries, 8015743)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries...

5CVSS6.8AI score0.03932EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/31 4:21 p.m.8 views

kernel: handling of IPv6 temporary addresses

The ipv6createtempaddr function in net/ipv6/addrconf.c in the Linux kernel through 3.8 does not properly handle problems with the generation of IPv6 temporary addresses, which allows remote attackers to cause a denial of service excessive retries and address-generation outage, and consequently...

3.2CVSS7.2AI score0.0181EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2013/07/15 12:0 a.m.1 views

PT-2013-4859 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.10.1 Description: The issue is related to the handling of Router Advertisement RA messages in the IPv6 stack. Specifically, the fib6 add rt2node function in net/ipv6/ip6 fib.c does not properly handle certain...

5.4CVSS6.4AI score0.04672EPSS
Exploits1References19
Cisco
Cisco
added 2012/08/10 2:48 p.m.20 views

Cisco Carrier Routing System Security Bypass Vulnerability

Cisco Carrier Routing System contains a vulnerability that could allow an unauthenticated, remote attacker to bypass security protections and gain unauthorized network access. The vulnerability is due to improper handling of IP version 4 IPv4 fragments in the affected device. An unauthenticated,...

4.3CVSS2.3AI score0.015EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2012/07/24 6:48 p.m.2 views

kernel: netfilter: null pointer dereference in nf_ct_frag6_reasm()

net/ipv6/netfilter/nfconntrackreasm.c in the Linux kernel before 2.6.34, when the nfconntrackipv6 module is enabled, allows remote attackers to cause a denial of service NULL pointer dereference and system crash via certain types of fragmented IPv6 packets...

7.8CVSS7.4AI score0.04433EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2011/10/31 12:0 a.m.20 views

Fedora Update for radvd FEDORA-2011-14022

Check for the Version of radvd OpenVAS Vulnerability Test Fedora Update for radvd FEDORA-2011-14022 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

7.5CVSS6.3AI score0.03962EPSS
Exploits0References2
securityvulns
securityvulns
added 2011/05/26 12:0 a.m.56 views

Cisco Security Advisory: Cisco XR 12000 Series Shared Port Adapters Interface Processor Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco XR 12000 Series Shared Port Adapters Interface Processor Vulnerability Advisory ID: cisco-sa-20110525-iosxrspa Revision 1.0 For Public Release 2011 May 25 1600 UTC GMT...

7.8CVSS0.2AI score0.0121EPSS
Exploits0
Rows per page
Query Builder