54 matches found
PT-2022-35753 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.262 Description: The issue is related to the xfrm component, specifically with the update of ipcomp scratches when freed. The actual impact and attack plausibility have not yet been proven. Recommendations...
XNU - Remote Double-Free via Data Race in IPComp Input Path
XNU - Remote Double-Free via Data Race in IPComp Input Path === Summary === This report describes a bug in the XNU implementation of the IPComp protocol https://tools.ietf.org/html/rfc3173. This bug can be remotely triggered by an attacker who is able to send traffic to a macOS system iOS AFAIK...
XNU - Remote Double-Free via Data Race in IPComp Input Path Exploit
=== Summary === This report describes a bug in the XNU implementation of the IPComp protocol https://tools.ietf.org/html/rfc3173. This bug can be remotely triggered by an attacker who is able to send traffic to a macOS system iOS AFAIK isn't affected over two network interfaces at the same time...
XNU - Remote Double-Free via Data Race in IPComp Input Path
=== Summary === This report describes a bug in the XNU implementation of the IPComp protocol https://tools.ietf.org/html/rfc3173. This bug can be remotely triggered by an attacker who is able to send traffic to a macOS system iOS AFAIK isn't affected over two network interfaces at the same time...
tcpdump buffer overflow vulnerability (CNVD-2017-02327)
tcpdump is a set of sniffing tools developed by the Tcpdump team that run under the command line. The tool allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer. A buffer overflow vulnerability exists in the ipcompprint function...
CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
ALPINE-CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
CVE-2016-7928
The CVE-2016-7928 entry concerns tcpdump prior to version 4.9.0, where the IPComp parser (print-ipcomp.c:ipcomp_print()) is vulnerable to a buffer overflow. The flaw allows a remote attacker to overflow a buffer by sending an overly long argument, potentially leading to arbitrary code execution o...
CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
UBUNTU-CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
CVE-2016-7928
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...
Apple Mac OS X xnu <= 1228.3.13 - IPv6-ipcomp Remote kernel DoS PoC
No description provided by source. / xnu-ipv6-ipcomp.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.3.13 ipv6-ipcomp remote kernel DoS POC by mu-b - Sun 24 Feb 2008 - Tested on: Apple MACOS X 10.5.1 xnu-1228.0.21/RELEASEI386 Apple MACOS X 10.5.2 xnu-1228.3.131/RELEASEI386...
IPComp encapsulation pre-auth kernel memory corruption
No description provided by source. //source: http://lists.grok.org.uk/pipermail/full-disclosure/2011-April/080031.html BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, this...
CVE-2011-1547
Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1, when IPsec is enabled, allow remote attackers to cause a denial of service memory corruption and panic or possibly have unspecified other impact via a crafted 1 IPv4 or 2 IPv6 packet wi...
Memory corruption
Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1, when IPsec is enabled, allow remote attackers to cause a denial of service memory corruption and panic or possibly have unspecified other impact via a crafted 1 IPv4 or 2 IPv6 packet wi...
NetBSD/FreeBSD IPComp实现栈溢出远程内存破坏漏洞
Bugtraq ID: 47123 IPcomp是一款IP有效载荷压缩协议,为IP层提供无损耗压缩。 源自NetBSD/KAME的IPComp实现,未压缩负载的注入其代码类似如下: algo = ipcompalgorithmlookupcpi; / ... / error = algo-decompressm, m-mnext, &newlen; / ... / if nxt != IPPROTODONE if inetswipprotoxnxt.prflags & PRLASTHDR != 0 && ipsec4inrejectm, NULL...
IPComp encapsulation pre-auth kernel memory corruption
Exploit for bsd platform in category dos / poc from: http://lists.grok.org.uk/pipermail/full-disclosure/2011-April/080031.html BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, th...