15 matches found
CVE-2026-6570 kodcloud KodExplorer systemMember.class.php initInstall authorization
A security flaw has been discovered in kodcloud KodExplorer up to 4.52. Affected is the function initInstall of the file /app/controller/systemMember.class.php. Performing a manipulation of the argument path results in authorization bypass. The attack may be initiated remotely. The exploit has be...
Polska Akademia Dostępności CMS 代码问题漏洞
Polska Akademia Dostępności CMS is an accessible web content management system from Polska Akademia Dostępności, Poland. A code issue vulnerability exists in Polska Akademia Dostępności CMS that stems from a client control permission check parameter and could lead to remote code execution...
Code injection
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages...
CVE-2015-7704
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages...
CVE-2015-7704
CVE-2015-7704 describes a denial-of-service in ntpd caused by handling of Kiss-of-Death (KoD) messages. The issue arises from KoD processing that could delay or stop querying time sources. Affected software: ntpd in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77. Impact: unauthenticated remot...
CVE-2015-7704
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages...
Kodi 17.0 Local File Inclusion Exploit
Usage Info msf use auxiliary/scanner/http/koditraversal msf auxiliarykoditraversal show actions ...actions... msf auxiliarykoditraversal set ACTION msf auxiliarykoditraversal show options ...show and set options... msf auxiliarykoditraversal run This module requires Metasploit:...
SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1247-1)
ntp was updated to version 4.2.8p6 to fix 28 security issues. Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way, some options have been renamed or dropped. - 'controlkey 1' is added during update to ntp.conf to allow sntp to work. - The local cloc...
Oracle Linux 7 : ntp (ELSA-2015-2231)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-2231 advisory. - check origin timestamp before accepting KoD RATE packet CVE-2015-7704 - allow only one step larger than panic threshold with -g CVE-2015-5300 -...
F5 Networks BIG-IP : NTP vulnerability (K17566)
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted 'KOD' messages. CVE-2015-7704 Impact An off-path attacker can send a crafted Kiss of Death KoD packet to the client, which will increase the client's...
CVE-2015-7704
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages...
UBUNTU-CVE-2015-7704
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages...
PT-2015-7587 · Ntf +6 · Ntp +8
Name of the Vulnerable Software and Affected Versions: NTP versions 4.x before 4.2.8p4 NTP versions 4.3.x before 4.3.77 Description: The issue allows remote attackers to cause a denial of service via a number of crafted "KOD" messages. Recommendations: For NTP versions 4.x before 4.2.8p4, update ...
ntp -- 13 low- and medium-severity vulnerabilities
ntp.org reports: NTF's NTP Project has been notified of the following 13 low- and medium-severity vulnerabilities that are fixed in ntp-4.2.8p4, released on Wednesday, 21 October 2015: Bug 2941 CVE-2015-7871 NAK to the Future: Symmetric association authentication bypass via crypto-NAK Cisco ASIG...
Microsoft Windows 9598 NT Enterprise Server 4.0 SP5 NT Terminal Server 4.0 SP4 NT Workstation 4.0 SP5 - Denial of Service (2)
Microsoft Windows 9598 NT Enterprise Server 4.0 SP5 NT Terminal Server 4.0 SP4 NT Workstation 4.0 SP5 - Denial of Service 2 // source: https://www.securityfocus.com/bid/514/info The Windows 98 and Windows 2000 TCP/IP stacks were not built to reliably tolerate malformed IGMP headers. When one is...