SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based...

DEBIAN-CVE-2018-5733

A malicious client which is allowed to send very large amounts of traffic billions of packets to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash. Affects ISC DHCP 4.1.0 - 4.1-ESV-R15, 4.2.0 - 4.2.8, 4.3.0 - 4.3.6, 4.4.0...

CVE-2018-5733

A malicious client which is allowed to send very large amounts of traffic billions of packets to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash. Affects ISC DHCP 4.1.0 - 4.1-ESV-R15, 4.2.0 - 4.2.8, 4.3.0 - 4.3.6, 4.4.0...

dhcp: Reference count overflow in dhcpd allows denial of service

A denial of service flaw was found in the way dhcpd handled reference counting when processing client requests. A malicious DHCP client could use this flaw to trigger a reference count overflow on the server side, potentially causing dhcpd to crash, by sending large amounts of traffic...

SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based...

Cisco TelePresence Video Communication Server Denial of Service Vulnerability (CNVD-2017-221679)

Cisco TelePresence Video Communication Server VCS is a telepresence video communication server from Cisco USA.Session Initiation Protocol SIP is one of the session initiation protocols. A denial of service vulnerability exists in SIP in Cisco TelePresence VCS. A remote attacker could exploit this...

CVE-2017-6790

A vulnerability in the Session Initiation Protocol SIP on the Cisco TelePresence Video Communication Server VCS could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on the targeted appliance. The vulnerability is due to excessive SIP traffic sent to the devic...

SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based...

kernel: ath9k: tid->sched race in ath_tx_aggr_sleep()

It was found that a remote attacker could use a race condition flaw in the athtxaggrsleep function to crash the system by creating large network traffic on the system's Atheros 9k wireless network adapter...