Unified Layer Shell Upload

/------ Unified-Layer Unrestricted File Upload Exploit /------ Author: UmPire / [email protected] /------ Iran Security Group / iransec.net Hi guys, With this exploit, You can upload files with any extensions you want in sites that are hosted on unified layer and its children like bluehost,...

DHCP exhaustion attack: DHCPig

dhcpig – an advanced DHCP exhaustion attack DHCPig initiates an advanced DHCP exhaustion attack. It will consume all IPs on the LAN, stop new users from obtaining IPs, release any IPs in use, then for good measure send gratuitous ARP and knock all windows hosts offline. It requires scapy =2.1...

Cisco Nexus 9000 Series Switches Reserved VLAN Number Vulnerability (Cisco-SA-20150916-CVE-2015-6295)

A vulnerability in the handling of incoming Layer 2 packets tagged with a Cisco Nexus 9000 Series Switch N9K reserved VLAN number could allow an unauthenticated, adjacent attacker to cause a partial denial of service DoS condition due to increased CPU utilization and possible control plane...

Code injection

Cisco NX-OS 6.12I34 and 7.03I11 on Nexus 9000 N9K devices allows remote attackers to cause a denial of service CPU consumption or control-plane instability or trigger unintended traffic forwarding via a Layer 2 packet with a reserved VLAN number, aka Bug ID CSCuw13560...

CVE-2015-6295

CVE-2015-6295 affects Cisco NX-OS running on Nexus 9000 series: 6.1(2)I3(4) and 7.0(3)I1(1). The vulnerability stems from handling of Layer 2 packets tagged with a reserved VLAN number, due to a lack of validation, which could allow an unauthenticated adjacent attacker to cause a partial DoS via ...

CVE-2015-6295

Cisco NX-OS 6.12I34 and 7.03I11 on Nexus 9000 N9K devices allows remote attackers to cause a denial of service CPU consumption or control-plane instability or trigger unintended traffic forwarding via a Layer 2 packet with a reserved VLAN number, aka Bug ID CSCuw13560...

Cisco Nexus 9000 Series Switches Reserved VLAN Number Vulnerability

A vulnerability in the handling of incoming Layer 2 packets tagged with a Cisco Nexus 9000 Series Switch N9K reserved VLAN number could allow an unauthenticated, adjacent attacker to cause a partial denial of service DoS condition due to increased CPU utilization and possible control plane...

The vulnerability of the Cisco IOS operating system, which allows a intruder to trigger a service failure

The vulnerability of the Cisco IOS operating system is related to resource management errors. Exploiting this vulnerability allows a malicious actor to cause service interruptions using a specially crafted L2TP packet...

Amazon Linux: Security Advisory (ALAS-2012-38)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2015-6272

Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064...

Design/Logic Flaw

Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted SIP packet, aka Bug IDs CSCta74749 and CSCta77008...

Code injection

Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064...

CVE-2015-6272

Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service Embedded Services Processor crash via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064...

Cisco ASR 1000 Series Router L2TP Processing Denial of Service Vulnerability

The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. The Cisco ASR 1000 Series Router handles L2TP with a security vulnerability that allows a remote attacker to exploit the vulnerability by...

Cisco ASR 1000 Series Router H.323 Message Handling Denial of Service Vulnerability

The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. A security vulnerability exists in the Cisco ASR 1000 Series Router's processing of H.323 messages, which allows a remote attacker to exploit...

openstack-neutron: L2 agent DoS through incorrect allowed address pairs

A Denial-of-Service flaw was found in the OpenStack Networking neutron L2 agent when using the iptables firewall driver. By submitting an address pair that is rejected as invalid by the ipset tool with zero prefix size, an authenticated attacker can cause the L2 agent to crash...

mysql: use of SSL/TLS can not be enforced in mysql client library (oCERT-2015-003, BACKRONYM)

It was found that the MySQL client library permitted but did not require a client to use SSL/TLS when establishing a secure connection to a MySQL server using the "--ssl" option. A man-in-the-middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client an...

NSS: incorrectly permited skipping of ServerKeyExchange (MFSA 2015-71)

It was found that NSS permitted skipping of the ServerKeyExchange packet during a handshake involving ECDHE Elliptic Curve Diffie-Hellman key Exchange. A remote attacker could use this flaw to bypass the forward-secrecy of a TLS/SSL connection...

mysql: use of SSL/TLS can not be enforced in mysql client library (oCERT-2015-003, BACKRONYM)

It was found that the MySQL client library permitted but did not require a client to use SSL/TLS when establishing a secure connection to a MySQL server using the "--ssl" option. A man-in-the-middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client an...

Denial of Service Vulnerability in Multiple EMC RSA Products

EMC RSA BSAFE Micro Edition Suite MES and others are products of EMC Corporation.EMC RSA BSAFE is a security software product that supports cryptographic algorithms, certificate chain validation, and Transport Layer Security TLS encryption suites, among other things, to help users achieve a wide...