Malicious code in local-lds (npm)

The package local-lds was found to contain malicious code...

MAL-2025-25481 Malicious code in local-lds (npm)

The package local-lds was found to contain malicious code...

Denial Of Service (DoS)

github.com/envoyproxy/envoy is vulnerable to Denial of Service DoS attacks. When the listener is exhausted, gRPC access logs utilizing its global scope may result in a use-after-free, which allows an authenticated attacker to cause an application crash via a malicious LDS upstream...

CVE-2022-44725

Summary (CVE-2022-44725): OPC Foundation Local Discovery Server (LDS) vulnerability affecting Siemens/OpenPCS/Siemens SIMATIC components (e.g., OpenPCS 7 V9.1, SIMATIC NET PC Software V14–V18, SIMATIC WinCC Runtime Professional/Unified PC Runtime, TeleControl Server Basic V3, etc.). Root cause: L...

Malicious code in sdm.vendor.lds (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03c620ac09095c5072c6ab5e4eaa6aa7ce1e40d94517f0b2b5924d39e5ec6fa8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

sportsnewsaddict.com Cross Site Scripting vulnerability OBB-2641289

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

lds-info.de Cross Site Scripting vulnerability OBB-1343157

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

MS10-068: Vulnerability in Local Security Authority Subsystem Service could allow elevation of privilege

Resolves a vulnerability in Active Directory directory service, Active Directory Application Mode ADAM, and Active Directory Lightweight Directory Service AD LDS that could allow elevation of privilege if an authenticated attacker sent a specially crafted LDAP messages to a listening LSASS...

CVE-2017-17443

OPC Foundation Local Discovery Server LDS 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file. This vulnerability requires an attacker with access to the file system where the...

CVE-2017-17443

The CVE-2017-17443 entry concerns OPC Foundation Local Discovery Server (LDS) 1.03.370. A security update is required to address vulnerabilities that allow an attacker with local file-system access to place invalid data in the configuration file, causing the LDS to crash or become unavailable unt...

CVE-2017-11672

The CVE-2017-11672 entry concerns the OPC Foundation Local Discovery Server (LDS) prior to 1.03.367. Root cause: the Windows service for opcualds.exe is registered without surrounding the executable path in quotes, which can allow a local user to gain privileges. Impact is privilege escalation fo...

CVE-2013-3868

CVE-2013-3868 affects Microsoft Active Directory Lightweight Directory Service (AD LDS) and Active Directory Services across Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, and Server 2012. The vulnerability allows remote attackers to trigger a denial of service (LDAP...

CVE-2011-3406

CVE-2011-3406 describes a buffer overflow in Microsoft Windows Active Directory, ADAM, and AD LDS that can allow a remote authenticated attacker to execute arbitrary code by sending a crafted LDAP query. Root cause: memory initialization issue in LDAP request handling. Affected products/versions ...

CVE-2011-2014

The CVE-2011-2014 entry concerns LDAPS in Active Directory, ADAM, and AD LDS where the LDAPS implementation does not check Certificate Revocation Lists (CRLs). Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2/R2 SP1, and Windows ...

Microsoft Windows Active Directory Denial of Service Vulnerability (973309)

This host is missing a critical security update according to Microsoft Bulletin MS09-066. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Security Bulletin MS08-035 – Important Vulnerability in Active Directory Could Allow Denial of Service (953235)

Microsoft Security Bulletin MS08-035 – Important Vulnerability in Active Directory Could Allow Denial of Service 953235 Published: June 10, 2008 | Updated: June 11, 2008 Version: 1.1 General Information Executive Summary This security update resolves a privately reported vulnerability in...

Microsoft Windows Active Directory LDAP Request Validation Remote Denial Of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability because Microsoft Active Directory, ADAM Active Directory Application Mode, and AD LDS Active Directory Lightweight Directory Service fail to handle specially crafted Lightweight Directory Access Protocol LDAP...