6549 matches found
wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector
Off-by-one error in the elemcellidaux function in epan/dissectors/packet-ansia.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service infinite loop via an invalid packet...
Cisco Security Advisory: Cisco IOS Internet Key Exchange Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco IOS Internet Key Exchange Vulnerability Advisory ID: cisco-sa-20120328-ike Revision 1.0 For Public Release 2012 March 28 16:00 UTC GMT +-------------------------------------------------------------------- Summary =====...
Mapping it out
In his presentation at S4, doctoral student Eireann Leverett presented his research showing how more than 10,000 Internet acccessible industrial control systems can be found online, including HVAC systems, building management systems, PLCs and other industrial systems. Here, Leverett shows a Goog...
OpenTTD -- Denial of service (server) via slow read attack
The OpenTTD Team reports: Using a slow read type attack it is possible to prevent anyone from joining a server with virtually no resources. Once downloading the map no other downloads of the map can start, so downloading really slowly will prevent others from joining. This can be further aggravat...
SuSE 10 Security Update : wireshark (ZYPP Patch Number 7796)
This update of wireshark fixes the following vulnerabilities : - Wireshark IKE dissector vulnerability. CVE-2011-3266 - Wireshark Lua script execution vulnerability. CVE-2011-3360 - Wireshark buffer exception handling vulnerability. CVE-2011-3483 - Lucent/Ascend file parser susceptible to infinit...
SuSE 11.1 Security Update : wireshark (SAT Patch Number 5281)
This update of wireshark fixes the following vulnerabilities : - Wireshark IKE dissector vulnerability. CVE-2011-3266 - Wireshark Lua script execution vulnerability. CVE-2011-3360 - Wireshark buffer exception handling vulnerability. CVE-2011-3483 - Lucent/Ascend file parser susceptible to infinit...
Skype Software Vulnerabilities - 0 Day Exploitation 2011
Document Title: =============== Skype Software Vulnerabilities - 0 Day Exploitation 2011 References: =========== Document: http://www.vulnerability-lab.com/resources/documents/293.pdf Speaker: http://conference.hitb.org/hitbsecconf2011kul/?pageid=1757 Conference Mirror:...
iPad Finally Has a Facebook Application
iPad Finally Has a Facebook Application Facebook has just released its official iPad app. The tablet device was unveiled in January 2010, but development and negotiations with Apple stalled the release of Facebook's app until now. Facebook for iPad is now available in App Store. We've been waitin...
Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1216-1)
Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...
Official websites of 7 major Syrian city hacked by Anonymous for #OpSyria
Official websites of 7 major Syrian city hacked by Anonymous for OpSyria Official websites of 7 major Syrian city hacked by Anonymous hackers as part of hacktivists Anonymous' Operation Syria OpSyria . Anonymous has replaced the home pages of official Syrian websites with an interactive map of...
CVE-2011-3749
ka-Map 1.0-20070205 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by test.php and certain other files...
Information disclosure
ka-Map 1.0-20070205 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by test.php and certain other files...
CVE-2011-3749
CVE-2011-3749 affects ka-Map 1.0-20070205. The vulnerability allows remote attackers to disclose sensitive information by requesting a PHP file directly, causing an error message that reveals the installation path. This is a straightforward information-disclosure weakness tied to improper error h...
Ubuntu 11.04 : linux vulnerabilities (USN-1211-1)
It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities...
Ubuntu 10.10 : linux-mvl-dove vulnerabilities (USN-1208-1)
Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...
Ubuntu 10.10 : linux vulnerabilities (USN-1201-1)
It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities...
kernel: proc: signedness issue in next_pidmap()
Multiple integer overflows in the nextpidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service system crash via a crafted 1 getdents or 2 readdir system call...
Orion SolarWinds 10.1.2 Cross Site Scripting
Software : Orion SolarWinds 10.1.2 - SP1 XSS -----------------------------------------------------------------------------------------------------------------------------------------------------------------...
Wireshark ANSI A MAP Files Denial of Service Vulnerability (Windows)
This host is installed with Wireshark and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodwiresharkansimapdosvulnwin.nasl 7024 2017-08-30 11:51:43Z teissa $ Wireshark ANSI A MAP Files Denial of Service Vulnerability Windows Authors: Madhuri D Copyright: Copyrigh...
Wireshark ANSI A MAP Files Denial of Service Vulnerability - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...