SQL Injection Vulnerability in MX Marketing Platform of Yangquan Branch of Shanxi Longcai Technology Co. Ltd (CNVD-2021-03537)

Shanxi Longcai Technology Co., Ltd. was established on October 13, 2011, Yangquan Branch. Legal representative Fu Qiang, the company's scope of business includes: unified integration services; value-added telecommunications services; advertising business projects subject to approval by law,...

CVE-2020-35857

An issue was discovered in the trust-dns-server crate before 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption...

CVE-2020-35857

An issue was discovered in the trust-dns-server crate before 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption...

CVE-2020-35857

The CVE-2020-35857 entry applies to the trust-dns-server crate in Rust, prior to version 0.18.1. The issue arises from how MX and SRV null targets are handled, leading to stack consumption (stack overflow) when processing additional records for MX/SRV targets, potentially causing a crash and DOS....

Cross site scripting

In Ericsson BSCS iX R18 Billing & Rating iX R18, MX is a web base module in BSCS iX that is vulnerable to stored XSS via an Alert Dashboard comment. In most test cases, session hijacking was also possible by utilizing the XSS vulnerability. This potentially allows for full account takeover, or...

The vulnerability of Junos operating system’s MX series routers, related to synchronization errors when using shared resources, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Junos operating system’s MX series routers is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

Juniper Junos OS MX Series DoS (JSA11077)

According to the self reported version of Junos OS on the remote device it is affected by a denial of service DoS vulnerability. An unauthenticated attacker can continuously send crafted IPv6 packets through the device causing repetitive MS-PIC process crashes, resulting in an extended Denial of...

The vulnerability of Junos operating system’s MX series and EX9200 Series routers allows a attacker to cause service interruptions.

The vulnerability of Junos operating system’s MX series and EX9200 Series routers lies in the lack of filtering for specific elements. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted IPv4 packets...

Juniper Junos MX/EX9200 Series: DDoS Vulnerability (JSA11062)

The version of Junos OS installed on the remote host is MX series or EX9200 series prior to 17.2R3-S4, 17.2X75-D102, 17.3R3-S8, 17.4R2-S11,18.2R2-S7, 18.2X75-D30, or 18.3R2-S4. It is, therefore, affected by a vulnerability as referenced in the JSA11062 advisory. Note that Nessus has not tested fo...

Juniper Networks Junos OS MX Denial of Service Vulnerability

Juniper Networks Junos OS is a set of network operating systems dedicated to the company's hardware devices. A memory disclosure vulnerability exists in Juniper Networks Junos OS MX Handling NAT64 IPv6, which can be exploited by a remote attacker to submit a special request, which can be used in ...

CVE-2020-1680

On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration, receipt of a malformed IPv6 packet may crash the MS-PIC component on MS-MIC or MS-MPC. This issue occurs when a multiservice card is translating the malformed IPv6 packet to IPv4 packet. An unauthenticat...

CVE-2020-1680

On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration, receipt of a malformed IPv6 packet may crash the MS-PIC component on MS-MIC or MS-MPC. This issue occurs when a multiservice card is translating the malformed IPv6 packet to IPv4 packet. An unauthenticat...

CVE-2020-1667

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process might be bypassed due to a race condition. Due to this vulnerability,...

CVE-2020-1665

On Juniper Networks MX Series and EX9200 Series, in a certain condition the IPv6 Distributed Denial of Service DDoS protection might not take affect when it reaches the threshold condition. The DDoS protection allows the device to continue to function while it is under DDoS attack, protecting bot...

CVE-2020-1660

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process, responsible for managing "URL Filtering service", may crash, causing the...

CVE-2020-1667

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process might be bypassed due to a race condition. Due to this vulnerability,...

Race condition

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process might be bypassed due to a race condition. Due to this vulnerability,...

Design/Logic Flaw

On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration, receipt of a malformed IPv6 packet may crash the MS-PIC component on MS-MIC or MS-MPC. This issue occurs when a multiservice card is translating the malformed IPv6 packet to IPv4 packet. An unauthenticat...

Code injection

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process, responsible for managing "URL Filtering service", may crash, causing the...

CVE-2020-1680

CVE-2020-1680 affects Juniper Networks Junos OS on MX Series with MS-MIC/MS-MPC NAT64 translation. A malformed IPv6 packet can crash the MS-PIC component on the multiservice card, caused by translating the IPv6 packet to IPv4, allowing an unauthenticated attacker to trigger repeated MS-PIC crashe...