23 matches found
CVE-2020-7455
In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates some packet length allowing disclosure of small amounts of kernel for kernel NAT or natd process...
EUVD-2007-4080
Malware in sbrugna...
kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients
A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks...
CVE-2020-7455
In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates some packet length allowing disclosure of small amounts of kernel for kernel NAT or natd process...
Design/Logic Flaw
In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates some packet length allowing disclosure of small amounts of kernel for kernel NAT or natd process...
CVE-2020-7455
In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates some packet length allowing disclosure of small amounts of kernel for kernel NAT or natd process...
CVE-2020-7455
The vulnerability CVE-2020-7455 affects FreeBSD via the libalias FTP packet handler. The issue is an incorrect calculation of some packet lengths in libalias, which can disclose small memory amounts from either kernel space (in-kernel NAT) or natd process space (userspace NAT). Affects FreeBSD 12...
FreeBSD : FreeBSD -- Insufficient packet length validation in libalias (30ce591c-947b-11ea-92ab-00163e433440)
libalias3 packet handlers do not properly validate the packet length before accessing the protocol headers. As a result, if a libalias3 module does not properly validate the packet length before accessing the protocol header, it is possible for an out of bound read or write condition to occur...
FreeBSD -- Memory disclosure vulnerability in libalias
Problem Description: The FTP packet handler in libalias incorrectly calculates some packet lengths. This may result in disclosing small amounts of memory from the kernel for the in-kernel NAT implementation or from the process space for natd for the userspace implementation. Impact: A malicious...
CVE-2008-4222
natd in networkcmds in Apple Mac OS X before 10.5.6, when Internet Sharing is enabled, allows remote attackers to cause a denial of service infinite loop via a crafted TCP packet...
CVE-2008-4222
CVE-2008-4222 affects Apple Mac OS X before 10.5.6: natd in network_cmds can be abused when Internet Sharing is enabled to trigger a denial-of-service (infinite loop) via a crafted TCP packet. OpenVAS entries corroborate that Mac OS X 10.5.6 Update / Security Update 2008-008 fixes include network...
CVE-2007-4096
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors...
Buffer overflow
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2007-4096
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors...
DEBIAN-CVE-2007-4096
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2007-4096
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2007-4096
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2007-4096
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2007-4096
CVE-2007-4096 describes a buffer overflow in Tor prior to 0.1.2.15 when BSD natd support is used. The underlying cause is a buffer overflow in this condition, allowing remote attackers to cause a denial of service via unspecified vectors. The descriptions across connected documents confirm the sa...
Buffer overflow
Buffer overflow in natd in networkcmds in Apple Mac OS X 10.3.9 through 10.4.9, when Internet Sharing is enabled, allows remote attackers to execute arbitrary code via malformed RTSP packets...