14 matches found
EUVD-2018-18662
Malware in sbrugna...
EDK2 Security Vulnerability
EDK2 is a cross-platform firmware development environment from the Tianocore community based on the UEFI and PI specifications. A security vulnerability exists in EDK2 due to an infinite loop vulnerability in the Network Package when parsing unknown options in the IPv6 target option header...
Qualcomm 芯片安全漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and is often fabricated on the surface of semiconductor wafers. Qualcomm Chip A security vulnerability exists that arises from improper handling...
FreeBSD Denial of Service Vulnerability (CNVD-2018-07703)
FreeBSD is a set of Unix-like free operating systems in the FreeBSD project, headed by the Core Team team, and is an important branch of Unix-like systems that have evolved through BSD, 386BSD, and 4.4BSD. A security vulnerability exists in FreeBSD that stems from the length field of the ipsec...
CVE-2018-6918
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, the length field of the ipsec option header does not count the size of the option header itself, causing an infinite loop when the length is zero. This issue can allow a remote attacker who is able ...
CVE-2018-6918
Removed by vendor...
FreeBSD-SA-18:05.ipsec
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-18:05.ipsec Security Advisory The FreeBSD Project Topic: ipsec crash or denial of service Category: core Module: ipsec Announced: 2018-04-04 Credits: Maxime...
FreeBSD -- ipsec crash or denial of service
Problem Description: The length field of the option header does not count the size of the option header itself. This causes a problem when the length is zero, the count is then incremented by zero, which causes an infinite loop. In addition there are pointer/offset mistakes in the handling of IPv...
SX-2000WG vulnerable to denial-of-service (DoS)
Overview SX-2000WG provided by silex technology, Inc. is a product that provides wireless connectivity for USB devices such as printers and hard disk drives HDD. SX-2000WG contains an issue in the processing of TCP Option header, which may cause a denial-of-service DoS. Note that this vulnerabili...
JVN#85571806: SX-2000WG vulnerable to denial-of-service (DoS)
SX-2000WG provided by silex technology, Inc. is a product that provides wireless connectivity for USB devices such as printers and hard disk drives HDD. SX-2000WG contains an issue in the processing of TCP Option header, which may cause a denial-of-service DoS. Impact A remote attacker may cause...
Design/Logic Flaw
IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service infinite loop and system hang via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec...
CVE-2007-3157
IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service infinite loop and system hang via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec...
CVE-2005-2904
Zebedee 2.4.1, when "allowed redirection port" is not set, allows remote attackers to cause a denial of service application crash via a zero in the port number of the protocol option header, which triggers an assert error in the makeConnection function in zebedee.c...
CVE-2005-2904
Zebedee 2.4.1, when "allowed redirection port" is not set, allows remote attackers to cause a denial of service application crash via a zero in the port number of the protocol option header, which triggers an assert error in the makeConnection function in zebedee.c...