19 matches found
EUVD-2020-7469
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2015-4852
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a...
CVE-2020-15476
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
SUSE CVE-2020-15476
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
Debian dla-3084 : libndpi-bin - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3084 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3084-1 [email protected]...
Debian DLA-2354-1 : ndpi security update
An issue has been found in ndpi, an extensible deep packet inspection library. The Oracle protocol dissector contains an heap-based buffer over-read, which could crash the application that uses this library and may result in denial of service. For Debian 9 stretch, this problem has been fixed in...
Debian: Security Advisory (DLA-2354-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2354-1] ndpi security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2354-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz August 29, 2020 https://wiki.debian.org/LTS -...
Ntop nDPI Buffer Overflow Vulnerability (CNVD-2020-36703)
Ntop nDPI is an open source library for deep packet inspection from Ntop Italy. A buffer overflow vulnerability exists in the ndpisearchoracle file in lib/protocols/oracle.c in Ntop nDPI 3.2 and earlier versions. The vulnerability stems from a network system or product performing operations in...
CVE-2020-15476
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
CVE-2020-15476
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
DEBIAN-CVE-2020-15476
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
Heap overflow
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
UBUNTU-CVE-2020-15476
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
CVE-2020-15476
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpisearchoracle in lib/protocols/oracle.c...
CVE-2020-15476
In ndpi (Ntop nDPI) up to version 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpi_search_oracle (lib/protocols/oracle.c). This is the concrete root cause and affects the Oracle dissector component of the ndpi library. CVSS details from the public records show an attac...
PT-2020-14443 · Ntop · Ndpi
Name of the Vulnerable Software and Affected Versions: nDPI versions 3.2 and earlier Description: The issue is related to a heap-based buffer over-read in the Oracle protocol dissector. This occurs in the ndpi search oracle function located in lib/protocols/oracle.c. Recommendations: For nDPI...
Flaw in Oracle Logon Protocol Leads to Easy Password Cracking
There is a serious vulnerability in the authentication protocol used by some Oracle databases, a flaw that could enable a remote attacker to brute-force a token provided by the server prior to authentication and determine a user’s password. The attacker could then log on as an authenticated user...
Oracle Secure Backup's observiced.exe Denial Of Service vulnerability
Oracle Secure Backup's observiced.exe Denial Of Service vulnerability 2009.January.13 Fortinet's FortiGuard Global Security Research Team Discovers a vulnerability in observiced.exe of Oracle Secure Backup Summary: ======== A Denial Of Service vulnerability exists Oracle Secure Backup 10.2.0.2...