EUVD-2003-0483

Malware in sbrugna...

CVE-2025-52948

An Improper Handling of Exceptional Conditions vulnerability in Berkeley Packet Filter BPF processing of Juniper Networks Junos OS allows an attacker, in rare cases, sending specific, unknown traffic patterns to cause the FPC and system to crash and restart. BPF provides a raw interface to data...

CVE-2025-52948 Junos OS: Specific unknown traffic pattern causes FPC and system to crash when packet capturing is enabled

An Improper Handling of Exceptional Conditions vulnerability in Berkeley Packet Filter BPF processing of Juniper Networks Junos OS allows an attacker, in rare cases, sending specific, unknown traffic patterns to cause the FPC and system to crash and restart. BPF provides a raw interface to data...

CVE-2025-52948

Summary: CVE-2025-52948 describes an Improper Handling of Exceptional Conditions vulnerability in the Berkeley Packet Filter (BPF) processing in Juniper Networks Junos OS that can cause the FPC and system to crash and restart under rare traffic patterns, especially when packet capture is enabled....

CVE-2025-52948 Junos OS: Specific unknown traffic pattern causes FPC and system to crash when packet capturing is enabled

An Improper Handling of Exceptional Conditions vulnerability in Berkeley Packet Filter BPF processing of Juniper Networks Junos OS allows an attacker, in rare cases, sending specific, unknown traffic patterns to cause the FPC and system to crash and restart. BPF provides a raw interface to data...

Low: Red Hat Security Advisory: tcpdump security and bug fix update

An update for tcpdump is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

Logic Flaw Vulnerability in Riptide Networks ASME Access Sharing Management Engine

ASME Access Sharing Management Engine is an anti-proxy product based on DPI application layer detection. A logic flaw vulnerability exists in the ASME Access Sharing Management Engine of Ruijie Network. Attackers can view and modify the return packets by capturing packets, fill in passwords at...

UPDATE: Nmap 7.80

PenTestIT RSS Feed Good news guys! The Nmap 7.80 update is now available and this is the Defcon release. We've had to wait for such a long time since the guys behind Nmap were extremely busy improving the Npcap raw packet capturing/sending driver. It now uses modern APIs and is more performant as...

Denial Of Service (DoS)

Wireshark, previously known as Ethereal, is a network protocol analyzer, which is used to capture and browse the traffic running on a computer network. Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or...

Targeted Evil Twin Wireless Access Point Attack Toolkit: The Rogue Toolkit

The Rogue Toolkit is an extensible toolkit aimed at providing penetration testers an easy-to-use platform to deploy software-defined Access Points AP for the purpose of conducting penetration testing and red team engagements. By using Rogue, penetration testers can easily perform targeted evil tw...

Open Source Wireless Security Framework: SniffAir

SniffAir is an open-source wireless security framework. Sniffair allows for the collection, management, and analyzation of wireless traffic. In additional, SniffAir can also be used to preform sophisticated wireless attacks. SniffAir was born out of the hassle of managing large or multiple pcap...

tcpdump security update

CentOS Errata and Security Advisory CESA-2017:1871 An update for tcpdump is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Open Source Large Scale Full Packet Capturing: Moloch

Open Source Large Scale Full Packet Capturing Moloch is an open source, large scale, full packet capturing, indexing, and database system. Moloch augments your current security infrastructure to store and index network traffic in standard PCAP format, providing fast, indexed access. An intuitive...

Network File System Monitor: nfstrace

Network File System Monitor NFS and CIFS tracing/monitoring/capturing/analyzing tool It performs live Ethernet 1 Gbps – 10 Gbps packets capturing and helps to determine NFS/CIFS procedures in raw network traffic. Furthermore, it performs filtration, dumping, compression, statistical analysis,...

Multi Gigabit Packet Capturing: PFQ

PFQ is a functional networking framework designed for the Linux operating system that allows efficient packets capture/transmission 10G and beyond, in-kernel functional processing and packets steering across sockets/end-points. PFQ is highly optimized for multi-core architecture, as well as for...

[sniffMyPackets v1.0] A Maltego Set of Transforms for pcap analysis

sniffMyPackets is a set of Maltego transforms written using the Canari framework that allow for the analysis of pcap files. Currently there are over 60 transforms that cover things such as: extracting TCP/UDP streams rewriting IP src/dst addresses for pcap replay SHA1 & MD5 hashing Rebuilding of...

CollabNet ScrumWorks Basic Server transmits credential information in plaintext

Overview Communication between the Collabnet ScrumWorks Basic Server and CollabNet ScrumWorks Desktop Client transmits credential information in plaintext. Description The communication between the CollabNet ScrumWorks Basic Server and CollabNet ScrumWorks Desktop Client is transmitting credentia...

Ethernet Device Drivers Frame Padding Info Leakage Expl (Etherleak)

Exploit for multiple platform in category remote exploits ====================================================================== Ethernet Device Drivers Frame Padding Info Leakage Exploit Etherleak ====================================================================== !/usr/bin/perl -w etherleak,...

remote root security bug in ethereal 0.9.13 >= and <= 0.10.10

Suresec security advisory 2 9th May 2005 CVE ID: CAN-2005-1461 Remote root vulnerability in Ethereal. About ethereal: Ethereal is a widely used network packet capturing utility which has support for over 700 network protocols. Vulnerability summary: Ethereal has a dissector for the distcc network...

Linux Kernel 2.2 - TCPIP Spoof IP

Linux Kernel 2.2 - TCPIP Spoof IP / Exploit for the 2.2 linux-kernel TCP/IP weakness. C 1999 by S. Krahmer. THERE IS ABSOLUTELY NO WARRANTY. YOU USE IT AT YOUR OWN RSIK! THIS PROGRAM IS LICESED UNDER THE GPL and belongs to a security- advisory of team teso. You should get the full advisory with...