16 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: udp: When a connected socket is disconnected, the 4-tuple hash table’s auto-bound connected state is not properly hashed. Suppose we bind a UDP socket to a wildcard address with a non-zero port, connect the socket to a specific...
SUSE CVE-2026-23331
In the Linux kernel, the following vulnerability has been resolved: udp: Unhash auto-bound connected sk from 4-tuple hash table when disconnected. Let's say we bind an UDP socket to the wildcard address with a non-zero port, connect it to an address, and disconnect it from the address. bind sets...
Tenda M3 /goform/setInternetLanInfo File Heap Buffer Overflow Vulnerability
Tenda M3 is a wireless controller AC from Tenda, which is aimed at scenarios such as hotel chains, low-star hotels and small and medium-sized businesses. Tenda M3 heap buffer overflow vulnerability exists, the vulnerability stems from the file / goform / setInternetLanInfo function...
EUVD-2008-5819
Malware in sbrugna...
SUSE CVE-2021-26350
A TOCTOU race condition in SMU may allow for the caller to obtain and manipulate the address of a message port register which may result in a potential denial of service...
Exploit for Deserialization of Untrusted Data in Apache Ofbiz
CVE-2020-9496 - RCE Because the 2 xmlrpc related requets in we...
Microsoft Windows HTA (HTML Application) - Remote Code Execution Exploit
Microsoft Windows HTA HTML Application remote code execution exploit that leverages MS14-064. !/usr/bin/php poc'."\n\n"; $reza = socketcreateAFINET, SOCKSTREAM, 0 or die'Failed to create socket!'; socketbind$reza, 0,$port; socketlisten$...
Internet Download Manager - OLE Automation Array Remote Code Execution
Internet Download Manager - OLE Automation Array Remote Code Execution !/usr/bin/php Run Site Grabber 4 . Enter any word "Start page/address" 5 . Click Addvance 6 . check "Enter Login and password manually at the following web page" 7 . Enter your exploit link http://ipaddress:80/ 8 . Next -- Nex...
Internet Download Manager - OLE Automation Array Remote Code Execution Exploit
Exploit for windows platform in category remote exploits !/usr/bin/php Run Site Grabber 4 . Enter any word "Start page/address" 5 . Click Addvance 6 . check "Enter Login and password manually at the following web page" 7 . Enter your exploit link http://ipaddress:80/ 8 . Next -- Next -- Next --...
Code injection
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation PAT is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an ICMPTIMXCEEDINTRANS aka ICMP time exceeded in-transit response containing an encapsulated IP packet...
Check Point VPN-1防火墙产品端口地址翻译信息泄露漏洞
BUGTRAQ ID: 32306 Check Point VPN-1 Power和UTM都是Check Point开发的防火墙类产品。 如果远程攻击者向VPN-1 Power和UTM所发送的特制报文被端口地址翻译(PAT)映射到内部设备上的端口的话,生成的ICMP错误报文中可能会包含有关内部网络的信息。此时如果存活时间(TTL)设置的过低的话,上述防火墙产品就无法正确的过滤ICMP报文中的封装IP头,导致泄露内部IP地址。 Check Point Software VPN-1 UTM NGX R65 Check Point Software VPN-1 Power Check Poin...
Check Point VPN-1 PAT Information Disclosure Vulnerability - Active Check
Check Point VPN-1 PAT is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2008 Tim Brown and Portcullis Computer Security Ltd Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2002-0782
Novell BorderManager 3.5 with PAT Port-Address Translate enabled allows remote attackers to cause a denial of service by filling the connection table with a large number of connection requests to hosts that do not have a specific route, which may be forwarded to the public interface...
CVE-2002-0782
Novell BorderManager 3.5 with PAT Port-Address Translate enabled allows remote attackers to cause a denial of service by filling the connection table with a large number of connection requests to hosts that do not have a specific route, which may be forwarded to the public interface...
Part II: Vulnerability in 3Com® OfficeConnect® Remote 812 ADSL Router
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TITLE: A more detailed description of 3Com ® OfficeConnect® Remote 812 ADSL Router DESCRIPTION: A big description of the vulnerability, Status and Solutions. I send this mail to explain the real problem and the solutions to all these people that were...
Vulnerability in 3Com® OfficeConnect® Remote 812 ADSL Router
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: Vulnerability in 3Com® OfficeConnect® Remote 812 ADSL Router Date: 27-05-2002 Impact: A vulnerability in PAT Port Address Translation allow access to all ports in the computer behind the router. Author: Ismael Briones Vilar [email protected]...