370 matches found
Juniper Junos Routing Protocol Daemon LDP Packet DoS (JSA10777)
According to its self-reported version and configuration, the remote Juniper Junos device is affected by a memory leak issue in the routing protocol daemon rpd when handling a specific LDP packet, which over time will consume memory that cannot be freed without restarting the rpd process. An...
Juniper Junos Routing Process Daemon BGP UPDATE DoS (JSA10778)
According to its self-reported version and configuration, the remote Juniper Junos device is affected by a denial of service vulnerability in the routing protocol daemon rpd when handling a specially crafted BGP UPDATE. An unauthenticated, remote attacker can exploit this to repeatedly crash and...
Exploitable Configuration Modification Vulnerability in ntpd Control Mode (Mode 6) Functionality
Network Time Protocol NTP is a protocol used to synchronize a computer's time to its server or clock source e.g., quartz clock, GPS, etc.. Synchronizing a computer's clock to UTC ensures that data interactions in a network can proceed smoothly.NTPD Network Time Protocol daemon is an operating...
ntpd Packet Injection Vulnerability
ntpd Network Time Protocol daemon is an operating system daemon that uses the Network Time Protocol NTP to keep synchronized with the system time of a time server. A security vulnerability exists in ntpd version 4.x before 4.2.8p7 and version 4.3 before 4.3.92. An attacker can exploit this...
VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0004) (remote check)
The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including arbitrary code execution vulnerabilities, in several third-party components and libraries : - bind - pam - popt - rpm - rpm-libs - rpm-python - Service Location...
UBUNTU-CVE-2015-7703
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration...
Juniper Networks Junos OS BGP FlowSpec Denial of Service Vulnerability
Junos OS with BGB FlowSpec enabled are vulnerable to a Denial of Service attack. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
DEBIAN-CVE-2014-9295
Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to 1 the cryptorecv function when the Autokey Authentication feature is used, 2 the ctlputdata function, and 3 the configure function...
CVE-2014-6378
Juniper Junos 11.4 before R12-S4, 12.1X44 before D35, 12.1X45 before D30, 12.1X46 before D25, 12.1X47 before D10, 12.2 before R9, 12.2X50 before D70, 12.3 before R7, 13.1 before R4 before S3, 13.1X49 before D55, 13.1X50 before D30, 13.2 before R5, 13.2X50 before D20, 13.2X51 before D26 and D30,...
CVE-2014-6378
CVE-2014-6378 affects Juniper Networks Junos OS. The vulnerability arises in RSVP processing where RSVP PATH messages are improperly handled, allowing a remote attacker to cause denial of service by crashing the router protocol daemon (rpd). Affected Junos releases include versions listed in the ...