CentOS Update for net-snmp CESA-2015:1636 centos7

Check the version of net-snmp SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882249";...

Using BitTorrent Vulnerabilities to Launch Distributed Reflective DoS Attacks

Researchers warn that several protocols used by the peer-to-peer file sharing service BitTorrent, including a handful of clients that run the protocol, can be leveraged to carry out distributed reflective denial of service DRDoS attacks. Distributed reflective denial of service, or DRDoS attacks,...

Apache HTTP Server Denial Of Service Vulnerability (Aug 2015) - Linux

Apache HTTP Server is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Microsoft Windows RDP Remote Code Execution Vulnerabilities (3080348)

This host is missing an important security update according to Microsoft Bulletin MS15-082. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

wireshark -- multiple vulnerabilities

Wireshark development team reports: The following vulnerabilities have been fixed. wnpa-sec-2015-21 Protocol tree crash. Bug 11309 wnpa-sec-2015-22 Memory manager crash. Bug 11373 wnpa-sec-2015-23 Dissector table crash. Bug 11381 wnpa-sec-2015-24 ZigBee crash. Bug 11389 wnpa-sec-2015-25 GSM RLC/M...

Dell Netvault Backup 10.0.1.24 - Denial of Service Exploit

Exploit for windows platform in category dos / poc """ Product: Dell Netvault Backup Link: http://software.dell.com/products/netvault-backup/ Vendor: Dell Vulnerable Versions: 10.0.1.24 and probably prior Tested Version: Version 10.0.1.24 Advisory Publication: July 30, 2015 Vendor Notification:...

Dell Netvault Backup 10.0.1.24 - Denial of Service

Dell Netvault Backup 10.0.1.24 - Denial of Service """ Product: Dell Netvault Backup Link: http://software.dell.com/products/netvault-backup/ Vendor: Dell Vulnerable Versions: 10.0.1.24 and probably prior Tested Version: Version 10.0.1.24 Advisory Publication: July 30, 2015 Vendor Notification:...

FreeBSD-SA-15:19.routed

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:19.routed Security Advisory The FreeBSD Project Topic: routed8 remote denial of service vulnerability Category: core Module: routed Announced: 2015-08-05...

pki security update

CentOS Errata and Security Advisory CESA-2015:1347 Updated pki-core packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS...

Juniper Networks Junos OS IPv6 sendd DoS Vulnerability

Junos OS is prone to a Denial of Service vulnerability in the SEND daemon. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

SNMP: Denial of service

Background SNMP is a widely used protocol for monitoring the health and welfare of network equipment. Description A specially crafted trap message triggers a conversion to an erroneous variable type when the -OQ option is used. Impact A remote attacker could possibly cause a Denial of Service...

PHPXMLRPC 1.1 - Remote Code Execution

PHPXMLRPC 1.1 - Remote Code Execution PHPXMLRPC Remote Code Execution Vendor: Useful Information Inc. Product: PHPXMLRPC Version: = 1.1 Website: http://phpxmlrpc.sourceforge.net/ BID: 14088 CVE: CVE-2005-1921 OSVDB: 17793 SECUNIA: 15852 PACKETSTORM: 38394 Description: PHPXMLRPC aka XML-RPC For PH...

CVE-2015-4226

The packet-storing feature on Cisco 9900 phones with firmware 9.32 does not properly support the RTP protocol, which allows remote attackers to cause a denial of service device hang by sending malformed RTP packets after a call is answered, aka Bug ID CSCur39976...

Ubuntu: Security Advisory (USN-2653-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Kguard Digital Video Recorder Bypass Issues

CVEID: CVE-2015-4464 SUBJECT: Insufficient Authorization Checks Request Handling Remote Authentication Bypass for Kguard Digital Video Recorders DESCRIPTION: A deficiency in handling authentication and authorization has been found with Kguard 104/108/v2 models. While password-based authentication...

[SECURITY] Fedora 21 Update: qpid-cpp-0.32-4.fc21

Run-time libraries for AMQP client applications developed using Qpid C++. Clients exchange messages with an AMQP message broker using the AMQP protocol...

Cisco NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability

A vulnerability in the Link Layer Discovery Protocol LLDP code of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to crash an affected device. The vulnerability is due to an error in parsing a malformed LLDP packet. An attacker could exploit this vulnerability by sending a...

[SECURITY] Fedora 21 Update: libinfinity-0.6.6-1.fc21

libinfinity is an implementation of the Infinote protocol written in GObjec t-based C...

CVE-2015-4000 - Citrix Security Advisory for DHE_EXPORT TLS Vulnerability

Overview A TLS protocol vulnerability has been recently disclosed that could result in attackers being able to intercept and modify SSL/TLS encrypted traffic to servers that support Diffie-Hellman based export cipher suites. This vulnerability is known as 'LogJam' and has been assigned the...

CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...