DSA-1363-1 linux-2.6

Bulletin has no description...

Code injection

Cisco IP Phone 7940 and 7960 with P0S3-08-6-00 firmware, and other SIP firmware before 8.70, allows remote attackers to cause a denial of service device reboot via 1 a certain sequence of 10 invalid SIP INVITE and OPTIONS messages; or 2 a certain invalid SIP INVITE message that contains a remote...

Cross site scripting

The management interface in ZyNOS firmware 3.62WK.6 on the Zyxel Zywall 2 device allows remote authenticated administrators to cause a denial of service infinite reboot loop via invalid configuration data. NOTE: this issue might not cross privilege boundaries, and it might be resultant from CSRF;...

n.runs-SA-2007.022 - Norman Antivirus DOC parsing Detection Bypass Advisory

n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2007.022 23-Jul-2007 Vendor: Norman, http://www.norman.com Affected Products: All Norman Antivirus Solutions Vulnerability: Detection Bypass remote Risk: HIGH Vendor communication: 2007/05/07 Initial notification to Norman together wit...

Buffer overflow

Buffer overflow in the HTTP server on the Polycom SoundPoint IP 601 SIP phone with BootROM 3.0.x+ allows remote attackers to cause a denial of service device reboot via a malformed CGI parameter...

Design/Logic Flaw

The Avaya 4602 SW IP Phone Model 4602D02A with 2.2.2 and earlier SIP firmware allows remote attackers to cause a denial of service device reboot via a flood of packets to the BOOTP port 68/udp...

CVE-2007-3321

The Avaya 4602 SW IP Phone Model 4602D02A with 2.2.2 and earlier SIP firmware allows remote attackers to cause a denial of service device reboot via a flood of packets to the BOOTP port 68/udp...

/dev/random broken

The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, 1 does not properly seed pools when there is no entropy, or 2 uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same values after reboots on...

[Full-disclosure] Windows Oday release

dear all SChannel Off-By-One Heap Corruption =================================== Discovery Date: 28th August 2006 Date reported to Microsoft: 19th March 2007 Summary: The Secure Channel SChannel library on WinXP-SP1/SP2 is vulnerable to a off-by-one heap buffer overwrite. The SChannel library...

Design/Logic Flaw

rpttop.htm in the web management interface in Packeteer PacketShaper 7.3.0g2 and 7.5.0g1 allows remote attackers to cause a denial of service device reboot via a request with empty values of the OP.MEAS.DATAQUERY and MEAS.TYPE parameters...

CVE-2007-3151

rpttop.htm in the web management interface in Packeteer PacketShaper 7.3.0g2 and 7.5.0g1 allows remote attackers to cause a denial of service device reboot via a request with empty values of the OP.MEAS.DATAQUERY and MEAS.TYPE parameters...

Packeteer PacketShaper DoS

Reboot on malformed Web interface request...

Packeteer PacketShaper 7.x - Web Interface Remote Denial of Service

Packeteer PacketShaper 7.x - Web Interface Remote Denial of Service source: https://www.securityfocus.com/bid/24388/info Packeteer PacketShaper is prone to a remote denial-of-service vulnerability because the application's web interface fails to properly handle unexpected requests. Successfully...

Packeteer PacketShaper 7.x - Web Interface Remote Denial of Service

source: https://www.securityfocus.com/bid/24388/info Packeteer PacketShaper is prone to a remote denial-of-service vulnerability because the application's web interface fails to properly handle unexpected requests. Successfully exploiting this issue allows remote, authenticated attackers to reboo...

CVE-2007-2764

The embedded Linux kernel in certain Sun-Brocade SilkWorm switches before 20070516 does not properly handle a situation in which a non-root user creates a kernel process, which allows attackers to cause a denial of service oops and device reboot via unspecified vectors...

[SECURITY] [DSA 1286-1] New Linux 2.6.18 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1286-1 [email protected] http://www.debian.org/security/ Dann Frazier May 2nd, 2007 http://www.debian.org/security/faq -...

CVE-2007-1337

The virtual machine process VMX in VMware Workstation before 5.5.4 does not properly read state information when moving from the ACPI sleep state to the run state, which allows attackers to cause a denial of service virtual machine reboot via unknown vectors...

[Full-disclosure] Linksys SPA941 remote DOS with \377 character

MADYNES Security Advisory http://madynes.loria.fr/ http://madynes.loria.fr Title: Linksys SPA941 remote DOS with 377 character Discovery Date: 01/02/2007 Vendor notification: 4/04/2007 and 17/04/2007 Release Date: 24/04/2007 Severity: Moderate - Denial of Service Advisory ID:KIHP3 Vulnerability i...

Linksys SPA941 - Remote Reboot (Denial of Service)

Linksys SPA941 - Remote Reboot Denial of Service !/usr/bin/perl use IO::Socket; die "Usage $0 " unless $ARGV2; die "Usage $0 " unless $ARGV0; my $sock = new IO::Socket::INET LocalHost = $ARGV2, LocalPort = $ARGV3, Proto = 'udp'; $socket=new IO::Socket::INET-newPeerAddr=$ARGV1, PeerPort= '5060',...

Linksys SPA941 - Remote Reboot (Denial of Service)

!/usr/bin/perl use IO::Socket; die "Usage $0 " unless $ARGV2; die "Usage $0 " unless $ARGV0; my $sock = new IO::Socket::INET LocalHost = $ARGV2, LocalPort = $ARGV3, Proto = 'udp'; $socket=new IO::Socket::INET-newPeerAddr=$ARGV1, PeerPort= '5060', Proto='udp', LocalAddr=$ARGV2, LocalPort='5061';...