Lucene search
K

1886 matches found

RedHat Linux
RedHat Linux
added 2019/06/17 7:35 p.m.1 views

kernel: tcp: excessive resource consumption for TCP connections with low MSS allows remote denial of service

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...

7.5CVSS6.7AI score0.9166EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2019/06/17 7:30 p.m.5 views

kernel: tcp: excessive resource consumption for TCP connections with low MSS allows remote denial of service

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...

7.5CVSS6.7AI score0.9166EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2019/06/17 7:30 p.m.2 views

Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2019/06/17 7:29 p.m.9 views

kernel: tcp: excessive resource consumption for TCP connections with low MSS allows remote denial of service

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...

7.5CVSS6.7AI score0.9166EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2019/06/17 7:29 p.m.1 views

Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2019/06/17 7:14 p.m.2 views

Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2019/06/17 7:14 p.m.2 views

kernel: tcp: excessive resource consumption for TCP connections with low MSS allows remote denial of service

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...

7.5CVSS6.7AI score0.9166EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2019/06/17 7:10 p.m.1 views

Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2019/06/17 6:45 p.m.3 views

Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2019/06/17 6:45 p.m.2 views

kernel: tcp: excessive resource consumption for TCP connections with low MSS allows remote denial of service

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...

7.5CVSS6.7AI score0.9166EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2019/06/17 6:32 p.m.1 views

Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2019/06/17 6:32 p.m.1 views

kernel: tcp: excessive resource consumption for TCP connections with low MSS allows remote denial of service

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...

7.5CVSS6.7AI score0.9166EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2019/06/17 6:1 p.m.2 views

Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References6
OSV
OSV
added 2019/06/17 5:22 p.m.10 views

SUSE-SU-2019:1535-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-11477: A sequence of SACKs may have been crafted such that one can trigger an integer overflow, leading to a kernel panic. - CVE-2019-11478: It was...

9.3CVSS8.7AI score0.98745EPSS
Exploits9References160
OSV
OSV
added 2019/06/17 5:0 p.m.6 views

UBUNTU-CVE-2019-11479

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...

7.5CVSS6.7AI score0.9166EPSS
Exploits1References5
Richard Bejtlich's blog
Richard Bejtlich's blog
added 2019/05/09 2:30 p.m.150 views

Dissecting Weird Packets

I was investigating traffic in my home lab yesterday, and noticed that about 1% of the traffic was weird. Before I describe the weird, let me show you a normal frame for comparison's sake. This is a normal frame with Ethernet II encapsulation. It begins with 6 bytes of the destination MAC address...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.7 views

Siemens Multiple Products Improper Input Validation

Binary data 720144.prm...

6.5CVSS7AI score0.00547EPSS
Exploits0References2
CVE
CVE
added 2019/04/23 6:16 p.m.45 views

CVE-2018-3312

The CVE-2018-3312 entry applies to Oracle Retail Customer Engagement (Segment) in Oracle Retail Applications, affecting versions 16.0 and 17.0. The vulnerability is described as exploitable by a high-privileged attacker with network access via HTTP, potentially enabling unauthorized creation, del...

6CVSS5.1AI score0.00875EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/04/17 12:0 a.m.2 views

Oracle Retail Applications Retail Customer Engagement Access Control Error Vulnerability

Oracle Retail Applications is a suite of retail applications store solutions from Oracle Corporation. The product includes inventory management, sales management and customer management, etc. Retail Customer Engagement is one of the retailer customer engagement components, mainly used to interact...

6CVSS6.6AI score0.00875EPSS
Exploits0References1
Cisco
Cisco
added 2019/03/06 4:0 p.m.89 views

Action Recommended to Secure the Cisco Nexus PowerOn Auto Provisioning Feature

Cisco Nexus devices support an automatic provisioning or zero-touch deployment feature called PowerOn Auto Provisioning POAP. This feature assists in automating the initial deployment and configuration of Nexus switches. POAP is enabled by default and activates on devices that have no startup...

0.5AI score
Exploits0References1
Rows per page
Query Builder