87 matches found
The vulnerability in the implementation of the interaction protocol between the “ARM Reliezer” software and the “Communication Server” software of the EKRASMS-SP software suite allows a perpetrator to gain access to the device with privileges of the current user.
The vulnerability of the interaction protocol between the “ARM Reliezer” software and the “Communication Server” software of the EKRASMS-SP suite lies in the deficiencies of the authentication mechanism. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to...
Denial Of Service (DoS)
The Server-Server protocol implementation in ngIRCd is vulnerable to denial of service. An out-of-bounds access, as demonstrated by the IRCNJOIN function allows an attacker to crash the application...
Debian DLA-2252-1 : ngircd security update
It was discovered that there was an out-of-bounds access vulnerability in the server-server protocol in the ngircd Internet Relay Chat IRC server. For Debian 8 'Jessie', this issue has been fixed in ngircd version 22-2+deb8u1. We recommend that you upgrade your ngircd packages. NOTE: Tenable...
ALPINE-CVE-2020-14148
The Server-Server protocol implementation in ngIRCd before 26rc2 allows an out-of-bounds access, as demonstrated by the IRCNJOIN function...
CVE-2020-14148
The Server-Server protocol implementation in ngIRCd before 26rc2 allows an out-of-bounds access, as demonstrated by the IRCNJOIN function...
DEBIAN-CVE-2020-14148
The Server-Server protocol implementation in ngIRCd before 26rc2 allows an out-of-bounds access, as demonstrated by the IRCNJOIN function...
CVE-2020-14148
The Server-Server protocol implementation in ngIRCd before 26rc2 allows an out-of-bounds access, as demonstrated by the IRCNJOIN function...
CVE-2020-14148
CVE-2020-14148 affects ngIRCd. Multiple sources confirm that ngIRCd prior to 26~rc2 has a vulnerability in the Server-Server protocol implementation, allowing an out-of-bounds access demonstrated by the IRC_NJOIN() function. Impact details in the sources align with partial availability disruption...
CVE-2020-14148
The Server-Server protocol implementation in ngIRCd before 26rc2 allows an out-of-bounds access, as demonstrated by the IRCNJOIN function...
CVE-2020-14148
The Server-Server protocol implementation in ngIRCd before 26rc2 allows an out-of-bounds access, as demonstrated by the IRCNJOIN function...
PT-2020-13893 · Ngircd · Ngircd
Name of the Vulnerable Software and Affected Versions: ngIRCd versions prior to 26rc2 Description: The Server-Server protocol implementation in ngIRCd allows an out-of-bounds access, as demonstrated by the IRC NJOIN function. Recommendations: For versions prior to 26rc2, update to version 26rc2 o...
Parlez-vous Machine?
Have you ever heard of the MQTT or CoAP protocols? No? Well the device on your wrist, and so many devices around you, could be using them right now. MQTT and CoAP are machine-to-machine or M2M protocols. With the rise of the internet of things IoT and operational technology OT, there’s increased...
Design/Logic Flaw
A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An attacker able to connect to the SPICE server could send crafted messages which would cause the process to crash...
Rockwell CSP (Client Server Protocol) Read Diagnostic Request Detection
Binary data 700319.prm...
PT-2018-3897 · Oracle +1 · Mysql Server
Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.11 and prior Description: The issue is related to inadequate access control in the Server: Replication component of Oracle MySQL Server. This can be exploited by a remote attacker to cause a denial of service...
[SECURITY] Fedora 27 Update: remctl-3.14-1.fc27
remctl the client and remctld the server implement a client/server protocol for running single commands on a remote host using Kerberos v5 authentication and returning the output. They use a very simple GSS-API-authenticated network protocol, combined with server-side ACL support and a server...
spice: Remote DoS via crafted message
A vulnerability was discovered in SPICE in the server's protocol handling. An attacker able to connect to the SPICE server could send crafted messages which would cause the process to crash...
UBUNTU-CVE-2016-9577
A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An authenticated attacker could send crafted messages to the SPICE server causing a heap overflow leading to a crash or possible code execution...
Disk Savvy Enterprise 9.1.14 GET Buffer Overflow
!/usr/bin/python import socket,os,time SEH Stack Overflow in GET request Disk Savvy Enterprise 9.1.14 Tested on Windows XP SP3 && Windows 7 Professional host = "192.168.1.20" port = 80 badchars \x00\x09\x0a\x0d\x20 msfvenom -a x86 --platform windows -p windows/shellbindtcp lport=4444 -b...
DLA-431-1 libfcgi-perl - security update
Bulletin has no description...