Moderate: Red Hat Security Advisory: openstack-neutron security and bug fix update

Updated openstack-neutron packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring...

CVE-2014-8582

CVE-2014-8582 affects FortiNet FortiADC-E (firmware 3.1.1 prior to 4.0.5) and Coyote Point Equalizer (firmware 10.2.0a). The vulnerability allows remote attackers to obtain access to arbitrary subnets via unspecified vectors. Core impact per linked records: partial confidentiality and partial int...

Moderate: Red Hat Security Advisory: openstack-heat security, bug fix, and enhancement update

Updated openstack-heat packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System...

CVE-2014-2357

The GPT library in the Telegyr 8979 Master Protocol application in SUBNET SubSTATION Server 2 before SSNET 2.12 HF18808 allows remote attackers to cause a denial of service persistent service crash via a long RTU-to-Master message...

Code injection

The GPT library in the Telegyr 8979 Master Protocol application in SUBNET SubSTATION Server 2 before SSNET 2.12 HF18808 allows remote attackers to cause a denial of service persistent service crash via a long RTU-to-Master message...

CVE-2014-2357 SUBNET SubSTATION Server 2 Telegyr 8979 Master Protocol Improper Input Validation

The GPT library in the Telegyr 8979 Master Protocol application in SUBNET SubSTATION Server 2 before SSNET 2.12 HF18808 allows remote attackers to cause a denial of service persistent service crash via a long RTU-to-Master message...

CVE-2014-2357

The CVE-2014-2357 issue affects SUBNET SubSTATION Server 2 Telegyr 8979 Master Protocol due to improper input validation in the GPT library. This can allow a remote attacker to cause a denial of service (persistent service crash) by sending a long RTU-to-Master message. Affected product: SubSTATI...

Vulnerability Fixed in Subnet Solutions SCADA Server

A hole has been fixed in a popular industrial control system data management server that if left unpatched, could result in a remotely exploitable denial of service condition. Subnet Solutions, Inc., a Canadian manufacturer of electric utility products, fixed the vulnerability – along with anothe...

Moderate: Red Hat Security Advisory: openstack-neutron security, bug fix, and enhancement update

Updated openstack-neutron packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability...

openstack-neutron: L3-agent denial of service through IPv6 subnet

The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service IPv4 address attachment outage by attaching an IPv6 private subnet to a L3 router...

DEBIAN-CVE-2014-4167

The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service IPv4 address attachment outage by attaching an IPv6 private subnet to a L3 router...

CVE-2014-4167

The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service IPv4 address attachment outage by attaching an IPv6 private subnet to a L3 router...

CVE-2014-4167

The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service IPv4 address attachment outage by attaching an IPv6 private subnet to a L3 router...

CVE-2014-4167

The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service IPv4 address attachment outage by attaching an IPv6 private subnet to a L3 router...

ISC DHCP dhclient < 3.1.2p1 Remote Buffer Overflow PoC

No description provided by source. / cve-2009-0692.c ISC DHCP dhclient 3.1.2p1 Remote Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692 Stack-based buffer overflow in the scriptwriteparams method in...

ISC DHCP 'dhclient' 'script_write_params()' - Stack Buffer Overflow Vulnerability

No description provided by source. / cve-2009-0692.c ISC DHCP dhclient 3.1.2p1 Remote Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692 Stack-based buffer overflow in the scriptwriteparams method in...

Golden FTP Server 4.70 - PASS Command Buffer Overflow Exploit

No description provided by source. GoldenFTP 4.70 PASS Exploit Authors: Craig Freyman cd1zz and Gerardo Iglesias Galvan iglesiasgg Tested on XP SP3 Vendor Contacted: 1/17/2011 no response For this exploit to work correctly, you need to know the subnet that the server is running on. You also need ...

SHOUTcast Server <= 1.9.8/win32 - CSRF Vulnerability

No description provided by source. Exploit Title: HOUTcast Server Version = 1.9.8/win32 Cross Site Request Forgery. Date: 22/12/2009 Author: cp77fk4r | Empty0pagEShift+2gmail.comhttp://gmail.com Software Link: http://www.shoutcast.com/download Version: X = 1.9.8/win32 CSRF: Ban Single IP: Ex: IP:...

Microsoft Windows 2000 - Subnet Bandwidth Manager RSVP Server Authority Hijacking Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8397/info A problem has been identified in the RSVP Server for Microsoft Windows 2000 that may allow an attacker to hijack management of the network. This could allow an attacker control of network Quality of Service...

Really Simple IM 1.3beta DoS Proof of Concept

No description provided by source. !/usr/bin/python import socket import sys Bug found: 18th July 2010 DoS proof of concept Found by: loneferret Tested on Windows XP Professional SP2-SP3 & Windows XP Home SP3 Really Simple IM verion 1.3 beta Software: http://code.google.com/p/reallysimpleim/ Nods...