776 matches found
Cisco IOS XR Software Multiprotocol Label Switching Packet Vulnerability (cisco-sa-20100324-ldp)
A device running Cisco IOS XR Software is vulnerable to a remote denial of service DoS condition if it is configured for Multiprotocol Label Switching MPLS and has support for Label Distribution Protocol LDP. A crafted LDP UDP packet can cause an affected device running Cisco IOS XR Software to...
Fedora 20 : gnome-shell-3.10.2.1-2.fc20 (2013-22168)
This update fixes a problem where the login screen doesn't reset properly in some cases after user switching. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...
Cisco Content Switching Module Layer 7 Load Balancing DoS
According to its self-reported version number, the Cisco Content Switching Module in the remote switch may be affected by a denial of service vulnerability. The vulnerability exists when the CSM or CSM-S is configured for layer 7 load balancing. An attacker can trigger this vulnerability when the...
Cisco Content Switching Module (CSM) Software Version
The remote host has a Cisco Content Switching Module CSM. It is possible to read the CSM software version by connecting to the switch using SSH. TRUSTED...
DEBIAN-CVE-2013-1578
The dissectpwethheuristic function in epan/dissectors/packet-pw-eth.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle apparent Ethernet address values at the beginning of MPLS data, which allows remote attackers to cause a denial of service loop via a malformed...
CVE-2012-0959
Remote Login Service RLS 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials...
CVE-2012-0959
CVE-2012-0959 affects the Ubuntu remote-login-service (RLS) 1.0.0, where account information is not properly cleared when switching users. This could allow physically proximate users to obtain login credentials. The vulnerability is detailed in the Ubuntu security advisory USN-1624-1 and related ...
Cisco Security Advisory: Cisco IOS Software RSVP Denial of Service Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco IOS Software RSVP Denial of Service Vulnerability Advisory ID: cisco-sa-20120328-rsvp Revision 1.0 For Public Release 2012 March 28 16:00 UTC GMT +---------------------------------------------------------------------...
Train-switching system can be vulnerable to DDoS attack
Train-switching system can be vulnerable to DDoS attack Hackers who have shut down websites by overwhelming them with web traffic could use the same approach to shut down the computers that control train switching systems, a security expert said at a hacking conference in Berlin. Prof. Stefan...
CVE-2011-3431
The Home screen component in Apple iOS before 5 does not properly support a certain application-switching gesture, which might allow physically proximate attackers to obtain sensitive state information by watching the device's screen...
Design/Logic Flaw
The Home screen component in Apple iOS before 5 does not properly support a certain application-switching gesture, which might allow physically proximate attackers to obtain sensitive state information by watching the device's screen...
CVE-2011-3431
The Home screen component in Apple iOS before 5 does not properly support a certain application-switching gesture, which might allow physically proximate attackers to obtain sensitive state information by watching the device's screen...
Cisco IOS Software IP Version 6 over Multiprotocol Label Switching Vulnerabilities (cisco-sa-20110928-ipv6mpls)
Cisco IOS Software is affected by two vulnerabilities that cause a Cisco IOS device to reload when processing IP version 6 IPv6 packets over a Multiprotocol Label Switching MPLS domain. These vulnerabilities are : - Crafted IPv6 Packet May Cause MPLS-Configured Device to Reload - ICMPv6 Packet Ma...
CVE-2011-1625
Cisco IOS 12.2, 12.3, 12.4, 15.0, and 15.1, when the data-link switching DLSw feature is configured, allows remote attackers to cause a denial of service device crash by sending a sequence of malformed packets and leveraging a "narrow timing window," aka Bug ID CSCtf74999, a different vulnerabili...
[SECURITY] Fedora 15 Update: gdm-3.0.4-1.fc15
GDM provides the graphical login screen, shown shortly after boot up, log out, and when user-switching...
Vendor's List Of Backdoor Accounts Leaked Online
An internal document listing the backdoor accounts for switches manufactured by networking equipment vendor Allied Telesis was circulating online Friday, a day after an internal support page providing instructions on accessing hard coded back door accounts in the company’s products was found to b...
[SECURITY] Fedora 13 Update: gdm-2.30.2-2.fc13
GDM provides the graphical login screen, shown shortly after boot up, log out, and when user-switching...
Code injection
Unspecified vulnerability in Cisco IOS 12.0 through 12.4, IOS XE 2.1.x through 2.3.x before 2.3.2, and IOS XR 3.2.x through 3.4.3, when Multiprotocol Label Switching MPLS and Label Distribution Protocol LDP are enabled, allows remote attackers to cause a denial of service device reload or process...
CVE-2010-0576
Unspecified vulnerability in Cisco IOS 12.0 through 12.4, IOS XE 2.1.x through 2.3.x before 2.3.2, and IOS XR 3.2.x through 3.4.3, when Multiprotocol Label Switching MPLS and Label Distribution Protocol LDP are enabled, allows remote attackers to cause a denial of service device reload or process...
SA-CONTRIB-2010-018 - Content Distribution - Multiple Vulnerabilities
Content Distribution module allows calling a method to delete particular nodes using a XML-RPC call. When this method is allowed to be called by anonymous users in user permissions, an attacker might delete a random node. In addition, certain actions require Content Distribution to temporarily...