66 matches found
CVE-2005-2068
FreeBSD 4.x through 4.11 and 5.x through 5.4 allows remote attackers to modify certain TCP options via a TCP packet with the SYN flag set for an already established session...
Linux Distros Unpatched Vulnerability : CVE-2017-5972
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TCP stack in the Linux kernel 3.x does not properly implement a SYN cookie protection mechanism for the case of a fast network connection, which allows remo...
MOXA Mgate MB3180 Denial of Service Vulnerability (CNVD-2021-45454)
The MOXA MGate MB3180 is a technology product with a port transfer rate of 0.9216 Mbps. A denial of service exists in MOXA Mgate MB3180 version 2.1 Build 18113012. An attacker can exploit this vulnerability by sending a large number of TCP SYN packets to exhaust the resources of a web service,...
CVE-2002-2438
TCP firewalls could be circumvented by sending a SYN Packets with other flags like e.g. RST flag set, which was not correctly discarded by the Linux TCP stack after firewalling...
CVE-2002-2438
TCP firewalls could be circumvented by sending a SYN Packets with other flags like e.g. RST flag set, which was not correctly discarded by the Linux TCP stack after firewalling...
InveighZero - Windows C# LLMNR/mDNS/NBNS/DNS/DHCPv6 Spoofer/Man-In-The-Middle Tool
InveighZero is a C LLMNR/NBNS/mDNS/DNS/DHCPv6 spoofer and man-in-the-middle tool designed to assist penetration testers/red teamers that find themselves limited to a Windows system. This version shares many features with the PowerShell version of Inveigh. Privileged Mode Features elevated admin...
Backdoor.Win32.Buterat.cxq Insecure Permissions
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8bfac1f52a94f36b711e20bce30161cc.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Buterat.cxq Vulnerability: Insecure Permissions EoP Description: This malware creates...
CVE-2019-20612
An issue was discovered on Samsung mobile devices with N7.x and O8.x Broadcom Wi-Fi, and SEC Wi-Fi chipsets software. Wi-Fi allows a denial of service via TCP SYN packets. The Samsung ID is SVE-2018-13162 March 2019...
CVE-2019-20612
An issue was discovered on Samsung mobile devices with N7.x and O8.x Broadcom Wi-Fi, and SEC Wi-Fi chipsets software. Wi-Fi allows a denial of service via TCP SYN packets. The Samsung ID is SVE-2018-13162 March 2019...
CVE-2019-20612
The CVE-2019-20612 entry applies to Samsung mobile devices running N(7.x) and O(8.x) firmware that use Broadcom Wi‑Fi and SEC Wi‑Fi chipsets. The issue is a denial-of-service condition triggered by TCP SYN packets directed at the Wi‑Fi subsystem, with the vulnerability described as a problem in t...
Rockwell Automation Allen-Bradley L30ERMS Denial Of Service (CVE-2017-9312)
A denial of service vulnerability exists in Rockwell Automation Allen-Bradley L30ERMS safety devices. The vulnerability is due to improper handling of specially crafted TCP SYN packets. Successful exploitation can result in a denial of service condition...
Design/Logic Flaw
A vulnerability in TCP connection management in Cisco Prime Access Registrar could allow an unauthenticated, remote attacker to cause a denial of service DoS condition when the application unexpectedly restarts. The vulnerability is due to incorrect handling of incoming TCP SYN packets to specifi...
Cisco Prime Access Registrar Denial of Service Vulnerability
A vulnerability in TCP connection management in Cisco Prime Access Registrar could allow an unauthenticated, remote attacker to cause a denial of service DoS condition when the application unexpectedly restarts. The vulnerability is due to incorrect handling of incoming TCP SYN packets to specifi...
Design/Logic Flaw
A vulnerability in the TCP throttling process of Cisco Prime Network could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to insufficient rate limiting protection for TCP listening ports. An attacker could explo...
CVE-2017-14028
A Resource Exhaustion issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior. An attacker may be able to exhaust memory resources by sending a large amount ...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
CVE-2017-5972
The TCP stack in the Linux kernel 3.x does not properly implement a SYN cookie protection mechanism for the case of a fast network connection, which allows remote attackers to cause a denial of service CPU consumption by sending many TCP SYN packets, as demonstrated by an attack against the...
Microsoft Windows XP TCP Packet Information Leakage Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8531/info A vulnerability has been discovered in Microsoft Windows XP that could result in the contents of memory being disclosed within some TCP packets. The problem specifically occurs within some SYN packets transmitte...
Code injection
Cisco IOS before 15.32T, when scansafe is enabled, allows remote attackers to cause a denial of service latency via SYN packets that are not accompanied by SYN-ACK packets from the Scan Safe Tower, aka Bug ID CSCub85451...
CVE-2012-4651
CVE-2012-4651 concerns Cisco IOS prior to 15.3(2)T when ScanSafe is enabled. The vulnerability allows remote attackers to cause a denial of service (latency) by sending SYN packets that are not followed by SYN-ACKs from the Scan Safe Tower. The root cause is tied to how ScanSafe handles certain T...