1660 matches found
Nxlog Code Issue Vulnerability
Nxlog is a U.S. Nxlog company can support a variety of operating systems for log collection, log centralization software. A security vulnerability exists in NXLog Community Edition version 2.10.2150, which originates in the fileop module of the NXLog service that allows remote attackers to cause ...
CVE-2020-35488
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
CVE-2020-35488
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
Directory traversal
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
CVE-2020-35488
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
CVE-2020-35488
NXLog Community Edition 2.10.2150 is affected via the fileop module, where a crafted Syslog payload can cause a daemon crash (DoS) when the Syslog field is used to name a directory. Exploitation requires a specific configuration (CreateDir enabled and a Syslog-derived directory name), as shown by...
Nxlog 代码问题漏洞
Nxlog is a U.S. Nxlog company can support a variety of operating systems for log collection, log centralization software. A security vulnerability exists in NXLog Community Edition version 2.10.2150, which originates in the fileop module of the NXLog service that allows remote attackers to cause ...
nxlog 2.10.2150 - Denial of Service Exploit
Exploit Title: nxlog 2.10.2150 - DoS Poc Exploit Author: Guillaume PETIT Vendor Homepage: https://nxlog.co Software Link: https://nxlog.co/products/nxlog-community-edition/download Version: 2.10.2150 Tested on: Linux Debian 10 && Windows Server 2019 !/usr/bin/python3 import sys import time import...
Nxlog Community Edition 2.10.2150 Denial Of Service
Exploit Title: Nxlog Community Edition 2.10.2150 - DoS Poc Date: 15/12/2020 Exploit Author: Guillaume PETIT Vendor Homepage: https://nxlog.co Software Link: https://nxlog.co/products/nxlog-community-edition/download Version: 2.10.2150 Tested on: Linux Debian 10 && Windows Server 2019...
Nxlog Community Edition 2.10.2150 - DoS (Poc)
Exploit Title: Nxlog Community Edition 2.10.2150 - DoS Poc Date: 15/12/2020 Exploit Author: Guillaume PETIT Vendor Homepage: https://nxlog.co Software Link: https://nxlog.co/products/nxlog-community-edition/download Version: 2.10.2150 Tested on: Linux Debian 10 && Windows Server 2019 CVE:...
Exploit for Deserialization of Untrusted Data in Nxlog
I have found a vulnerability in product: nxlog-ce2.10.2150...
openSUSE Security Update : nsd (openSUSE-2020-2222)
This update for nsd fixes the following issues : nsd was updated to the new upstream release 4.3.4 FEATURES : - Merge PR 141: ZONEMD RR type. BUG FIXES : - Fix that symlink does not interfere with chown of pidfile boo1179191, CVE-2020-28935 - Fix 128: Fix that the invalid port number is logged fo...
Security update for nsd (moderate)
openSUSE Security Update: Security update for nsd Announcement ID: openSUSE-SU-2020:2222-1 Rating: moderate References: 1157331 1179191 Cross-References: CVE-2019-13207 CVE-2020-28935 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE Backports...
SUSE SLES12 Security Update : glibc (SUSE-SU-2020:3024-1)
This update for glibc fixes the following issues : CVE-2020-10029: Fixed a stack corruption from range reduction of pseudo-zero bsc1165784 Use posixspawn on popen bsc1149332, bsc1176013 Correct locking and cancellation cleanup in syslog functions bsc1172085 Fixed concurrent changes on nscd aware...
Command injection
An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1.01.48, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. Command injection can occur in "upload tftp syslog" and "upload tftp configuration" in the CLI via a crafted filename...
TP-Link TL-WPA4220 Buffer Overflow Vulnerability
The TP-Link TL-WPA4220 is a 300Mbps AV600 Wi-Fi powerline extender. A buffer overflow vulnerability exists in the TP-Link TL-WPA4220. A remote attacker can exploit this vulnerability by sending a POST request to the /admin/syslog endpoint to cause a denial of service...
CVE-2020-28005
httpd on TP-Link TL-WPA4220 devices hardware versions 2 through 4 allows remote authenticated users to trigger a buffer overflow causing a denial of service by sending a POST request to the /admin/syslog endpoint. Fixed version: TL-WPA4220EUV4201023...
CVE-2020-28005
httpd on TP-Link TL-WPA4220 devices hardware versions 2 through 4 allows remote authenticated users to trigger a buffer overflow causing a denial of service by sending a POST request to the /admin/syslog endpoint. Fixed version: TL-WPA4220EUV4201023...
Buffer overflow
httpd on TP-Link TL-WPA4220 devices hardware versions 2 through 4 allows remote authenticated users to trigger a buffer overflow causing a denial of service by sending a POST request to the /admin/syslog endpoint. Fixed version: TL-WPA4220EUV4201023...
CVE-2020-28005
httpd on TP-Link TL-WPA4220 devices hardware versions 2 through 4 allows remote authenticated users to trigger a buffer overflow causing a denial of service by sending a POST request to the /admin/syslog endpoint. Fixed version: TL-WPA4220EUV4201023...