18 matches found
EUVD-2014-2179
Malware in sbrugna...
EUVD-2014-2180
Malware in sbrugna...
CVE-2022-22724
A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service on ports 80 HTTP and 502 Modbus, when sending a large number of TCP RST or FIN packets to any open TCP port of the PLC. Affected Product: Modicon M340 CPUs: BMXP34 All Versions...
CVE-2024-41048
In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...
CVE-2024-41048
In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...
CVE-2024-41048 skmsg: Skip zero length skb in sk_msg_recvmsg
In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...
CVE-2024-41048 skmsg: Skip zero length skb in sk_msg_recvmsg
In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...
CVE-2024-41048
CVE-2024-41048 affects the Linux kernel. The bug arises in sk_msg_recvmsg() where a zero‑length skb (skb->len == 0) is enqueued; on Loongarch, this leads to a NULL page being passed to copy_page_to_iter(), then to page_address(), causing a kernel panic. The root cause is the zero‑length skb th...
CVE-2024-41048 skmsg: Skip zero length skb in sk_msg_recvmsg
In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...
K41515225: BIG-IP SSL connection security exposure
Security Advisory Description On a virtual server configured with both Client SSL and Server SSL profiles, when receiving a TCP FIN midstream in an SSL connection, the BIG-IP system immediately proxies the FIN to the remote host on the peer side. If the remote host on the peer side acknowledges t...
CVE-2022-22724
A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service on ports 80 HTTP and 502 Modbus, when sending a large number of TCP RST or FIN packets to any open TCP port of the PLC. Affected Product: Modicon M340 CPUs: BMXP34 All Versions...
CVE-2022-22724
A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service on ports 80 HTTP and 502 Modbus, when sending a large number of TCP RST or FIN packets to any open TCP port of the PLC. Affected Product: Modicon M340 CPUs: BMXP34 All Versions...
Cisco Virtual Topology System TCP Connection Functionality Denial of Service Vulnerability
A vulnerability in TCP connection handling by Cisco Virtual Topology System VTS devices could allow an unauthenticated, remote attacker to disable TCP ports and cause a denial of service DoS condition due to high CPU and memory utilization. The vulnerability is due to a lack of rate limiting in t...
Code injection
Cisco ONS 15454 controller cards with software 9.6 and earlier allow remote attackers to cause a denial of service flash write outage via a TCP FIN attack that triggers file-descriptor exhaustion, aka Bug ID CSCug97315...
Privilege escalation
Cisco ONS 15454 controller cards with software 9.6 and earlier allow remote attackers to cause a denial of service card reset via a TCP FIN attack that triggers file-descriptor exhaustion and a failure to open a CAL pipe, aka Bug ID CSCug97348...
CVE-2014-2140
Cisco ONS 15454 Controller Cards (software 9.6 and earlier) are affected by CVE-2014-2140. A remote attacker can trigger a FIN attack that exhausts file descriptors, preventing opening a CAL pipe and causing a card reset (DoS) per Bug CSCug97348. Cisco advisory Cisco-SA-20140408-CVE-2014-2140 not...
CVE-2014-2139
Cisco CVE-2014-2139 affects Cisco ONS 15454 Controller Cards running software 9.6 and earlier. The flaw allows an unauthenticated, remote attacker to trigger a FIN attack that exhausts file descriptors, preventing access to flash memory and causing a denial of service. The root cause is exhaustio...
UBUNTU-CVE-2012-2663
extensions/libxttcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant...