24 matches found
EUVD-2008-2052
Malware in sbrugna...
EUVD-2004-0550
Malware in sbrugna...
OESA-2025-1094 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Shift tested values in sndsocputvolsw by +min While the $val/$val2 values passed in from userspace are always = 0 integers, the limits of the control...
OESA-2024-2295 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Fix possible null pointer dereference. This patch fixes possible null pointer dereference in files "rvudebugfs.c" and "rvunix.c"CVE-2021-47484 In t...
OVHcloud Hit with Record 840 Million PPS DDoS Attack Using MikroTik Routers
French cloud computing firm OVHcloud said it mitigated a record-breaking distributed denial-of-service DDoS attack in April 2024 that reached a packet rate of 840 million packets per second Mpps. This is just above the previous record of 809 million Mpps reported by Akamai as targeting a large...
CVE-2023-52881 tcp: do not accept ACK of bytes we never sent
In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The ACK value is considered...
MikroTik RouterOS Uncontrolled Resource Consumption (CVE-2017-6444)
The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service CPU consumption by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 10...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: iouring/afunix: disable sending iouring over sockets CVE-2023-52654 In the Linux kernel, the following vulnerability has been resolved: blk-mq: make sure active queue usage is held for biointegrityprep...
Gcore Thwarts Massive 650 Gbps DDoS Attack on Free Plan Client
At the beginning of January, Gcore faced an incident involving several L3/L4 DDoS attacks with a peak volume of 650 Gbps. Attackers exploited over 2000 servers belonging to one of the top three cloud providers worldwide and targeted a client who was using a free CDN plan. However, due to Gcore's...
SUSE CVE-2019-18805
An issue was discovered in net/ipv4/sysctlnetipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcpinput.c signed integer overflow in tcpackupdatertt when userspace writes a very large integer to /proc/sys/net/ipv4/tcpminrttwlen, leading to a denial of service or possibly unspecified...
“Huge upsurge” in DDoS attacks during pandemic
Researchers at Netscout have released a report analyzing the malicious internet traffic of 2020 and comparing it to the years before. Some of the results were as expected: Brute-forcing credentials and more targeting towards internet-connected devices were foreseeable and have been discussed at...
UBUNTU-CVE-2019-18805
An issue was discovered in net/ipv4/sysctlnetipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcpinput.c signed integer overflow in tcpackupdatertt when userspace writes a very large integer to /proc/sys/net/ipv4/tcpminrttwlen, leading to a denial of service or possibly unspecified...
OWASP-Nettacker - Automated Penetration Testing Framework
OWASP Nettacker project is created to automate information gathering, vulnerability scanning and eventually generating a report for networks, including services, bugs, vulnerabilities, misconfigurations, and other information. This software will utilize TCP SYN, ACK, ICMP and many other protocols...
Design/Logic Flaw
The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service CPU consumption by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 10...
CVE-2017-6444
The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service CPU consumption by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 10...
MikroTik Router Denial Of Service | ARP Table OverFlow Exploit
Exploit for hardware platform in category dos / poc CVE:2017-6444 Exploit Title: MikroTik Router Denial Of Service | ARP Table OverFlow Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://mikrotik.com/ Series : Hap Lite Tested on: Parrot Security OS Date: 03-3-2017 Category: Netwo...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA Document ID: 105444 Advisory ID: cisco-sa-20080604-asa http://www.cisco.com/warp/public/707/cisco-sa-20080604-asa.shtml Revision 1.0 For Public Release 2008 June 04 1600 UTC...
Design/Logic Flaw
Cisco Adaptive Security Appliance ASA and Cisco PIX security appliance 7.1.x before 7.1270, 7.2.x before 7.24, and 8.0.x before 8.0310 allows remote attackers to cause a denial of service via a crafted TCP ACK packet to the device interface...
CVE-2008-2055
Cisco Adaptive Security Appliance ASA and Cisco PIX security appliance 7.1.x before 7.1270, 7.2.x before 7.24, and 8.0.x before 8.0310 allows remote attackers to cause a denial of service via a crafted TCP ACK packet to the device interface...
USN-574-1: Linux kernel vulnerabilities
The minix filesystem did not properly validate certain filesystem values. If a local attacker could trick the system into attempting to mount a corrupted minix filesystem, the kernel could be made to hang for long periods of time, resulting in a denial of service. This was only vulnerable in Ubun...