CVE-2026-33837

CVE-2026-33837 is a heap-based buffer overflow in Windows TCP/IP that could allow an authenticated local attacker to elevate privileges. The entry notes a local, low-attack-complexity vector with no user interaction required and HIGH impact to confidentiality, integrity, and availability, yieldin...

CVE-2023-29961

D-Link DIR-605L firmware version 1.17B01 BETA is vulnerable to stack overflow via /goform/formTcpipSetup,...

CVE-2025-60552

CVE-2025-60552 affects the D-Link DIR600L router (DIR600L Ax FW116WWb01). A buffer overflow is triggered in the function formTcpipSetup via the input noted in the curTime parameter, due to improper input length validation. Reported impact is denial of service, with CVSSv3.1 indicating Network acc...

EUVD-2007-0442

Malware in sbrugna...

CVE-2025-11299 Belkin F9K1015 formWanTcpipSetup buffer overflow

A vulnerability was identified in Belkin F9K1015 1.00.10. The affected element is an unknown function of the file /goform/formWanTcpipSetup. The manipulation of the argument pppUserName leads to buffer overflow. It is possible to initiate the attack remotely. The exploit is publicly available and...

D-Link DIR-605L/DIR-618 formTcpipSetup Function Access Control Error Vulnerability

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An access control error vulnerability exists in the D-Link DIR-618 version 2.02 and DIR-605L version 3.02, which stems from improper access control in the file /goform/formTcpipSetup, and can be exploit...

D-Link DIR-605L和D-Link DIR-618 安全漏洞

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An access control error vulnerability exists in the D-Link DIR-618 version 2.02 and DIR-605L version 3.02, which stems from improper access control in the file /goform/formTcpipSetup, and can be exploit...

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

CVE-2024-38063 - Remotely Exploiting The Kernel Via IPv6 - Si...

CVE-2023-29961

D-Link DIR-605L firmware version 1.17B01 BETA is vulnerable to stack overflow via /goform/formTcpipSetup,...

SUSE CVE-2020-11904

The Treck TCP/IP stack before 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write...

VMware ESXi TCP/IP Memory Corruption Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of VMware ESXi. An attacker must first obtain the ability to execute low-privileged code on the target host system in order to exploit this vulnerability. The specific flaw exists within the TCPIP kernel...

PT-2022-25298 · Ibm · Aix +2

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.1 through 7.3 VIOS version 3.1 Description: The issue allows a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service. Recommendations: For IBM AIX versions 7.1...

Exploit for CVE-2021-24086

PoC exploit for CVE-2021-24086, a Windows TCP/IP Denial of Service Vulnerability. The target is the Windows TCP/IP stack, specifically the tcpip.sys driver, which is vulnerable to a NULL dereference. The vulnerability can be triggered remotely by sending a malicious UDP packet over IPv6. The...

PT-2021-2045 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows versions prior to the fixed version Description: The issue is related to a Denial of Service vulnerability in the Windows TCP/IP service, which can be exploited to cause a system crash. It is also associated with errors in privilege...

Windows TCPIP Finger Command - C2 Channel and Bypassing Security Software

Title: Windows TCPIP Finger Command - C2 Channel and Bypassing Security Software Author: John Page aka hyp3rlinx Date: 2020-09-16 Website: hyp3rlinx.altervista.org Source: http://hyp3rlinx.altervista.org/advisories/WindowsTCPIPFingerCommandC2ChannelandBypassingSecuritySoftware.txt...

DEBIAN-CVE-2020-10745

A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server to consume excessive CPU use, resulting in a denial of service. This highest threat from this...

CVE-2020-11913

The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read...

CVE-2020-11903

The Treck TCP/IP stack before 6.0.1.28 has a DHCP Out-of-bounds Read...

March 19, 2019—KB4489893 (Preview of Monthly Rollup)

March 19, 2019—KB4489893 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4489881 released March 12, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses an...

AVEVA InduSoft Web Studio / InTouch Edge HMI Command 66 RCE

Binary data scadaavevaiwsitehcmd66rce.nbin...