CVE-2011-4137

In Django, CVE-2011-4137 affects the URLField verify_exists check: before 1.2.7 and 1.3.x before 1.3.1, it uses libraries that access arbitrary URLs with no timeout, enabling DoS via slow, data-less, or large-response URLs. Root cause: lack of timeout handling in URL checks. Impact: remote denial...

The service discovery portion of the SPI frequently fails due to a timeout

Challenge Due to weak virtual infrastructure, the discovery process takes more time than the default timeout in the HP agent. Cause Performance related problems on VMware vCenter side. Solution Workaround is to adjust settings of the agent timeout by using the following commands: ovconfchg -ns...

Samsung Galaxy S II (AT&T) trusted pattern lock Security Bypassed

Samsung Galaxy S II AT&T trusted pattern lock Security Bypassed Major security flaw found in AT&T's upcoming Samsung Galaxy S II device. Guys at BGR noticed that the information on the upcoming AT&T version of the Samsung Galaxy S II isn't so safe behind a once trusted pattern lock, and that it c...

SureBackup: Error: Mount with leaseId already activated

Challenge A SureBackup job displays the error: Error: Mount with leaseId 'xxx-xxx-xxx-xxx-xxx-xxx' already activated. Cause Surebackup will fail with this message if certain operations time out. Veeam Backup & Replication implements timeouts for most operations to protect against hangs. However,...

lltd-discovery NSE Script

Uses the Microsoft LLTD protocol to discover hosts on a local network. For more information on the LLTD protocol please refer to Script Arguments lltd-discovery.interface string specifying which interface to do lltd discovery on. If not specified, all ethernet interfaces are tried...

Pscan 2.0 - multi threaded TCP Syn port scanner

Pscan 2.0 - multi threaded TCP Syn port scanner TCP Port scanner Multi threaded with possibility to scan 65535. TCP ports on an IP address.You can specify how many threads to run and the timeout. Further more it will tell you the MAC address of the target and the service runningFor LINUX and...

Call execution timeout (100000 ms) (Veeam.Backup.SSH.PerlSoapException)

Article Applicability This article discusses an issue that only occurs when non-persistent Veeam Data Movers are used. The non-persistent data movers are only used when the account provided to Veeam Backup & Replication to connect to a Linux server does not have root or root-equivalent permission...

How to Adjust Collector Heartbeat Timeout

Purpose This article provides information regarding the configuration of the Collector Heartbeat setting, which determines how long the collector can go between heartbeats before being considered unreachable. Solution Configuration of the CollectorHeartbeatTimeout value is documented in the Veeam...

Failed to start client agent on the host

Backup job fails with the error: 'Failed to start client agent on the host '...', Timeout to start agent'...

broadcast-ping NSE Script

Sends broadcast pings on a selected interface using raw ethernet packets and outputs the responding hosts' IP and MAC addresses or if requested adds them as targets. Root privileges on UNIX are required to run this script since it uses raw sockets. Most operating systems don't respond to...

httpd: mod_proxy_ajp worker moved to error state when timeout exceeded

The modproxyajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service worker consumption via an expensive request...

fetchmail DoS

No timeout enforced for SSL operations...

FreeBSD : fetchmail -- STARTTLS denial of service (f7d838f2-9039-11e0-a051-080027ef73ec)

Matthias Andree reports : Fetchmail version 5.9.9 introduced STLS support for POP3, version 6.0.0 added STARTTLS for IMAP. However, the actual STARTTLS-initiated in-band SSL/TLS negotiation was not guarded by a timeout. Depending on the operating system defaults as to TCP stream keepalive mode,...

Nmap NSE net: ms-sql-hasdbaccess

Queries Microsoft SQL Server ms-sql for a list of databases a user has access to. The script needs an account with the sysadmin server role to work. It needs to be fed credentials through the script arguments or from the scripts 'mssql-brute' or 'mssql-empty- password'. When run, the script...

Nmap NSE net: ms-sql-brute

Performs password guessing against Microsoft SQL Server ms-sql. SYNTAX: userdb: The filename of an alternate username database. passdb: The filename of an alternate password database. mssql.timeout: How long to wait for SQL responses. This is a number followed by 'ms' for milliseconds, 's' for...

Nmap NSE net: ms-sql-xp-cmdshell

Attempts to run a command using the command shell of Microsoft SQL Server ms-sql. The script needs an account with the sysadmin server role to work. It needs to be fed credentials through the script arguments or from the scripts 'ms-sql-brute' or 'ms-sql-empty- password'. When run, the script...

Nmap NSE net: ms-sql-tables

Queries Microsoft SQL Server ms-sql for a list of tables per database. The sysdatabase table should be accessible by more or less everyone The script attempts to use the sa account over any other if it has the password in the registry. If not the first account in the registry is used. Once we hav...

fetchmail -- STARTTLS denial of service

Matthias Andree reports: Fetchmail version 5.9.9 introduced STLS support for POP3, version 6.0.0 added STARTTLS for IMAP. However, the actual STARTTLS-initiated in-band SSL/TLS negotiation was not guarded by a timeout. Depending on the operating system defaults as to TCP stream keepalive mode,...

targets-sniffer NSE Script

Sniffs the local network for a configurable amount of time 10 seconds by default and prints discovered addresses. If the newtargets script argument is set, discovered addresses are added to the scan queue. Requires root privileges. Either the targets-sniffer.iface script argument or -e Nmap optio...

sendmail security and bug fix update

8.13.1-6 - rpm attributes S,5,T not recorded for statistics file - fix specfile for passing rpm -V test 8.13.1-5 - recompile with -fno-strict-aliasing - fix typo, purge-mqueue script - remove README.certcnnul 8.13.1-4 - fix CVE-2009-4565 554987 - fix MAXHOSTNAMELEN 485380 - fix stale files in...