One (Thread) Can Keep a (PRNG) Secret, but Not Two

We present a novel, practical attack on the IPv6 Fragment ID generation algorithm of XNU, which is the kernel used by Apple products such as macOS and iOS. This attack exploits a race-condition vulnerability in the algorithm's pseudorandom number generator PRNG to cryptanalytically break, learn t...

Linux Distros Unpatched Vulnerability : CVE-2018-1000115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume Network Amplification, CWE-406 vulnerability in the UDP support of the...

EUVD-2016-10122

ntpd in NTP before 4.2.8p9, when running on Windows, allows remote attackers to cause a denial of service via a large UDP packet...

WireX update: UDP attack capabilities

Akamai would like to acknowledge the research by F5 containing additional information on the capabilities of this malware, released September 2nd. Finding new features The WireX botnet was discovered due to its role in a series of prolonged attacks against several organizations. It was brought to...

RealSecure / Blackice - 'iss_pam1.dll' Remote Overflow

/ 557isspamexp - RealSecure / Blackice ICQ isspam1.dll remote overflow exploit Copyright c SST 2004 All rights reserved. Public version code by Sam Sam@efnet and 2004/03/26 Compile: gcc -o 557isspamexp 557isspamexp.c how works? root@core exp ./557isspamexp 192.168.10.2 192.168.10.169 5570...

Microsoft ISA Server Fragmented Udp Flood Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---- Microsoft ISA Server Fragmented Udp Flood Vulnerability ---- - ---- Type A system resource is exhausted. - ---- Summary A fragmented Udp attack through the microsoft isa server makes the system hampered by using the cpu at 100. Meanwhile server...