5 matches found
CVE-2026-10142
A flaw was found in kafka-python. A malicious broker or a machine-in-the-middle attacker can exploit a denial-of-service vulnerability in the protocol parser. By sending a specially crafted 4-byte frame length value without proper bounds validation, an attacker can trigger excessive memory...
CVE-2024-56528
This vulnerability affects Snowplow Collector 3.x before 3.3.0 unless it’s set up behind a reverse proxy that establishes payload limits. It involves sending very large payloads to the Collector and can render it unresponsive to the rest of the requests. As a result, data would not enter the...
CVE-2024-56528
This vulnerability affects Snowplow Collector 3.x before 3.3.0 unless it’s set up behind a reverse proxy that establishes payload limits. It involves sending very large payloads to the Collector and can render it unresponsive to the rest of the requests. As a result, data would not enter the...
CVE-2024-8062
A vulnerability in the typeahead endpoint of h2oai/h2o-3 version 3.46.0 allows for a denial of service. The endpoint performs a HEAD request to verify the existence of a specified resource without setting a timeout. An attacker can exploit this by sending multiple requests to an attacker-controll...
anonymous SMB service DoS on nt5 (and TCP DoS on nt4)
been aware of a DoS attack against NT that i originally thought was SMB-related, for well over a year, now. source code has been available for this length of time, too. what you do is send SMB requests without reading the responses back. i originally thought that you had to send SMBtrans IPC$...