EUVD-2009-2211

Malware in sbrugna...

CVE-2009-2215

Multiple cross-site scripting XSS vulnerabilities in URD before 0.6.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the fatalerror page and unspecified other components...

Avoid using the same ERC-165 interface ID for URDs and their callers

Lines of code Vulnerability details Bug Description Contracts that implement the LSP-1 standard include INTERFACEIDLSP1 in their supportsInterface function. This means that they have a universalReceiver function that calls a Universal Receiver Delegate URD, such as LSP1UniversalReceiverDelegateUP...

urd-mali.info XSS vulnerability

Vulnerable URL: http://urd-mali.info/article.php?id=/%27%20%22--!%3E%20%3Cimg%20src=x%20onerror=alert%22OPENBUGBOUNTY%22%3E Details: Description| Value ---|--- Patched:| Yes, at 26.11.2017 Latest check for patch:| 26.11.2017 14:31 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

Crafted IP Option Vulnerability

Cisco routers and switches running Cisco IOS or Cisco IOS XR software may be vulnerable to a remotely exploitable crafted IP option Denial of Service DoS attack. Exploitation of the vulnerability may potentially allow for arbitrary code execution. The vulnerability may be exploited after processi...

CVE-2009-2215

Multiple cross-site scripting XSS vulnerabilities in URD before 0.6.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the fatalerror page and unspecified other components...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in URD before 0.6.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the fatalerror page and unspecified other components...

CVE-2009-2215

Multiple cross-site scripting XSS vulnerabilities in URD before 0.6.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the fatalerror page and unspecified other components...

CVE-2009-2215

Multiple cross-site scripting XSS vulnerabilities in URD before 0.6.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the fatalerror page and unspecified other components...

CVE-2009-2215

CVE-2009-2215 affects URD prior to 0.6.2, with multiple XSS vulnerabilities that allow an attacker to inject arbitrary scripts via the fatal_error page and other components. The exact root cause details and vulnerable components are not elaborated beyond this, and exploitation status is not provi...

Code injection

Cisco IOS 9.x, 10.x, 11.x, and 12.x and IOS XR 2.0.x, 3.0.x, and 3.2.x allows remote attackers to cause a denial of service or execute arbitrary code via a crafted IP option in the IP header in a 1 ICMP, 2 PIMv2, 3 PGM, or 4 URD packet...

CVE-2007-0480

Cisco IOS 9.x, 10.x, 11.x, and 12.x and IOS XR 2.0.x, 3.0.x, and 3.2.x allows remote attackers to cause a denial of service or execute arbitrary code via a crafted IP option in the IP header in a 1 ICMP, 2 PIMv2, 3 PGM, or 4 URD packet...

Cisco IOS畸形IP选项远程拒绝服务及代码执行漏洞

Cisco IOS是Cisco设备所使用的操作系统。 Cisco IOS在处理特定畸形的IP报文时存在漏洞，远程攻击者可能利用此漏洞导致设备无法正常工作或在设备上执行任意指令。 如果满足了所有以下3个条件的话： 1. 报文包含有特制的IP选择 2. 报文为以下协议之一： ICMP - Echo Type 8 - 'ping' ICMP - Timestamp Type 13 ICMP - Information Request Type 15 ICMP - Address Mask Request Type 17 PIMv2 - IP protocol 103 PGM - IP...

CVE-2007-0480

The CVE-2007-0480 vulnerability affects Cisco IOS 9.x, 10.x, 11.x, 12.x and IOS XR 2.0.x, 3.0.x, 3.2.x. A crafted IP option in the IP header contained in ICMP, PIMv2, PGM, or URD packets can cause a remote denial of service and may allow arbitrary code execution. Exploitation is remote and may re...

Cisco IOS fails to properly process certain packets containing a crafted IP option

Overview Cisco IOS software contains a vulnerablity that may allow an attacker to execute arbitrary code or create a denial of service condition. Description Cisco IOS is an operating system that is used on Cisco network devices. The Internet Control Message Protocol ICMP is a protocol commonly...