Lucene search
+L

6 matches found

Ivanti
Ivanti
added 2023/02/14 7:22 a.m.8 views

SA45654 - Multiple OpenSSL Vulnerabilities in Layer 2 network filtering capabilities

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. Multiple vulnerabilities were discovered with respect to Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0...

4.7CVSS6.9AI score0.0071EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2022/09/27 12:0 a.m.7 views

PT-2022-9876 · Ieee +1 · 802.2 +3

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue allows Layer 2 network filtering capabilities, such as IPv6 RA guard, to be bypassed. This can be achieved by using specific combinations of VLAN 0 headers, LLC/SNAP...

4.7CVSS4.5AI score0.00665EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/09/27 12:0 a.m.6 views

PT-2022-9878 · Ieee +1 · 802.2 +3

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue allows Layer 2 network filtering capabilities, such as IPv6 RA guard, to be bypassed. This can be achieved by utilizing LLC/SNAP headers with...

4.7CVSS4.5AI score0.00641EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/09/27 12:0 a.m.7 views

PT-2022-4863 · Cisco · Cisco Ios +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to the implementation of the Ethernet encapsulation protocol, specifically concerning the combination of headers. This could allow ...

4.7CVSS4.6AI score0.0071EPSS
Exploits1References14
OSV
OSV
added 2005/01/10 5:0 a.m.3 views

DEBIAN-CVE-2004-1096

Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system...

7.5CVSS6.4AI score0.17441EPSS
Exploits1References1
CVE
CVE
added 2004/11/19 5:0 a.m.74 views

CVE-2004-0936

CVE-2004-0936 refers to a ZIP header manipulation vulnerability affecting anti-virus engines (notably RAV) where both local and global ZIP headers can be set to zero, allowing a compressed file to bypass protection and still be opened. The connected sources describe a proof-of-concept and public ...

7.5CVSS6.4AI score0.14785EPSS
Exploits4References4Affected Software20
Rows per page
Query Builder