openslp is vulnerable to remote code execution. A heap-based buffer overflow in the ProcessSrvRqst() function in slpd_process.c allows an attacker to execute arbitrary code on the system.

References

www.openwall.com/lists/oss-security/2019/12/10/2

www.openwall.com/lists/oss-security/2019/12/11/2

www.vmware.com/security/advisories/VMSA-2019-0022.html

access.redhat.com/errata/RHSA-2019:4240

access.redhat.com/errata/RHSA-2020:0199

access.redhat.com/security/updates/classification/#critical

lists.fedoraproject.org/archives/list/[email protected]/message/DA3LYAJ2NRKMOZLZOQNDJ5TNQRFMWGHF/

lists.fedoraproject.org/archives/list/[email protected]/message/ZPXXJZLPLAQULBCJVI5NNWZ3PGWXGXWG/

security.gentoo.org/glsa/202005-12

openvas 11

nessus 27

centos 2

fedora 2

redhatcve 1

redhat 2

cbl_mariner 2

nvd 1

cve 1

ubuntu 1

ubuntucve 1

vmware 2

ibm 2

attackerkb 2

prion 1

osv 2

cvelist 1

cisa_kev 1

amazon 1

mageia 1

symantec 1

oraclelinux 2

debian 1

checkpoint_advisories 1

githubexploit 2

rapid7blog 2

qualysblog 1

gentoo 1

securelist 2

openvas

Fedora Update for openslp FEDORA-2019-86bceb61b3

2019-12-22 00:00:00

CentOS: Security Advisory for openslp (CESA-2020:0199)

2020-01-29 00:00:00

Mageia: Security Advisory (MGASA-2020-0075)

2022-01-28 00:00:00

nessus

EulerOS 2.0 SP8 : openslp (EulerOS-SA-2020-1038)

2020-01-02 00:00:00

RHEL 6 : openslp (RHSA-2020:0199)

2020-01-23 00:00:00

NewStart CGSL MAIN 4.05 : openslp Vulnerability (NS-SA-2020-0015)

2020-04-21 00:00:00

centos

openslp security update

2020-01-28 21:23:29

openslp security update

2019-12-24 15:56:45

fedora

[SECURITY] Fedora 30 Update: openslp-2.0.0-22.fc30

2019-12-18 15:17:11

[SECURITY] Fedora 31 Update: openslp-2.0.0-23.fc31

2019-12-18 01:55:51

redhatcve

CVE-2019-5544

2019-12-06 19:47:55

redhat

(RHSA-2019:4240) Critical: openslp security update

2019-12-16 09:01:28

(RHSA-2020:0199) Critical: openslp security update

2020-01-22 11:43:37

cbl_mariner

CVE-2019-5544 affecting package openslp for versions less than 2.0.0-26

2024-04-03 00:40:51

CVE-2019-5544 affecting package openslp for versions less than 2.0.0-26

2022-12-09 01:51:00

nvd

CVE-2019-5544

2019-12-06 16:15:11

cve

CVE-2019-5544

2019-12-06 16:15:11

ubuntu

OpenSLP vulnerability

2021-04-19 00:00:00

ubuntucve

CVE-2019-5544

2019-12-06 00:00:00

vmware

VMware ESXi and Horizon DaaS updates address OpenSLP remote code execution vulnerability (CVE-2019-5544)

2019-12-05 00:00:00

VMware ESXi and Horizon DaaS updates address OpenSLP remote code execution vulnerability (CVE-2019-5544)

2019-12-05 00:00:00

ibm

Security Bulletin: OpenSLP vulnerability affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products

2023-03-29 01:48:02

Security Bulletin: Vulnerability in OpenSLP affects Power Hardware Management Console (CVE-2019-5544)

2021-09-22 23:38:15

attackerkb

CVE-2019-5544 — ESXi OpenSLP remote code execution vulnerability

2019-12-06 00:00:00

CVE-2020-3992 — ESXi OpenSLP remote code execution vulnerability

2020-10-20 00:00:00

prion

Heap overflow

2019-12-06 16:15:00

osv

openslp-dfsg vulnerability

2021-04-19 19:28:33

openslp-dfsg - security update

2019-12-08 00:00:00

cvelist

CVE-2019-5544

2019-12-06 15:54:18

cisa_kev

VMware ESXi and Horizon DaaS OpenSLP Heap-Based Buffer Overflow Vulnerability

2021-11-03 00:00:00

amazon

Critical: openslp

2019-12-16 18:45:00

mageia

Updated openslp packages fix security vulnerability

2020-02-09 22:13:40

symantec

OpenSLP CVE-2019-5544 Heap Memory Corruption Vulnerability

2019-12-06 00:00:00

oraclelinux

openslp security update

2019-12-16 00:00:00

openslp security update

2020-01-22 00:00:00

debian

[SECURITY] [DLA 2025-1] openslp-dfsg security update

2019-12-08 12:51:22

checkpoint_advisories

VMWare OpenSLP Heap Buffer Overflow (CVE-2019-5544; CVE-2021-21974)

2020-02-26 00:00:00

githubexploit

Exploit for Out-of-bounds Write in Vmware Horizon Daas

2021-02-04 15:15:22

Exploit for Out-of-bounds Write in Vmware Horizon Daas

2020-12-01 13:49:26

rapid7blog

VMware ESXi OpenSLP Remote Code Execution Vulnerability (CVE-2020-3992 and CVE-2019-5544): What You Need To Know

2020-11-11 00:39:14

Critical CVEs in Outdated Versions of Atlassian Confluence and VMware vCenter Server

2024-01-19 15:40:43

qualysblog

DarkSide Ransomware

2021-06-09 15:00:00

gentoo

OpenSLP: Multiple vulnerabilities

2020-05-14 00:00:00

securelist

Cyberthreats to financial organizations in 2022

2021-11-23 10:00:13

IT threat evolution Q1 2021

2021-05-31 10:00:37

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.029

Percentile

90.9%

JSON

Related for VERACODE:22180