openssl_seal() is prone to use uninitialized memory that can be turned into a code execution. This document describes technical details of the journey to hijack apache2 requests. It is a very well written and thoroughly documented piece of research.
7328b4676384b96b2489eec8e7c79cb066123cadf924ac7ffb3cdc3f203e52c4FreeBSD Security Advisory - An integer overflow in computing the size of IGMPv3 data buffer can result in a buffer which is too small for the requested operation. An attacker who can send specifically crafted IGMP packets could cause a denial of service situation by causing the kernel to crash. Revision 2 of this advisory.
07777cd1ce7f35b3c30e664d16946ac2cbbf3e05394da44684d68f4bff1b372aVarnish Cache version 4.0.3 suffers from a buffer overflow vulnerability.
2b10a0518f442a736ea3e86364fcb47251a1b0e1853674a11d5a6b920b9b9cd1FreeBSD Security Advisory - An integer overflow in computing the size of IGMPv3 data buffer can result in a buffer which is too small for the requested operation. An attacker who can send specifically crafted IGMP packets could cause a denial of service situation by causing the kernel to crash.
76ae1889e6e180016123dbcd9d01a3c9f96266857a6c54bf55851337ed754719Apache versions 2.4.x prior to 2.4.10 suffer from a denial of service condition when mod_proxy is in use.
89f9be9f6016af3dc6c28477576b16ea8b93226b5b1b1046b09db2be7cbe5c3dPHP socket connect() stack buffer overflow proof of concept code.
6abcba91bf7177e20f4ef770653563e589f25adaafe8dc216b107fff5b5e35b9Riorey DDoS mitigation appliances suffer from a very poor design vulnerability where they have a hardcoded root login and password for automation. Fail!
29c26502b9e544b424841c7d7e3ccd28614e8629e9e6f9e8c76dac87a75fd345
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed