Showing 1 - 7 of 7

CVE-2014-9402

Status Candidate

Overview

The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Service Switch configuration is enabled, allows remote attackers to cause a denial of service (infinite loop) by sending a positive answer while a network name is being process.

Related Files

Cisco Device Hardcoded Credentials / GNU glibc / BusyBox: Posted Sep 4, 2019; Authored by T. Weber | Site sec-consult.com; Many Cisco devices such as Cisco RV340, Cisco RV340W, Cisco RV345, Cisco RV345P, Cisco RV260, Cisco RV260P, Cisco RV260W, Cisco 160, and Cisco 160W suffer from having hard-coded credentials, known GNU glibc, known BusyBox, and IoT Inspector identified vulnerabilities.; tags | exploit, vulnerability; systems | cisco; advisories | CVE-2014-4043, CVE-2014-9402, CVE-2014-9761, CVE-2014-9984, CVE-2015-1472, CVE-2015-5277, CVE-2015-7547, CVE-2015-8778, CVE-2015-8779, CVE-2015-9261, CVE-2016-2147, CVE-2016-2148, CVE-2016-6301, CVE-2017-1000366, CVE-2017-16544, CVE-2018-20679, CVE-2019-5747; MD5 | c446ad84eeb90a116264677ada159562; Download | Favorite | View

WAGO 852 Industrial Managed Switch Series Code Execution / Hardcoded Credentials: Posted Jun 13, 2019; Authored by T. Weber | Site sec-consult.com; The industrial managed switch series 852 from WAGO is affected by multiple vulnerabilities such as old software components embedded in the firmware. Furthermore, hardcoded password hashes and credentials were also found by doing an automated scan with IoT Inspector.; tags | exploit, vulnerability; advisories | CVE-2010-0296, CVE-2010-3856, CVE-2011-2716, CVE-2011-5325, CVE-2012-4412, CVE-2013-1813, CVE-2014-4043, CVE-2014-9402, CVE-2014-9761, CVE-2014-9984, CVE-2015-0235, CVE-2015-1472, CVE-2015-9261, CVE-2016-2147, CVE-2016-2148, CVE-2016-6301, CVE-2019-12550; MD5 | a09f936638884fd22851a65866810bad; Download | Favorite | View

Red Hat Security Advisory 2018-0805-01: Posted Apr 11, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-0805-01 - The glibc packages provide the standard C libraries, POSIX thread libraries, standard math libraries, and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Issues addressed include buffer overflow and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability; systems | linux, redhat, osx; advisories | CVE-2014-9402, CVE-2015-5180, CVE-2017-12132, CVE-2017-15670, CVE-2017-15804, CVE-2018-1000001; MD5 | 0b3e035667ffebd039eca76168496fa2; Download | Favorite | View

Gentoo Linux Security Advisory 201602-02: Posted Feb 17, 2016; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201602-2 - Multiple vulnerabilities have been found in the GNU C library, the worst allowing for remote execution of arbitrary code. Versions less than 2.21-r2 are affected.; tags | advisory, remote, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2013-7423, CVE-2014-0475, CVE-2014-5119, CVE-2014-6040, CVE-2014-7817, CVE-2014-8121, CVE-2014-9402, CVE-2015-1472, CVE-2015-1781, CVE-2015-7547, CVE-2015-8776, CVE-2015-8778, CVE-2015-8779; MD5 | 4ae3105bd8ed710ad3f2ffe994f6efdc; Download | Favorite | View

Mandriva Linux Security Advisory 2015-168: Posted Mar 31, 2015; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2015-168 - Updated glibc packages fix multiple security vulnerabilities.; tags | advisory, vulnerability; systems | linux, mandriva; advisories | CVE-2012-3406, CVE-2014-0475, CVE-2014-4043, CVE-2014-5119, CVE-2014-6040, CVE-2014-7817, CVE-2014-9402, CVE-2015-1472, CVE-2015-1473; MD5 | b7bc646306e46a1f68447be66b599961; Download | Favorite | View

Ubuntu Security Notice USN-2519-1: Posted Feb 26, 2015; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2519-1 - Arnaud Le Blanc discovered that the GNU C Library incorrectly handled file descriptors when resolving DNS queries under high load. This may cause a denial of service in other applications, or an information leak. This issue only affected Ubuntu 10.04 LTS, Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. It was discovered that the GNU C Library incorrectly handled receiving a positive answer while processing the network name when performing DNS resolution. A remote attacker could use this issue to cause the GNU C Library to hang, resulting in a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2013-7423, CVE-2014-9402, CVE-2015-1472, CVE-2015-1473; MD5 | 36ea5f1ec5067ca33c97a7fb40bc5965; Download | Favorite | View

Debian Security Advisory 3169-1: Posted Feb 24, 2015; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3169-1 - Several vulnerabilities have been fixed in eglibc, Debian's version of the GNU C library.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2012-3406, CVE-2013-7424, CVE-2014-4043, CVE-2014-9402, CVE-2015-1472, CVE-2015-1473; MD5 | 4db927bf38478ac3ca12626d9dbf18ee; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 100 files
malvuln 57 files
Ubuntu 51 files
Google Security Research 14 files
Erik David Martin 9 files
Apple 5 files
Jeenali Kothari 5 files
Tim Willis 4 files
Ismael Nava 4 files
Soham Bakore 4 files

File Archives

Systems

AIX (421)
Apple (1,774)
BSD (368)
Cisco (1,902)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (4,040)
HPUX (873)
iOS (284)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (39,469)
Mac OS X (673)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,697)
Slackware (941)
Solaris (1,598)
SUSE (1,444)
Ubuntu (7,138)
UNIX (8,848)
UnixWare (180)
Windows (5,818)
Other

CVE-2014-9402

Overview

Related Files

File Archive:

March 2021

Top Authors In Last 30 Days

File Tags

File Archives

Systems