nmap software vulnerabilities
vulnerabilities.aspcode.net
Searching nmap software vulnerabilities
A remote attacker can sometimes identify the op
sometimes
|
operating
|
identify
|
attacker
|
packets
|
reacts
|
system
|
remote
|
queso
|
using
|
based
|
tool
|
nmap
|
such
|
some
|
ICMP
|
host
|
can
|
A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso.
FORE PowerHub before 5.0.1 allows remote attack
PowerHub
|
before
|
FORE
|
FORE PowerHub before 5.0.1 allows remote attackers to cause a denial of service (hang) via a TCP SYN scan with TCP/IP OS fingerprinting, e.g. via nmap.
Snort 1.6, when running in straight ASCII packe
attackers
|
straight
|
selected
|
service
|
decoded
|
logging
|
running
|
allows
|
denial
|
remote
|
packet
|
cause
|
Snort
|
ASCII
|
mode
|
IDS
|
Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected, allows remote attackers to cause a denial of service (crash) by sending non-IP protocols that Snort does not know about, as demonstrated by an nmap protocol scan.
Palm OS 3.5h and possibly other versions, as us
Handspring
|
attackers
|
versions
|
products
|
possibly
|
connect
|
service
|
denial
|
allows
|
remote
|
Xircom
|
cause
|
other
|
Visor
|
scan
|
Palm
|
used
|
nmap
|
35h
|
via
|
TCP
|
Palm OS 3.5h and possibly other versions, as used in Handspring Visor and Xircom products, allows remote attackers to cause a denial of service via a TCP connect scan, e.g. from nmap.
Alcatel Speed Touch Home ADSL Modem allows remo
attackers
|
service
|
Alcatel
|
remote
|
denial
|
allows
|
cause
|
Touch
|
Speed
|
Modem
|
ADSL
|
Home
|
Alcatel Speed Touch Home ADSL Modem allows remote attackers to cause a denial of service (reboot) via a network scan with unusual packets, such as nmap with OS detection.
Rational ClearCase 4.1, 2002.05, and possibly o
ClearCase
|
Rational
|
Rational ClearCase 4.1, 2002.05, and possibly other versions allows remote attackers to cause a denial of service (crash) via certain packets to port 371, e.g. via nmap.
Motorola Surfboard 4200 cable modem allows remo
Surfboard
|
Motorola
|
Motorola Surfboard 4200 cable modem allows remote attackers to cause a denial of service (crash) by performing a SYN scan using a tool such as nmap.
ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 an
attackers
|
generated
|
certain
|
process
|
network
|
packets
|
remote
|
Compaq
|
ypbind
|
allows
|
cause
|
Tru64
|
dump
|
nmap
|
core
|
40F
|
40G
|
51A
|
via
|
50A
|
ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 and 5.1A allows remote attackers to cause the process to core dump via certain network packets generated by nmap.
Compaq Tru64 4.0 d allows remote attackers to c
attackers
|
service
|
denial
|
remote
|
Compaq
|
allows
|
Tru64
|
cause
|
Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in (1) telnet, (2) FTP, (3) ypbind, (4) rpc.lockd, (5) snmp, (6) ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap.
Netgear RM-356 and RT-338 series SOHO routers a
attackers
|
routers
|
service
|
Netgear
|
remote
|
RM-356
|
denial
|
RT-338
|
series
|
cause
|
allow
|
SOHO
|
Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap.
The dynamic initialization feature of the Clear
initialization
|
environment
|
ClearPath
|
attackers
|
dynamic
|
feature
|
service
|
denial
|
allows
|
remote
|
cause
|
MCP
|
The dynamic initialization feature of the ClearPath MCP environment allows remote attackers to cause a denial of service (crash) via a TCP port scan using a tool such as nmap.
The Node Manager for BEA WebLogic Express and S
attackers
|
WebLogic
|
through
|
service
|
Express
|
Manager
|
remote
|
denial
|
Server
|
allows
|
cause
|
Node
|
BEA
|
The Node Manager for BEA WebLogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cause a denial of service (Node Manager crash) via malformed data to the Node Manager's port, as demonstrated by nmap.
Efficient Networks 5861 DSL router, when runnin
Efficient
|
Networks
|
Efficient Networks 5861 DSL router, when running firmware 5.3.80 configured to block incoming TCP SYN, packets allows remote attackers to cause a denial of service (crash) via a flood of TCP SYN packets to the WAN interface using a port scanner such as nmap.
Stack-based buffer overflow in the NMAP Agent f
Stack-based
|
arbitrary
|
possibly
|
versions
|
overflow
|
execute
|
earlier
|
command
|
NetMail
|
allows
|
buffer
|
Novell
|
users
|
Agent
|
local
|
long
|
name
|
user
|
NMAP
|
352C
|
code
|
via
|
Stack-based buffer overflow in the NMAP Agent for Novell NetMail 3.52C and possibly earlier versions allows local users to execute arbitrary code via a long user name in the USER command.
Netgear RP114, and possibly other versions and
demonstrated
|
temporarily
|
interfaces
|
attackers
|
interface
|
versions
|
external
|
possibly
|
internal
|
service
|
between
|
routing
|
devices
|
another
|
Netgear
|
system
|
allows
|
denial
|
attack
|
remote
|
stops
|
using
|
RP114
|
other
|
flood
|
cause
|
which
|
nmap
|
one
|
via
|
SYN
|
Netgear RP114, and possibly other versions and devices, allows remote attackers to cause a denial of service via a SYN flood attack between one system on the internal interface and another on the external interface, which temporarily stops routing between the interfaces, as demonstrated using nmap.
The ip_push_pending_frames function in Linux 2.
ip_push_pending_frames
|
function
|
before
|
Linux
|
26x
|
24x
|
The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.
Multiple stack-based buffer overflows in Novell
stack-based
|
eDirectory
|
overflows
|
Multiple
|
before
|
buffer
|
Novell
|
88x
|
Multiple stack-based buffer overflows in Novell eDirectory 8.8.x before 8.8.1 FTF1, and 8.x up to 8.7.3.8, and Novell NetMail before 3.52e FTF2, allow remote attackers to execute arbitrary code via (1) a long HTTP Host header, which triggers an overflow in the BuildRedirectURL function; or vectors related to a username containing a . (dot) character in the (2) SMTP, (3) POP, (4) IMAP, (5) HTTP, or (6) Networked Messaging Application Protocol (NMAP) Netmail services.
PhoneCtrl.exe in Linksys WIP 330 Wireless-G IP
PhoneCtrlexe
|
Linksys
|
WIP
|
PhoneCtrl.exe in Linksys WIP 330 Wireless-G IP Phone 1.00.06A allows remote attackers to cause a denial of service (crash) via a TCP SYN scan, as demonstrated using TCP ports 1-65535 with nmap.
Multiple buffer overflows in Novell NetMail bef
attackers
|
arbitrary
|
overflows
|
Multiple
|
NetMail
|
execute
|
remote
|
Novell
|
buffer
|
before
|
allow
|
code
|
352e
|
FTF2
|
Multiple buffer overflows in Novell NetMail before 3.52e FTF2 allow remote attackers to execute arbitrary code (1) by appending literals to certain IMAP verbs when specifying command continuation requests to IMAPD, resulting in a heap overflow; and (2) via crafted arguments to the STOR command to the Network Messaging Application Protocol (NMAP) daemon, resulting in a stack overflow.
Unspecified vulnerability in Dell Remote Access
vulnerability
|
Unspecified
|
Remote
|
Access
|
Card
|
Dell
|
Unspecified vulnerability in Dell Remote Access Card 4 (DRAC4) with firmware 1.50 Build 02.16 allows remote attackers to cause a denial of service (SSH daemon crash) via certain network traffic, as demonstrated by an "nmap -O" scan with nmap 4.03, possibly related to a Mocana (Mocanada) SSH vulnerability.
Software vulnerabilities results 1 to 20 of 21
Page:
1
2
►