segment software vulnerabilities
vulnerabilities.aspcode.net
Searching segment software vulnerabilities
ICQ 98 beta on Windows NT leaks the internal IP
internal
|
address
|
Windows
|
segment
|
instead
|
public
|
packet
|
client
|
leaks
|
beta
|
data
|
ICQ
|
TCP
|
ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration.
Multiple TCP implementations could allow remote
implementations
|
attackers
|
Multiple
|
service
|
remote
|
denial
|
cause
|
could
|
allow
|
TCP
|
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.
Unknown vulnerability in SCO OpenServer 5.0.6 a
vulnerability
|
OpenServer
|
Unknown
|
SCO
|
Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors.
The NtSetLdtEntries function in the programming
NtSetLdtEntries
|
programming
|
Descriptor
|
interface
|
function
|
Table
|
Local
|
The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute arbitrary code via an expand-down data segment descriptor descriptor that points to protected memory.
eo420_GetStringFromVarPart in veo420.c for SAP
eo420_GetStringFromVarPart
|
database
|
veo420c
|
server
|
SAP
|
eo420_GetStringFromVarPart in veo420.c for SAP database server (SAP DB) 7.4.03.27 and earlier may allow remote attackers to execute arbitrary code via a connect packet with a 256 byte segment to the niserver (aka serv.exe) process on TCP port 7269, which prevents the server from NULL terminating the string and leads to a buffer overflow.
The TCP MSS (maximum segment size) functionalit
MSS
|
TCP
|
The TCP MSS (maximum segment size) functionality in netinet allows remote attackers to cause a denial of service (resource exhaustion) via (1) a low MTU, which causes a large number of small packets to be produced, or (2) via a large number of packets with a small TCP payload, which cause a large number of calls to the resource-intensive sowakeup function.
traps.c in the Linux kernel 2.6.x and 2.4.x exe
exception
|
executes
|
segment
|
service
|
denial
|
allows
|
faults
|
kernel
|
trapsc
|
cause
|
users
|
stack
|
Linux
|
which
|
local
|
26x
|
24x
|
traps.c in the Linux kernel 2.6.x and 2.4.x executes stack segment faults on an exception stack, which allows local users to cause a denial of service (oops and stack fault exception).
Cisco IOS 12.0 through 12.4 and IOS XR before 3
Cisco
|
IOS
|
Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on a local network segment to cause a denial of service (device reload) and possibly execute arbitrary code via a crafted IPv6 packet.
The Intel Core 2 Extreme processor X6800 and Co
incorrectly
|
processor
|
desktop
|
Extreme
|
memory
|
Access
|
E4000
|
Intel
|
X6800
|
E6000
|
page
|
Core
|
set
|
Duo
|
The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90.
Unspecified vulnerability in Cisco IOS 12.2SXA,
vulnerability
|
Unspecified
|
Catalyst
|
running
|
Hybrid
|
MSFC2a
|
122SXA
|
Cisco
|
MSFC2
|
MSFC3
|
Mode
|
SXF;
|
IOS
|
SXB
|
SXD
|
Unspecified vulnerability in Cisco IOS 12.2SXA, SXB, SXD, and SXF; and the MSFC2, MSFC2a and MSFC3 running in Hybrid Mode on Cisco Catalyst 6000, 6500 and Cisco 7600 series systems; allows remote attackers on a local network segment to cause a denial of service (software reload) via a certain MPLS packet.
The Linux kernel 2.6.20 and 2.6.21 does not pro
kernel
|
Linux
|
The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs (the xcs field) during ptrace single-step operations, which allows local users to cause a denial of service (NULL dereference and OOPS) via certain code that makes ptrace PTRACE_SETREGS and PTRACE_SINGLESTEP requests, related to the TRACE_IRQS_ON function, and possibly related to the arch_ptrace function.
Unspecified vulnerability in (1) SYS$EI1000.EXE
vulnerability
|
Unspecified
|
Unspecified vulnerability in (1) SYS$EI1000.EXE and (2) SYS$EI1000_MON.EXE in HP OpenVMS 8.3 and earlier allows remote attackers to cause a denial of service (machine crash) via an "oversize" packet, which is not properly discarded if "the device has no remaining buffers after receipt of the first buffer segment."
Software vulnerabilities results 1 to 13 of 13
Page:
1