Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
icmp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-47093
An issue exists in Stormshield Network Security (SNS) 4.0.0 up to and including 4.3.21, 4.4.0 up to and including 4.6.8, and 4.7.0. Sending a crafted ICMP packet may lead to a crash of the ASQ engine.
Stormshield Stormshield Network Security 4.7.0
Stormshield Stormshield Network Security
7.8
CVSSv2
CVE-2012-3016
Siemens SIMATIC S7-400 PN CPU devices with firmware 6 prior to 6.0.3 allow remote malicious users to cause a denial of service (defect-mode transition and service outage) via crafted ICMP packets.
Siemens Simatic S7-400 Cpu Firmware 6.0.1
Siemens Simatic S7-400 Cpu Firmware 6.0.2
Siemens Simatic S7-400 Cpu 416f-3 Pn\\/dp
Siemens Simatic S7-400 Cpu 412-2 Pn
Siemens Simatic S7-400 Cpu 414-3 Pn\\/dp
Siemens Simatic S7-400 Cpu 414f-3 Pn\\/dp
Siemens Simatic S7-400 Cpu 416-3 Pn\\/dp
10
CVSSv2
CVE-1999-0454
A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso.
4.3
CVSSv2
CVE-2018-16527
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket.
Amazon Freertos
Amazon Amazon Web Services Freertos
5
CVSSv2
CVE-2006-4265
Kaspersky Anti-Hacker 1.8.180, when Stealth Mode is enabled, allows remote malicious users to obtain responses to ICMP (1) timestamp and (2) netmask requests, which is inconsistent with the documented behavior of Stealth Mode.
Kaspersky Lab Kaspersky Anti-hacker 1.8.180
10
CVSSv2
CVE-2005-0065
The original design of TCP does not check that the TCP sequence number in an ICMP error message is within the range of sequence numbers for data that has been sent but not acknowledged (aka "TCP sequence number checking"), which makes it easier for malicious users to fo...
Tcp Tcp
5
CVSSv2
CVE-2005-0066
The original design of TCP does not check that the TCP Acknowledgement number in an ICMP error message generated by an intermediate router is within the range of possible values for data that has already been acknowledged (aka "TCP acknowledgement number checking"), whi...
Tcp Tcp
7.8
CVSSv2
CVE-2005-3810
ip_conntrack_proto_icmp.c in ctnetlink in Linux kernel 2.6.14 up to 2.6.14.3 allows malicious users to cause a denial of service (kernel oops) via a message without ICMP ID (ICMP_ID) information, which leads to a null dereference.
Linux Linux Kernel 2.6.14
Linux Linux Kernel 2.6.14.1
Linux Linux Kernel 2.6.14.2
Linux Linux Kernel 2.6.14.3
4.3
CVSSv2
CVE-2009-3641
Snort prior to 2.8.5.1, when the -v option is enabled, allows remote malicious users to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.
Snort Snort 1.8.0
Snort Snort 1.8.1
Snort Snort 1.8.4
Snort Snort 1.8.5
Snort Snort 2.0
Snort Snort 1.9.0
Snort Snort 2.8.0
Snort Snort 2.8.2.2
Snort Snort 2.8.3
Snort Snort 1.8.7
Snort Snort 1.6
Snort Snort 2.6.1.1
Snort Snort 2.6.1
Snort Snort
Snort Snort 1.8.6
Snort Snort 2.6.2
Snort Snort 2.6.1.2
Snort Snort 2.8.3.4
Snort Snort 2.8.3.4.1
Snort Snort 1.8.2
Snort Snort 1.8.3
Snort Snort 1.9.1
2 EDB exploits
5
CVSSv2
CVE-2002-0208
PGP Security PGPfire 7.1 for Windows alters the system's TCP/IP stack and modifies packets in ICMP error messages in a way that allows remote malicious users to determine that the system is running PGPfire.
Network.associates Pgpfire 7.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »