all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Adventures in Validating IPv4 Addresses, (Thu, Oct 26th)

Add to bookmarks
Oct. 26, 2023, 5:20 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

It should be pretty easy to validate an IP address. IPv4 addresses are 32-bit unsigned integers, and IPv6 addresses are 128-bit unsigned integers. Things get “interesting” when developers attempt to validate IP addresses as a string. There have been a few interesting vulnerabilities around this issue (CVE-2021-28918, CVE-2021-29921, CVE-2021-29418).


Article Link: https://isc.sans.edu/diary/rss/30348


1 post - 1 participant


Read full topic

address addresses adventures cve developers easy ip address ip addresses ipv4 ipv6 issue things vulnerabilities

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Linux Trojan - Xorddos with Filename eyshcjdmzg, (Mon, Apr 29th) an hour ago | malware.news
ddos dshield filename files +8
CISO Perspectives: Protecting Legacy Network Devices with ZTNA 4 hours ago | malware.news
attention aware ciso customers +20
London Drugs pharmacy closes all stores to respond to cyber incident 6 hours ago | malware.news
article canada closures cyber +11
HPE security advisory (AV24-232) 7 hours ago | malware.news
advisory article canadian canadian centre for cyber security +7
SonicWall security advisory (AV24-233) 7 hours ago | malware.news
advisory article canadian canadian centre for cyber security +7
Critical infrastructure cyberattacks pushed NSA to unmask thousands of U.S. identities through spying law 8 hours ago | malware.news
act critical critical infrastructure cyberattacks +14
Change Healthcare incident caused by compromised Citrix credentials 8 hours ago | malware.news
article ceo change change healthcare +15
Stolen Citrix Credentials Led to Change Ransomware Attack 9 hours ago | malware.news
access attack authentication ceo +23
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN … 9 hours ago | malware.news
article chrome fcc ftc +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cloud Security Engineer

@ Gainwell Technologies | Any city, OR, US, 99999
View on infosec-jobs.com

Federal Workday Security Lead

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Workplace Consultant

@ Solvinity | Den Bosch, Noord-Brabant, Nederland
View on infosec-jobs.com

SrMgr-Global Information Security - Security Risk Management

@ Marriott International | Bethesda, MD, United States
View on infosec-jobs.com

Sr. Security Engineer - Data Loss Prevention

@ Verisk | Jersey City, NJ, United States
View on infosec-jobs.com
View more jobs