28 matches found
EUVD-2017-5770
Malware in sbrugna...
EUVD-2017-5772
Malware in sbrugna...
EUVD-2021-20497
Malware in sbrugna...
EUVD-2017-5771
Malware in sbrugna...
EUVD-2018-2604
Malware in sbrugna...
CVE-2021-33822
An issue was discovered on 4GEE ROUTER HH70VB Version HH70E102.0022. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service...
CVE-2021-33822
An issue was discovered on 4GEE ROUTER HH70VB Version HH70E102.0022. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service...
Denial of service
An issue was discovered on 4GEE ROUTER HH70VB Version HH70E102.0022. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service...
CVE-2021-33822
An issue was discovered on 4GEE ROUTER HH70VB Version HH70E102.0022. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service...
CVE-2021-33822
The CVE-2021-33822 entry applies to the 4GEE ROUTER HH70VB, firmware version HH70_E1_02.00_22. The issue is triggered by attackers using the slowhttptest tool to send incomplete HTTP requests, causing the web server to wait for packet completion and eventually exhaust resources, resulting in deni...
EE 4GEE HH70VB-2BE8GB3 HH70_E1_02.00_19 Hard-Coded Credentails
EE 4GEE HH70 Home Router Hardcoded Root SSH Credentials Advisory Hardware Version/Model: 4GEE Router HH70VB-2BE8GB3 HH70VB Vulnerable Software Version: HH70E102.0019 Patched Software Version: HH70E102.0021 Vulnerability CVEs: CVE-2018-10532 Product URL:...
EE 4GEE HH70VB-2BE8GB3 HH70_E1_02.00_19 Hard-Coded Credentails Vulnerability
Exploit for hardware platform in category web applications EE 4GEE HH70 Home Router Hardcoded Root SSH Credentials Advisory Hardware Version/Model: 4GEE Router HH70VB-2BE8GB3 HH70VB Vulnerable Software Version: HH70E102.0019 Patched Software Version: HH70E102.0021 Vulnerability CVEs: CVE-2018-105...
Hardcoded credentials
An issue was discovered on EE 4GEE HH70VB-2BE8GB3 HH70E102.0019 devices. Hardcoded root SSH credentials were discovered to be stored within the "coreapp" binary utilised by the EE router for networking services. An attacker with knowledge of the default password oelinux123 could login to the rout...
CVE-2018-10532
CVE-2018-10532 affects EE 4GEE HH70VB-2BE8GB3 devices running HH70_E1_02.00_19. The vulnerability stems from hardcoded root SSH credentials stored in the core_app binary, allowing an attacker who knows the default password (oelinux123) to log in as root via SSH. This can lead to loss of confident...
EE 4GEE Mini EE40_00_02.00_44 - Privilege Escalation
EE 4GEE Mini EE400002.0044 - Privilege Escalation Title: EE 4GEE Mini EE400002.0044 - Privilege Escalation Date: 2018-09-22 Software Version: EE400002.0044 Tested on: Windows 10 64-bit and Windows 7 64-bit Exploit Author: Osanda Malith Jayathissa @OsandaMalith Original Advisory:...
EE 4GEE Mini Local Privilege Escalation
Title: EE 4GEE Mini Local Privilege Escalation Vulnerability Date: 22-09-2018 Software Version: EE400002.0044 Tested on: Windows 10 64-bit and Windows 7 64-bit Exploit Author: Osanda Malith Jayathissa @OsandaMalith Original Advisory:...
Flaw in 4GEE WiFi Modem Could Leave Your Computer Vulnerable
A high-severity vulnerability has been discovered in 4G-based wireless 4GEE Mini modem sold by mobile operator EE that could allow an attacker to run a malicious program on a targeted computer with the highest level of privileges in the system. The vulnerability—discovered by 20-year-old Osanda...
Flaw in 4GEE WiFi Modem Could Leave Your Computer Vulnerable
A high-severity vulnerability has been discovered in 4G-based wireless 4GEE Mini modem sold by mobile operator EE that could allow an attacker to run a malicious program on a targeted computer with the highest level of privileges in the system. The vulnerability—discovered by 20-year-old Osanda...
CVE-2017-14268
EE 4GEE WiFi MBB before EE600005.0031 devices have XSS in the smscontent parameter in a getSMSlist request...
Cross site request forgery (csrf)
EE 4GEE WiFi MBB before EE600005.0031 devices have CSRF, related to goform/AddNewProfile, goform/setWanDisconnect, goform/setSMSAutoRedirectSetting, goform/setReset, and goform/uploadBackupSettings...