42 matches found
EUVD-2014-8847
Malware in sbrugna...
EUVD-2014-9009
Malware in sbrugna...
EUVD-2014-8855
Malware in sbrugna...
CVE-2014-9183
ZTE ZXDSL 831CII has a default password of admin for the admin account, which allows remote attackers to gain administrator privileges...
CVE-2014-9184
ZTE ZXDSL 831CII allows remote attackers to bypass authentication via a direct request to 1 main.cgi, 2 adminpasswd.cgi, 3 userpasswd.cgi, 4 upload.cgi, 5 conprocess.cgi, or 6 connect.cgi...
Cross site request forgery (csrf)
connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET request...
CVE-2017-16953
connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET request...
CVE-2017-16953
connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET request...
CVE-2017-16953
The CVE-2017-16953 issue affects ZTE ZXDSL 831CII devices, where connoppp.cgi does not require HTTP Basic Authentication. This allows an unauthenticated remote attacker to modify the PPPoE configuration (or set up malicious configurations) via a GET request. Public references corroborate an acces...
ZTE ZXDSL 831CII Unauthorized Access Vulnerability
The ZTE ZXDSL 831CII is an ADSL modem Modem product from China's ZTE Corporation ZTE. An unauthorized access vulnerability exists in the ZTE ZXDSL 831CII, which originates from the program failing to properly restrict access rights. An attacker could exploit this vulnerability to change the...
ZTE ZXDSL Configuration Reset
Vulnerability Summary The following advisory describes a configuration reset vulnerability found in ZTE ZXDSL 831CII version 6.2. ZXDSL 831CII is “an ADSL access device to support multiple line modes. It supports ADSL2/ADSL2+ and is backward compatible to ADSL, even offers auto-negotiation...
ZTE ZXDSL 831CII - Improper Access Restrictions Vulnerability
Exploit for hardware platform in category web applications Exploit Title: ZTE ZXDSL 831 Unauthorized Configuration Access Exploit Author: Ibad Shah Vendor Homepage: zte.com.cn Software Link: - Version: - ZXDSL - 831CII Tested on: Windows 10 CVE :- 2017-16953 ======================================...
ZTE ZXDSL 831CII Access Bypass Vulnerability
ZTE ZXDSL 831CII devices are prone to an access bypass vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
ZTE ZXDSL 831CII Detection (Telnet)
Telnet based detection of ZTE ZXDSL 831CII devices. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
ZTE ZXDSL 831CII - Improper Access Restrictions
ZTE ZXDSL 831CII - Improper Access Restrictions Exploit Title: ZTE ZXDSL 831 Unauthorized Configuration Access Date: 27/11/2017 Exploit Author: Ibad Shah Vendor Homepage: zte.com.cn Software Link: - Version: - ZXDSL - 831CII Tested on: Windows 10 CVE :- 2017-16953...
CVE-2014-9184
ZTE ZXDSL 831CII allows remote attackers to bypass authentication via a direct request to 1 main.cgi, 2 adminpasswd.cgi, 3 userpasswd.cgi, 4 upload.cgi, 5 conprocess.cgi, or 6 connect.cgi...
CVE-2014-9183
ZTE ZXDSL 831CII has a default password of admin for the admin account, which allows remote attackers to gain administrator privileges...
Authentication flaw
ZTE ZXDSL 831CII allows remote attackers to bypass authentication via a direct request to 1 main.cgi, 2 adminpasswd.cgi, 3 userpasswd.cgi, 4 upload.cgi, 5 conprocess.cgi, or 6 connect.cgi...
CVE-2014-9184
CVE-2014-9184 affects ZTE ZXDSL 831CII. The vulnerability allows remote attackers to bypass authentication by directly requesting CGI files (main.cgi, adminpasswd.cgi, userpasswd.cgi, upload.cgi, conprocess.cgi, connect.cgi). Evidence across sources confirms this authentication bypass issue with ...
CVE-2014-9184
ZTE ZXDSL 831CII allows remote attackers to bypass authentication via a direct request to 1 main.cgi, 2 adminpasswd.cgi, 3 userpasswd.cgi, 4 upload.cgi, 5 conprocess.cgi, or 6 connect.cgi...