Lucene search
+L

366 matches found

CVE
CVE
added 2018/09/15 9:0 p.m.50 views

CVE-2018-17065

CVE-2018-17065 affects D-Link DIR-816 A2 (firmware 1.10 B05). The flaw is a stack-based buffer overflow in the /goform/DDNS handler caused by processing very long passwords, which can overwrite the return address. Connected sources corroborate the affected product and vulnerability class. No offi...

10CVSS9.6AI score0.01892EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/09/15 9:0 p.m.46 views

CVE-2018-17063

CVE-2018-17063 affects D‑Link DIR-816 A2 firmware 1.10 B05. In the NTPSyncWithHost handler, an HTTP request parameter is used to construct a shell command, enabling command injection via shell metacharacters . A remote attacker could potentially execute arbitrary commands on the device. Public so...

10CVSS9.6AI score0.04143EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/09/15 9:0 p.m.48 views

CVE-2018-17066

CVE-2018-17066 affects D-Link DIR-816 A2 with firmware 1.10 B05. The /goform/form2systime.cgi handler builds a command string using the HTTP datetime parameter, allowing command injection via shell metacharacters. Network-accessible in the affected device with no authentication required, and the ...

10CVSS9.6AI score0.07255EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/09/15 9:0 p.m.42 views

CVE-2018-17068

An explicit vulnerability entry exists for D-Link DIR-816 A2 with firmware 1.10 B05 (DIR-816) where the HTTP /goform/Diagnosis handler builds a command string using the sendNum parameter, enabling command injection via shell metacharacters. Connected CNVD/CVEs reiterate that this is a command-inj...

10CVSS9.6AI score0.03678EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2018/09/15 12:0 a.m.5 views

PT-2018-3880 · D Link · D-Link Dir-816 A2

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10 B05 Description: The issue is related to a stack-based buffer overflow that can occur when a very long password is sent to the /goform/formLogin endpoint. This can lead to overwriting the return address. The...

10CVSS9.8AI score0.01892EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2018/09/15 12:0 a.m.4 views

PT-2018-3884 · D Link · D-Link Dir-816 A2

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10 B05 Description: An issue exists in the handler function of the "/goform/NTPSyncWithHost" route, where an HTTP request parameter is used in command string construction. This could lead to command injection via...

10CVSS9.8AI score0.04143EPSS
Exploits1References3
Prion
Prion
added 2018/05/13 3:29 p.m.21 views

Stack overflow

Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 CN routers with firmware version 1.10B05 allows unauthenticated remote attackers to execute arbitrary code via a request with a long HTTP Host header...

10CVSS9.8AI score0.06542EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/05/13 3:0 p.m.25 views

CVE-2018-11013

Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 CN routers with firmware version 1.10B05 allows unauthenticated remote attackers to execute arbitrary code via a request with a long HTTP Host header...

9.9AI score0.06542EPSS
Exploits1References1
CVE
CVE
added 2018/05/13 3:0 p.m.52 views

CVE-2018-11013

Affected product: D-Link DIR-816 A2 routers running firmware 1.10B05. The vulnerability is a stack-based buffer overflow in the GoAhead websRedirect function that can be triggered by a long HTTP Host header, allowing unauthenticated remote code execution. Multiple sources (CNVD and NVD entries) c...

10CVSS9.8AI score0.06542EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2017/08/18 2:29 p.m.6 views

CVE-2017-7278

Unspecified vulnerability in ASSA ABLOY APTUS Styra Porttelefonkort 4400 before A2 has unknown impact and attack vectors...

9.8CVSS5.8AI score0.01803EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/08/18 2:0 p.m.23 views

CVE-2017-7278

Unspecified vulnerability in ASSA ABLOY APTUS Styra Porttelefonkort 4400 before A2 has unknown impact and attack vectors...

9.4AI score0.01803EPSS
Exploits0References1
Hacker One
Hacker One
added 2017/02/10 5:34 p.m.25 views

New Relic: Broken Authentication and session management OWASP A2

@honc reported an issue with session expiration. We determined that this report was invalid, and it was self-closed by the researcher. Insufficient Session Expiration vulnerability...

2.9AI score
Exploits0
NVD
NVD
added 2010/01/04 5:30 p.m.12 views

CVE-2009-4549

Stack-based buffer overflow in A2 Media Player Pro 2.51 allows remote attackers to execute arbitrary code via a long string in a 1 .m3u or 2 .m3l playlist file...

9.3CVSS8AI score0.04358EPSS
Exploits0References1
Prion
Prion
added 2010/01/04 5:30 p.m.16 views

Stack overflow

Stack-based buffer overflow in A2 Media Player Pro 2.51 allows remote attackers to execute arbitrary code via a long string in a 1 .m3u or 2 .m3l playlist file...

9.3CVSS8.7AI score0.04358EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2010/01/04 5:0 p.m.46 views

CVE-2009-4549

CVE-2009-4549 : A stack-based buffer overflow in A2 Media Player Pro 2.51 allows remote attackers to execute arbitrary code via a long string in a playlist file (.m3u or .m3l). The vulnerability is triggered during playlist parsing, enabling potential code execution without user interaction. Publ...

9.3CVSS8.3AI score0.04358EPSS
Exploits0References1Affected Software1
0day.today
0day.today
added 2009/08/06 12:0 a.m.16 views

A2 Media Player Pro 2.51 (.m3u /m3l) Universal Local BOF Exploit (SEH)

Exploit for unknown platform in category local exploits ====================================================================== A2 Media Player Pro 2.51 .m3u /m3l Universal Local BOF Exploit SEH ====================================================================== !/usr/bin/perl by hack4love A2...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2009/08/06 12:0 a.m.11 views

A2 Media Player Pro 2.51 - .m3u .m3l Universal Local Buffer Overflow (SEH)

A2 Media Player Pro 2.51 - .m3u .m3l Universal Local Buffer Overflow SEH !/usr/bin/perl by hack4love [email protected] A2 Media Player ProV2.51.m3u /m3lUniversal Local Buffer Exploit SEH easy this work sooooooooo good Thanks for WwW.Sec-ArT.CoM/cc team and 3asfh.net team AND special THANKS FO...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/08/06 12:0 a.m.32 views

A2 Media Player Pro 2.51 - '.m3u' / '.m3l' Universal Local Buffer Overflow (SEH)

!/usr/bin/perl by hack4love [email protected] A2 Media Player ProV2.51.m3u /m3lUniversal Local Buffer Exploit SEH easy this work sooooooooo good Thanks for WwW.Sec-ArT.CoM/cc team and 3asfh.net team AND special THANKS FOR His0k4 i respect him so much god with him...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2009/08/06 12:0 a.m.20 views

A2 Media Player Pro 2.51 Buffer Overflow

!/usr/bin/perl by hack4love [email protected] A2 Media Player ProV2.51.m3u /m3lUniversal Local Buffer Exploit SEH easy this work sooooooooo good Thanks for WwW.Sec-ArT.CoM/cc team and 3asfh.net team AND special THANKS FOR His0k4 i respect him so much god with him...

1.6AI score
Exploits0
CVE
CVE
added 2008/11/21 5:0 p.m.46 views

CVE-2008-5198

CVE-2008-5198 is an SQL injection vulnerability in Acmlmboard 1.A2, specifically in memberlist.php, where the pow parameter can be exploited to execute arbitrary SQL commands. Multiple sources confirm the affected software (Acmlmboard 1.A2) and the vulnerable parameter without detailing any mitig...

7.5CVSS8.4AI score0.00967EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder