Lucene search
+L

1753 matches found

Packet Storm
Packet Storm
added 2014/10/30 12:0 a.m.55 views

Konke Smart Plug Authentication Bypass

----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail : gh&zixian Date : Oct, 17-2014 Vendor : http://www.kankunit.com/ Li...

8.1CVSS0.9AI score0.11743EPSS
Exploits6
exploitpack
exploitpack
added 2014/10/29 12:0 a.m.52 views

Konke Smart Plug K - Authentication Bypass

Konke Smart Plug K - Authentication Bypass ----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail : gh&zixian Date : Oct,...

10CVSS0.7AI score0.11743EPSS
Exploits6
Exploit DB
Exploit DB
added 2014/10/29 12:0 a.m.51 views

Konke Smart Plug K - Authentication Bypass

----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail : gh&zixian Date : Oct, 17-2014 Vendor : http://www.kankunit.com/ Li...

10CVSS9.6AI score0.11743EPSS
Exploits6
rdot
rdot
added 2014/10/03 12:0 a.m.504 views

Вышла операционная система OpenWrt 14.07

Встроенная операционная система OpenWrt обновилась до версии 14.07. Эту ОС часто устанавливают на маршрутизаторах как замену проприетарным прошивкам. Основные компоненты OpenWrt включают в себя ядро Linux, util-linux, uClibc и BusyBox. Размер всех компонентов минимизирован, чтобы работать на...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/09/12 12:0 a.m.18 views

Mandriva Linux Security Advisory : busybox (MDVSA-2014:173)

Updated busybox packages fix security vulnerability : An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. Busybox bundles part...

8.8CVSS7.3AI score0.05315EPSS
Exploits1References2
OSV
OSV
added 2014/08/25 8:44 a.m.9 views

MGASA-2014-0351 Updated busybox packages fix CVE-2014-4607

Updated busybox packages fix security vulnerability: An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. Busybox bundles part ...

8.8CVSS9.2AI score0.05315EPSS
Exploits1References3
Mageia
Mageia
added 2014/08/25 8:44 a.m.33 views

Updated busybox packages fix CVE-2014-4607

Updated busybox packages fix security vulnerability: An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. Busybox bundles part ...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References2
0day.today
0day.today
added 2014/08/06 12:0 a.m.49 views

TP-Link TL-WR740N v4 Router (FW-Ver. 3.16.6 Build 130529 Rel.47286n) - Command Execution

Exploit for hardware platform in category web applications Vulnerability description: The domain name parameters of the "Parental Control" and "Access Control" features of the TP-Link TL-WR740N v4 FW-Ver. 3.16.6 Build 130529 Rel.47286n router are prone to arbitrary shell command execution as root...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2014/08/03 12:0 a.m.114 views

TP-Link TL-WR740N v4 Router (FW-Ver. 3.16.6 Build 130529 Rel.47286n) - Command Execution

Exploit Title: TP-Link TL-WR740N v4 router FW-Ver. 3.16.6 Build 130529 Rel.47286n arbitrary shell command execution Date: 08/03/2014 Exploit Author: Christoph Kuhl Vendor Homepage: http://www.tp-link.com Software Link: http://www.tp-link.com.de/resources/software/TL-WR740NV4130529.zip Version:...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.44 views

docker 0.11 VMM-container Breakout

No description provided by source. / shocker: docker PoC VMM-container breakout C 2014 Sebastian Krahmer Demonstrates that any given docker image someone is asking you to run in your docker setup can access ANY file on your host, e.g. dumping hosts /etc/shadow or other sensitive info, compromisin...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

Serial port shell binding, busybox Launching shellcode

No description provided by source. / General: Serial port shell binding, busybox launching shellcode.. yey! Specific: really wish i could tell you what i needed this for.. but meh.. this will bind a busybox sh shell to /dev/ttyS0, the shellcode does not alter the baudrate settings.. 9600 is the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

BusyBox 1.01 HTTPD Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20067/info The httpd daemon of BusyBox is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from...

7.1AI score
Exploits0
Saint
Saint
added 2014/06/24 12:0 a.m.19 views

TRENDnet Shell

Added: 06/24/2014 Background TRENDnet routers are vulnerable to a range of SQL injection, command injection, and buffer overflow vulnerabilities. Current supported devices include: TEW-654TR - Remote Root Shell TEW-732BR - Remote Root Shell Problem A SQL injection vulnerability allows the attacke...

2.7AI score
Exploits0
Saint
Saint
added 2014/06/24 12:0 a.m.36 views

TRENDnet Shell

Added: 06/24/2014 Background TRENDnet routers are vulnerable to a range of SQL injection, command injection, and buffer overflow vulnerabilities. Current supported devices include: TEW-654TR - Remote Root Shell TEW-732BR - Remote Root Shell Problem A SQL injection vulnerability allows the attacke...

2.7AI score
Exploits0
Saint
Saint
added 2014/06/24 12:0 a.m.15 views

TRENDnet Shell

Added: 06/24/2014 Background TRENDnet routers are vulnerable to a range of SQL injection, command injection, and buffer overflow vulnerabilities. Current supported devices include: TEW-654TR - Remote Root Shell TEW-732BR - Remote Root Shell Problem A SQL injection vulnerability allows the attacke...

9.2AI score
Exploits0
Packet Storm
Packet Storm
added 2014/02/05 12:0 a.m.33 views

Netgear D6300B Command Injection / Misconfiguration

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory ID: SYSS-2013-001 Product: NETGEAR Router D6300B / Firmware: V1.0.0.141.0.14 latest Vendor: Netgear Affected Versions: until V1.0.0.141.0.14 latest Tested Versions: V1.0.0.141.0.14 latest Vulnerability Type: Root-Shell, OS Command Injection,...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/12/10 12:0 a.m.37 views

Scientific Linux Security Update : busybox on SL6.x i386/x86_64 (20131121)

It was found that the mdev BusyBox utility could create certain directories within /dev with world-writable permissions. A local unprivileged user could use this flaw to manipulate portions of the /dev directory tree. CVE-2013-1813 This update also fixes the following bugs : - Previously, due to ...

7.2CVSS5.6AI score0.00623EPSS
Exploits5References2
Gentoo Linux
Gentoo Linux
added 2013/12/03 12:0 a.m.47 views

BusyBox: Multiple vulnerabilities

Background BusyBox is set of tools for embedded systems and is a replacement for GNU Coreutils. Description Multiple vulnerabilities have been discovered in BusyBox. Please review the CVE identifiers referenced below for details. Impact A remote attacker could send a specially crafted DHCP reques...

7.5CVSS9.5AI score0.05757EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2013/12/03 12:0 a.m.30 views

GLSA-201312-02 : BusyBox: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201312-02 BusyBox: Multiple vulnerabilities Multiple vulnerabilities have been discovered in BusyBox. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could send a specially crafted DHCP...

7.5CVSS6.9AI score0.05757EPSS
Exploits5References4
OSV
OSV
added 2013/11/30 9:33 p.m.10 views

MGASA-2013-0358 Updated busybox package fixes security vulnerability

It was found that the mdev BusyBox utility could create certain directories within /dev with world-writable permissions. A local unprivileged user could use this flaw to manipulate portions of the /dev directory tree CVE-2013-1813...

7.2CVSS6.1AI score0.00623EPSS
Exploits5References3
Rows per page
Query Builder