32 matches found
Honeywell Scada System Information Disclosure
Exploit Title: Honeywell Scada System - Information Disclosure Date: 2018-05-23 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.honeywell.com Version: WebVersion : 3.2.1.294365 - DeviceType : IPC-HFW2320R-ZS Tested on: Linux To be written after the destination IP address...
CVE-2016-5673
UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP address and port number...
Open redirect
UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP address and port number...
Generate TCP/UDP Outbound Traffic On Multiple Ports
This module generates TCP or UDP traffic across a sequence of ports, and is useful for finding firewall holes and egress filtering. It only generates traffic on the port range you specify. It is up to you to run a responder or packet capture tool on a remote endpoint to determine which ports are...
TcpDump - rpki_rtr_pdu_print Out-of-Bounds Denial of Service
TcpDump - rpkirtrpduprint Out-of-Bounds Denial of Service Exploit Title: TcpDump rpkirtrpduprint Out-of-Bounds Denial of Service Date: 7.18.2015 Exploit Author: Luke Arntson [email protected] Vendor Homepage: http://www.tcpdump.org/ Software Link: http://www.tcpdump.org/ Version: 4.6.2, 4.5.1,...
CVE-2008-6123
The netsnmpudpfmtaddr function snmplib/snmpUDPDomain.c in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to...
CVE-2008-6123
The netsnmpudpfmtaddr function snmplib/snmpUDPDomain.c in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to...
CVE-2008-6123
The netsnmpudpfmtaddr function snmplib/snmpUDPDomain.c in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to...
Clever use Tcpreplay to let the attack traffic sneak-vulnerability warning-the black bar safety net
TcpreplayisNetwork Securityin a commonly used tool, for its message playback feature we are very clear, but for it to replay rewrite the packets of the contents of the function application but not very much, if can skilled application of Tcpreplay packet rewriting function it is possible to make...
CVE-2007-4991
The SOCKS4 Proxy in Microsoft Internet Security and Acceleration ISA Server 2004 SP1 and SP2 allows remote attackers to obtain potentially sensitive information the destination IP address of another user's session via an empty packet...
Snort 2.6.1.1/2.6.1.2/2.7.0 - 'fragementation' Remote Denial of Service
/ DOS Snort Inline Affected Versions: 2.6.1.1, 2.6.1.2, 2.7.0beta Requirements : Frag3 Enabled, Inline, Linux, ipconntrack disabled Antimatt3r [email protected] Offset needs to be supplied that would cause reassembly for different snort fragmentation reassembly policies. Since the first packet...
PIX Firewall 2.73.x4.x5 - Forged TCP RST
PIX Firewall 2.73.x4.x5 - Forged TCP RST // source: https://www.securityfocus.com/bid/1454/info A connection through a Cisco Secure PIX Firewall can be reset by a third party if the source and destination IP addresses and ports of the connection can be determined or inferred. This can be...