MDAP ANTs PWNAGE: dumping the admin password of the BT Home Hub

http://www.gnucitizen.org/blog/dumping-the-admin-password-of-the-bt-home-hub/ We're back with more security attacks against the BT Home Hub most popular wireless DSL router in the UK! BT added a new security feature on the latest version 1 of the BT Home Hub firmware 6.2.6.E at time of writing...

CVE-2008-1431

RaidSonic NAS-4220-B with 2.6.0-n2007-10-11 firmware stores a partition encryption key in an unencrypted /system/.crypt file with base64 encoding, which allows local users to obtain the key...

CVE-2008-1431

RaidSonic NAS-4220-B with 2.6.0-n2007-10-11 firmware stores a partition encryption key in an unencrypted /system/.crypt file with base64 encoding, which allows local users to obtain the key...

Raidsonic nas-4220 weak cryptography

Encryption key is stored with data...

UltraVNC buffer overflow vulnerability

Overview UltraVNC viewer contains a buffer overflow vulnerability. If exploited, this vulnerability may allow an attacker to execute arbitrary code. Description UltraVNC viewer is a remote desktop application that allows a user to control compatible VNC servers. The UltraVNC viewer includes a...

CVE-2008-0580

Geert Moernaut LSrunasE and Supercrypt use an encryption key composed of an SHA1 hash of a fixed string embedded in the executable file, which makes it easier for local users to obtain this key without reverse engineering...

Design/Logic Flaw

Geert Moernaut LSrunasE and Supercrypt use an encryption key composed of an SHA1 hash of a fixed string embedded in the executable file, which makes it easier for local users to obtain this key without reverse engineering...

CVE-2008-0580

CVE-2008-0580 concerns Geert Moernaut’s LSrunasE and Supercrypt components that use an encryption key derived from an SHA1 hash of a fixed string embedded in the executable. The fixed-key approach means local users can obtain the key without reverse engineering, undermining confidentiality of the...

USN-470-1: Linux kernel vulnerabilities

USN-464-1 fixed several vulnerabilities in the Linux kernel. Some additional code changes were accidentally included in the Feisty update which caused trouble for some people who were not using UUID-based filesystem mounts. These changes have been reverted. We apologize for the inconvenience. For...

PHPWind 5.0.1 - 'AdminUser' Blind SQL Injection

126...

[email protected]

The following is the updated version of a post sent to FD http://seclists.org/lists/fulldisclosure/2006/Jul/0137.html ... Title: Unauthenticated access to BT Voyager config file and PPP credentials embedded in HTML form Successfully tested against: - BT Voyager 2091 Wireless ADSL - Firmware...

Secure Elements Class 5 AVR uses the same encryption key and initialization vector for every message session

Overview Secure Elements Class 5 AVR uses the same encryption key and initialization vector for every message session. This may allow an attacker to discover some information about encrypted messages. Description Class 5 AVR Secure Elements Class 5 AVR Automated Vulnerability Remediation is a...

Cisco Secure ACS for Windows information leak

Administration password and encryption key are insecurely stored in HKEYLOCALMACHINE registry key...

Multiple Symantec Scan Engine network content filtering server security vulnerabilities

Administrative interface passwords are checked on client side, fixed encryption key is used, critical information leak...

Ubuntu 4.10 : xpdf, cupsys vulnerabilities (USN-64-1)

A buffer overflow has been found in the xpdf viewer. An insufficient input validation of the encryption key length could be exploited by an attacker providing a specially crafted PDF file which, when processed by xpdf, could result in abnormal program termination or the execution of attacker...

CVE-2005-3801

CVE-2005-3801 affects CounterPane PasswordSafe 1.x and 2.x. Local users can test possible encryption keys against a subset of stored key data without performing the full key derivation function (KDF), reducing brute-force search time. This is the concrete vulnerability described in the available ...

IPCop weak file permissions

Backup files and backup files encryption key have weak permissions...

CVE-2004-2535

The person-to-person secure messaging feature in Sticker before 3.1.0 beta 2 allows remote attackers to post messages to unauthorized private groups by using the group's public encryption key...

iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Router Remote Administration Fixed Encryption Key Vulnerability

Linksys WRT54G Router Remote Administration Fixed Encryption Key Vulnerability iDEFENSE Security Advisory 09.13.05 www.idefense.com/application/poi/display?id=304&type=vulnerabilities September 13, 2005 I. BACKGROUND The Linksys WRT54G is a combination wireless access point, switch and router. Mo...

TYPO3 Security Bulletin

Unless the default encryption key settings have been changed by the administrator, the TYPO3 mailform can be compromised to send mail to a wrong receipient. Thus, spam mails may be sent from a remote site. Component Type: Core Affected Component: mailforms Version: 3.7.0 and earlier Vulnerability...