1187 matches found
CVE-2012-4362
hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838...
CVE-2012-4362
hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838...
CVE-2012-4362
CVE-2012-4362 : Affects HP SAN/iQ Virtual SAN Appliance (HP SAN/iQ) before version 9.5. The component hydra.exe uses a hardcoded password, L0CAlu53R, for the global$agent account, enabling remote attackers to obtain access to the management service via a login to TCP port 13838. This description ...
CVE-2012-0794
The rc4encrypt function in lib/moodlelib.php in Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 uses a hardcoded password of nfgjeingjk, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by reading this script's...
Hardcoded credentials
The rc4encrypt function in lib/moodlelib.php in Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 uses a hardcoded password of nfgjeingjk, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by reading this script's...
CVE-2012-0794
The rc4encrypt function in lib/moodlelib.php in Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 uses a hardcoded password of nfgjeingjk, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by reading this script's...
PT-2012-2871 · Moodle · Moodle
Name of the Vulnerable Software and Affected Versions: Moodle versions 1.9.x through 1.9.15 Moodle versions 2.0.x through 2.0.6 Moodle versions 2.1.x through 2.1.3 Moodle versions 2.2.x through 2.2.0 Description: The issue concerns the use of a hardcoded password in the rc4encrypt function, makin...
Siemens Simatic S7-300 PLC Remote Memory Viewer
Exploit for hardware platform in category remote exploits Exploit Title: Siemens Simatic S7 300 Remote Memory Viewer Backdoor Date: 7-13-2012 Exploit Author: Dillon Beresford Vendor Homepage: http://www.siemens.com/ Tested on: Siemens Simatic S7-1200 PLC CVE : None require 'msf/core' class...
CVE-2012-2949
The ZTE syncagent program for Android 2.3.4 on the Score M device uses a hardcoded ztex1609523 password to control access to commands, which allows remote attackers to gain privileges via a crafted application...
CVE-2012-2949
The ZTE syncagent program for Android 2.3.4 on the Score M device uses a hardcoded ztex1609523 password to control access to commands, which allows remote attackers to gain privileges via a crafted application...
CVE-2012-2949
CVE-2012-2949 : The ZTE sync_agent on Android 2.3.4 (Score M) uses a hardcoded password (ztex1609523) to control access to commands, enabling remote privilege escalation via a crafted application. The description and related sources confirm the component and the root cause (hardcoded credential i...
Root Access Vulnerability on ZTE Android Device
Certain Android devices manufactured by the China-based ZTE Corporation contain a poorly protected setuid shell that can be used to gain root-access to vulnerable devices, according to Lookout Mobile Security. Any attacker who successfully exploits the vulnerability will have complete control of...
Singtel 2Wire Hardcoded Password / Cross Site Request Forgery
CVE-2011-3682: 2WIRE-SINGTEL 2701HGV-E/2700HGV-2/2700HG GATEWAY ROUTER MANAGEMENT AND DIAGNOSTIC CONSOLE VULNERABILITY 1. BACKGROUND AND AFFECTED MODELS/FIRMWARE SingTel provides customized versions of 2Wire gateway routers to its Internet service subscribers for the purpose of accessing the web...
CVE-2010-4965
/etc/rc.d/rc.local on the D-Link DCS-2121 camera with firmware 1.04 configures a hardcoded password of admin for the root account, which makes it easier for remote attackers to obtain shell access by leveraging a running telnetd server...
CVE-2010-4965
/etc/rc.d/rc.local on the D-Link DCS-2121 camera with firmware 1.04 configures a hardcoded password of admin for the root account, which makes it easier for remote attackers to obtain shell access by leveraging a running telnetd server...
Hardcoded Password, Other Critical Bugs Found in Cisco UVC Software
There is a series of vulnerabilities in Cisco’s Unified Videoconferencing product, including a hardcoded password for several powerful accounts that can’t be changed or deleted. That bug and others disclosed Wednesday can be used to gain complete control of the device and possibly compromise othe...
TEKUVA Password Reminder Authentication Bypass
Exploit for unknown platform in category local exploits ============================================== TEKUVA Password Reminder Authentication Bypass ============================================== Title: TEKUVA Password Reminder Authentication Bypass CVE-ID: OSVDB-ID: Author: iqlusion Published:...
TEKUVA Password Reminder Authentication Bypass
No description provided by source. !/usr/bin/perl Exploit: TEKUVA Password Reminder Authentication Bypass Date: 11/19/2009 Author: iqlusion [email protected] Software Link: http://download.cnet.com/Password-Reminder/3000-20644-10966598.html Version: 1.0.0.1 Info: TEKUVA Password Reminder is a...
Riorey RIOS Hardcoded Password Vulnerability 4.7.0
No description provided by source. Severity: High Full root access to the device Date: 07 October 2009 Versions Affected: RIOS 4.6.6 , 4.7.0 possibly others Discovered on: 25 July 2009 Vendor URL: www.riorey.com Author: Marek Kroemeke Overview: Riorey DDoS mitigation appliences www.riorey.com are...
Riorey RIOS Hardcoded Password Vulnerability 4.7.0
Exploit for unknown platform in category remote exploits ================================================== Riorey RIOS Hardcoded Password Vulnerability 4.7.0 ================================================== Title: Riorey RIOS Hardcoded Password Vulnerability 4.7.0 CVE-ID: OSVDB-ID: Author: Mar...