4758 matches found
CVE-2010-1147
Stack-based buffer overflow in Open Direct Connect Hub aka Open DC Hub or OpenDCHub 0.8.1 allows remote authenticated users to execute arbitrary code via a long MyINFO message...
CVE-2010-1147
Open DC Hub (OpenDCHub) 0.8.1 is affected by a stack-based buffer overflow in the handling of a user’s MyINFO message, which remote authenticated users can exploit to execute arbitrary code. The issue is documented as CVE-2010-1147. Mitigation in public advisories/reports recommends upgrading to ...
NotFTP 1.3.1 - newlang Local File Inclusion
NotFTP 1.3.1 - newlang Local File Inclusion NotFTP 1.3.1 = Local file include http://sourceforge.net/projects/notftp/ Author: Kacper Email: [email protected] Home: http://devilteam.pl/ DC++ Hub address: bluber-hub.no-ip.biz:2008 Vuln: File config.php: This is where we decide what language to us...
NotFTP 1.3.1 (newlang) Local File Inclusion Vulnerability
No description provided by source. NotFTP 1.3.1 = Local file include http://sourceforge.net/projects/notftp/ Author: Kacper Email: [email protected] Home: http://devilteam.pl/ DC++ Hub address: bluber-hub.no-ip.biz:2008 Vuln: File config.php: This is where we decide what language to use. Don't...
NotFTP 1.3.1 (newlang) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ========================================================= NotFTP 1.3.1 newlang Local File Inclusion Vulnerability ========================================================= NotFTP 1.3.1 = Local file include...
NotFTP 1.3.1 - 'newlang' Local File Inclusion
NotFTP 1.3.1 = Local file include http://sourceforge.net/projects/notftp/ Author: Kacper Email: [email protected] Home: http://devilteam.pl/ DC++ Hub address: bluber-hub.no-ip.biz:2008 Vuln: File config.php: This is where we decide what language to use. Don't mess with this either. if...
webhub-bypass.txt
. . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com d3hydr8 - rsauron - baltazar - sinner01 - r45c4l - beenu and all darkc0de members Author: p47r1ck Home : www.darkc0de.com Email :...
[SECURITY] Fedora 9 Update: ssmtp-2.61-11.6.fc9.1
A secure, effective and simple way of getting mail off a system to your mail hub. It contains no suid-binaries or other dangerous things - no mail spool to poke around in, and no daemons running in the background. Mail is simply forwarded to the configured mailhost. Extremely easy configuration...
BT Home Hub管理员口令泄露漏洞
BUGTRAQ ID: 29387 BT Home Hub是家用的无线Internet路由器。 BT Home Hub的最新固件版本添加了一个新的安全功能,允许将默认的管理员口令从admin更改为路由器的序列号,但只要向路由器所在的网络发送MDAP多播请求就可以得到Home Hub的序列号。 如果要利用这个漏洞,攻击者必须通过ethernet或Wi-Fi加入到Home Hub所在的LAN。有两种方式可以入侵到BT Home Hub Wi-Fi网络: - arp回放注入和弱IV破解 - 通过SSID暴力猜测Home Hub的默认WEP密钥列表 British...
BT Home Hub router multiple security vulnerabilities
Authentication bypass, crossite scripting, privilege escalation...
MDAP ANTs PWNAGE: dumping the admin password of the BT Home Hub
http://www.gnucitizen.org/blog/dumping-the-admin-password-of-the-bt-home-hub/ We're back with more security attacks against the BT Home Hub most popular wireless DSL router in the UK! BT added a new security feature on the latest version 1 of the BT Home Hub firmware 6.2.6.E at time of writing...
Net horse Central-vulnerability warning-the black bar safety net
Author: cosine Source: 0×3 7 Security Actually think about it know, network the horse of exp there will always be Exposure time, that is, my system environment as long as meet the conditions can get this net horse exp. By combining the services side of the technical means, we can hide the network...
Thomson SpeedTouch和BT Home Hub路由器默认WEP/WPA密钥算法漏洞
BUGTRAQ ID: 28893 BT Home Hub和Speedtouch都是家用的无线Internet路由器。 BT Home Hub和Speedtouch路由器所使用的默认WEP/WPA密钥算法是可预测的,远程攻击者可以基于一些公开信息(如MAC地址或SSID)预测出密钥,这样就可以完全入侵路由器。 对于Speedtouch路由器路由器: S/N:CP0615JT109 53 删除CC和PP值:CP0615109 将XXX值转换为16进制:CP0615313039 通过SHA-1处理:742da831d2b657fa53d347301ec610e1ebf8a3d0...
CVE-2008-1334
cgi/b on the BT Home Hub router allows remote attackers to bypass authentication, and read or modify administrative settings or make arbitrary VoIP telephone calls, by placing a character at the end of the PATHINFO, as demonstrated by 1 %5C encoded backslash, 2 '%' percent, and 3 '' tilde. NOTE:...
Authentication flaw
cgi/b on the BT Home Hub router allows remote attackers to bypass authentication, and read or modify administrative settings or make arbitrary VoIP telephone calls, by placing a character at the end of the PATHINFO, as demonstrated by 1 %5C encoded backslash, 2 '%' percent, and 3 '' tilde. NOTE:...
CVE-2008-1334
cgi/b on the BT Home Hub router allows remote attackers to bypass authentication, and read or modify administrative settings or make arbitrary VoIP telephone calls, by placing a character at the end of the PATHINFO, as demonstrated by 1 %5C encoded backslash, 2 '%' percent, and 3 '' tilde. NOTE:...
CVE-2008-1334
CVE-2008-1334 affects the BT Home Hub router (and related Thomson/Alcatel SpeedTouch components) where an authentication bypass is possible by placing a character at the end of PATH_INFO. The vulnerability lets remote attackers bypass authentication and read/modify administrative settings or init...
BT Home Hub 6.2.2.6 - Login procedure Authentication Bypass
BT Home Hub 6.2.2.6 - Login procedure Authentication Bypass source: https://www.securityfocus.com/bid/26333/info BT Home Hub is prone to an authentication-bypass vulnerability. An attacker could exploit this issue to gain unauthorized access to the affected device. BT Home Hub firmware 6.2.2.6 is...
BT Home Hub 6.2.2.6 - Login procedure Authentication Bypass
source: https://www.securityfocus.com/bid/26333/info BT Home Hub is prone to an authentication-bypass vulnerability. An attacker could exploit this issue to gain unauthorized access to the affected device. BT Home Hub firmware 6.2.2.6 is vulnerable; other versions may also be affected. This explo...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Thomson/Alcatel SpeedTouch 7G router, as used for the BT Home Hub 6.2.6.B and earlier, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...