CVE-2017-6688

CVE-2017-6688 affects Cisco Elastic Services Controller (ESC). A vulnerability exists due to an insecure default password for the Linux root account, enabling an authenticated, remote attacker to log in as root on an affected ESC instance. Known affected release: 2.2(9.76). Cisco Security Advisor...

CVE-2017-6688

A vulnerability in Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the Linux root user, aka an Insecure Default Password Vulnerability. More Information: CSCvc76631. Known Affected Releases: 2.29.76...

This Hack Gives Linux Root Shell Just By Pressing 'ENTER' for 70 Seconds

A hacker with little more than a minute can bypass the authentication procedures on some Linux systems just by holding down the Enter key for around 70 seconds. The result? The act grants the hacker a shell with root privileges, which allows them to gain complete remote control over encrypted Lin...

CVE-2016-1418

Cisco Aironet Access Point Software 8.2100.0 on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID CSCuy64037...

CVE-2016-1418

Cisco Aironet Access Point Software 8.2100.0 on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID CSCuy64037...

Code injection

Cisco Aironet Access Point Software 8.2100.0 on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID CSCuy64037...

CVE-2016-1418

Cisco Aironet Access Point Software 8.2100.0 on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID CSCuy64037...

Endian Firewall - Password Change Command Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Endian Firewall Proxy Password Change Command Injection', 'Description' = %q This module exploits an OS command injection...

CVE-2014-7990

Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur09815...

Command injection

Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur09815...

CVE-2014-3390

The Virtual Network Management Center VNMC policy implementation in Cisco ASA Software 8.7 before 8.71.14, 9.2 before 9.22.8, and 9.3 before 9.31.1 allows local users to obtain Linux root access by leveraging administrative privileges and executing a crafted script, aka Bug IDs CSCuq41510 and...

Design/Logic Flaw

The Virtual Network Management Center VNMC policy implementation in Cisco ASA Software 8.7 before 8.71.14, 9.2 before 9.22.8, and 9.3 before 9.31.1 allows local users to obtain Linux root access by leveraging administrative privileges and executing a crafted script, aka Bug IDs CSCuq41510 and...

CVE-2014-3390

The Virtual Network Management Center VNMC policy implementation in Cisco ASA Software 8.7 before 8.71.14, 9.2 before 9.22.8, and 9.3 before 9.31.1 allows local users to obtain Linux root access by leveraging administrative privileges and executing a crafted script, aka Bug IDs CSCuq41510 and...

CVE-2014-3390

CVE-2014-3390 affects Cisco ASA with VNMC policy code. Authenticated, local attackers can exploit insufficient input sanitization in the VNMC policy to gain the root shell on the underlying Linux system. Affected software versions are Cisco ASA 8.7 prior to 8.7(1.14), 9.2 prior to 9.2(2.8), and 9...

Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key

----------- Author: ----------- xistence ------------------------- Affected products: ------------------------- Loadbalancer.org Enterprise VA 7.5.2 and below ------------------------- Affected vendors: ------------------------- Loadbalancer.org http://www.loadbalancer.org/...

YourPHP CMS several security vulnerabilities and repair method-vulnerability warning-the black bar safety net

YourPHP CMS now online also no, the official Demo is not yet up, but last night found that map, do not say The first place ! Linux root directory ! The amount of this is a bunch of sub-directories, you can next to the station to see ! Screenshot of the address the order, but does not affect the...

HP Web JetAdmin 6.5 (connectedNodes.ovpl) Remote Root Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; This is an exploit for HP Web JetAdmin, the printer management server from HP. It is NOT about printers! The service usually runs on port 8000 on Windows, Solaris or Linux boxes. Greetz: The Phenoelit People, c-base crew, EEyE rock...

Xmame 0.102 - '-pb/-lang/-rec' Local Buffer Overflow

/ xmame-expl.c by sj [email protected] On 20th of Jan it came to my attention that Xmame suffered from several buffer overflow problems. Thinking this issue was resolved, I installed Xmame on my Ubuntu laptop, from the Ubuntu repositories which installed a vulnerable version of Xmame. This is what...

CVE-2002-0817

Format string vulnerability in super for Linux allows local users to gain root privileges via a long command line argument...

CVE-2000-0606

Buffer overflow in kon program in Kanji on Console KON package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter...