ZTE PC UI USB Modem Software - Local Buffer Overflow

ZTE PC UI USB Modem Software - Local Buffer Overflow !/usr/bin/python -w Title : ZTE PC UI USB MODEM SOFTWARE Buffer Overflow Date : 17/09/2015 Author : R-73eN Tested on : Windows Xp sp3 on software Eagle Speed PCWEAGLEALBp671A1V1.0.0B02 Since all the PC UI based software shares the same source...

ZTE PC UI USB Modem Software - Local Buffer Overflow

!/usr/bin/python -w Title : ZTE PC UI USB MODEM SOFTWARE Buffer Overflow Date : 17/09/2015 Author : R-73eN Tested on : Windows Xp sp3 on software Eagle Speed PCWEAGLEALBp671A1V1.0.0B02 Since all the PC UI based software shares the same source code they are all vulnerable.Confirmed By ZTE The...

Thomsom Cable Modem TWG850-4B ST9C.05.08 Authentication Bypass

+-//////////////////////////////////////////////////////////////////////////// +- +- Exploit Title: Thomson Wireless VoIP Cable Modem Arbitrary File Access +- Date: October 22, 2013 +- Author: Glaysson dos Santos +- +- Product: TWG850-4B Wireless VoIP Cable Modem +- Software Version: ST9C.05.08 +...

Thomson Wireless VoIP Cable Modem TWG850-4B ST9C.05.08 - Authentication Bypass

Thomson Wireless VoIP Cable Modem TWG850-4B ST9C.05.08 - Authentication Bypass +-//////////////////////////////////////////////////////////////////////////// +- +- Exploit Title: Thomson Wireless VoIP Cable Modem Arbitrary File Access +- Date: October 22, 2013 +- Author: 0rwelllabs +- +- Product:...

Thomson Wireless VoIP Cable Modem TWG850-4B ST9C.05.08 - Authentication Bypass

Exploit for hardware platform in category local exploits +-//////////////////////////////////////////////////////////////////////////// +- +- Exploit Title: Thomson Wireless VoIP Cable Modem Arbitrary File Access +- Date: October 22, 2013 +- Author: Glaysson dos Santos +- +- Product: TWG850-4B...

Thomson Wireless VoIP Cable Modem TWG850-4B ST9C.05.08 - Authentication Bypass

+-//////////////////////////////////////////////////////////////////////////// +- +- Exploit Title: Thomson Wireless VoIP Cable Modem Arbitrary File Access +- Date: October 22, 2013 +- Author: 0rwelllabs +- +- Product: TWG850-4B Wireless VoIP Cable Modem +- Software Version: ST9C.05.08 +- Hardwar...

Sagemcom [email protected] 3864 V2 - Get Admin Password Vulnerability

Sagemcom email protected 3864 V2 suffers from a remote administrative password disclosure vulnerability. !/bin/bash Exploit Title: Sagemcom 3864 V2 get admin password Date 2015-08-15 Author: Cade Bull Software Link: null Tested on: Sagemcom email protected 3864 V2 Version: 7.253.2F3864V2Optus The...

Sagemcom F@ST 3864 V2 Admin Password Disclosure

!/bin/bash Exploit Title: Sagemcom 3864 V2 get admin password Date 2015-08-15 Author: Cade Bull Software Link: null Tested on: Sagemcom F@ST 3864 V2 Version: 7.253.2F3864V2Optus The sagemcom modem does not authenticate users when requesting pages, only whilst posting forms the password.html page...

Sagemcom F@ST 3864 V2 - Get Admin Password

Sagemcom F@ST 3864 V2 - Get Admin Password !/bin/bash Exploit Title: Sagemcom 3864 V2 get admin password Date 2015-08-15 Author: Cade Bull Software Link: null Tested on: Sagemcom F@ST 3864 V2 Version: 7.253.2F3864V2Optus The sagemcom modem does not authenticate users when requesting pages, only...

Sagemcom F@ST 3864 V2 - Get Admin Password

!/bin/bash Exploit Title: Sagemcom 3864 V2 get admin password Date 2015-08-15 Author: Cade Bull Software Link: null Tested on: Sagemcom F@ST 3864 V2 Version: 7.253.2F3864V2Optus The sagemcom modem does not authenticate users when requesting pages, only whilst posting forms the password.html page...

CVE-2015-4202

Cisco IOS 12.2SCH on uBR10000 router Cable Modem Termination Systems CMTS does not properly restrict access to the IP Detail Record IPDR service, which allows remote attackers to obtain potentially sensitive MAC address and network-utilization information via crafted IPDR packets, aka Bug ID...

Code injection

Cisco IOS 12.2SCH on uBR10000 router Cable Modem Termination Systems CMTS does not properly restrict access to the IP Detail Record IPDR service, which allows remote attackers to obtain potentially sensitive MAC address and network-utilization information via crafted IPDR packets, aka Bug ID...

ZTE AC 3633R USB Modem Multiple Vulnerabilities

Exploit for hardware platform in category dos / poc Exploit Title: ZTE AC 3633R USB Modem Multiple Vulnerabilities Date: 4/06/2015 Exploit Author: Vishnu @dH3wK Vendor Homepage: http://zte.com.cn Version: 3633R Tested on: Windows, Linux Greetings from vishnu @dH4wk 1. Vulnerable Product Version -...

ZTE AC 3633R USB Modem - Multiple Vulnerabilities

ZTE AC 3633R USB Modem - Multiple Vulnerabilities Exploit Title: ZTE AC 3633R USB Modem Multiple Vulnerabilities Date: 4/06/2015 Exploit Author: Vishnu @dH3wK Vendor Homepage: http://zte.com.cn Version: 3633R Tested on: Windows, Linux Greetings from vishnu @dH4wk 1. Vulnerable Product Version - Z...

ZTE AC 3633R USB Modem - Multiple Vulnerabilities

Exploit Title: ZTE AC 3633R USB Modem Multiple Vulnerabilities Date: 4/06/2015 Exploit Author: Vishnu @dH3wK Vendor Homepage: http://zte.com.cn Version: 3633R Tested on: Windows, Linux Greetings from vishnu @dH4wk 1. Vulnerable Product Version - ZTE AC3633R MTS Ultra Wifi Modem 2. Vulnerability...

ZTE AC3633R Arbitrary Code Execution Vulnerability

ZTE AC3633R is a wireless modem product from ZTE Corporation. An unspecified security vulnerability exists in the ZTE AC3633R, which could be exploited by a remote attacker to submit a special request and execute arbitrary code...

Charter Communications Fixes Data Leaking Vulnerability

Internet-cable-television provider Charter Communications recently fixed an issue with its website that was inadvertently leaking the information of tens of thousands of customers. Customers’ payment details, modem serial numbers, device names, account numbers, home addresses, were being spilled...

[USN-2581-1] NetworkManager vulnerability

========================================================================== Ubuntu Security Notice USN-2581-1 April 28, 2015 network-manager vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivative...

NetworkManager directory traversal

File access on modem device handling...

D-Link DSL-500B Gen 2 - URL Filter Configuration Panel Persistent Cross-Site Scripting

!/usr/bin/perl Date dd-mm-aaaa: 13-02-2015 Exploit for D-Link DSL-500B G2 Cross Site Scripting XSS Injection Stored in todmngr.tod URL Filter Developed by Mauricio Corrêa XLabs Information Security WebSite: www.xlabs.com.br CAUTION! This exploit disables some features of the modem, forcing the...