New CSRF and XSS vulnerabilities in ADSL modem Callisto 821+

Hello 3APA3A! I want to warn you about security vulnerabilities in ADSL modem Callisto 821+ SI2000 Callisto821+ Router. These are Cross-Site Request Forgery and Cross-Site Scripting vulnerabilities. Which I've found in your modem. In April I've already drew attention of Ukrtelecom's representativ...

New CSRF and XSS vulnerabilities in ADSL modem Callisto 821+

Hello 3APA3A! I want to warn you about security vulnerabilities in ADSL modem Callisto 821+ SI2000 Callisto821+ Router. These are Cross-Site Request Forgery and Cross-Site Scripting vulnerabilities. In April I've already drew attention of Ukrtelecom's representative and this modem was bough at...

New CSRF and XSS vulnerabilities in ADSL modem Callisto 821+

Hello 3APA3A! I want to warn you about security vulnerabilities in ADSL modem Callisto 821+ SI2000 Callisto821+ Router. These are Cross-Site Request Forgery and Cross-Site Scripting vulnerabilities. Which I've found in your modem. In April I've already drew attention of Ukrtelecom's representativ...

New CSRF and XSS vulnerabilities in ADSL modem Callisto 821+

Hello 3APA3A! I want to warn you about security vulnerabilities in ADSL modem Callisto 821+ SI2000 Callisto821+ Router. These are Cross-Site Request Forgery and Cross-Site Scripting vulnerabilities. In April I've already drew attention of Ukrtelecom's representative and this modem was bough at...

CSRF and XSS vulnerabilities in ADSL modem Callisto 821+

Hello 3APA3A! I want to warn you about security vulnerabilities in ADSL modem Callisto 821+ SI2000 Callisto821+ Router. These are Cross-Site Request Forgery and Cross-Site Scripting vulnerabilities. These attacks should be conducted on modem owner, which is logged into control panel. Taking into...

CSRF vulnerabilities in ADSL modem Callisto 821+

Hello 3APA3A! I want to warn you about security vulnerabilities in ADSL modem Callisto 821+ SI2000 Callisto821+ Router. These are Cross-Site Request Forgery vulnerabilities. In April I've already drew attention of Ukrtelecom's representative and this modem was bough at Ukrtelecom about multiple...

Symantec AMS Intel Alert Handler Modem String Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Alert Management System. Authentication is not required to exploit this vulnerability. The specific flaw exists within the pagehndl.dll module while processing data sent from the msgsys.ex...

Windows Mobile 6.5 TR Phone Call Shellcode

Windows Mobile 6.5 TR Phone Call Shellcode. Shellcode exploit for windows platform Title: Windows Mobile 6.5 TR Phone Call Shellcode Author: Celil Ünüver / Device: HTC Touch2 System: Windows Mobile 6.5 TR WinCE 5.0.2 Coded by Celil ‹n¸ver from SecurityArchitect Contact: celilunuvernspamgmail.com...

Cable Modem Termination System Authentication Bypass - Cisco Systems

Two issues are described in this security advisory. The first issue involves cable modems not manufactured by Cisco that allow a configuration file to be downloaded from an interface that is not connected to the network of the cable modem's service provider. This historical behavior allows an...

DEBIAN-CVE-2010-1172

DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a denial of service by modifying properties, as demonstrated by properties of the 1 DeviceKit-Power, 2 NetworkManager, and 3 ModemManager...

dbus-glib: property access not validated

DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a denial of service by modifying properties, as demonstrated by properties of the 1 DeviceKit-Power, 2 NetworkManager, and 3 ModemManager...

MDVA-2010:035 : drakxtools

This update has fixes for pccard 3G modem detection and accumulated fix for handling hdX/sdX devices 53107 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc. This script...

MDVA-2010:035-1 : drakxtools

This update has fixes for pccard 3G modem detection and accumulated fix for handling hdX/sdX devices 53107 Update: This update remove conflicts on drakfirsttime caused by the last update of drakxtools. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not...

CVE-2010-2307

Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via 1 "//" multiple leading slash, 2 ../ dot dot sequences, and encoded dot dot sequences in a URL...

CVE-2010-2307

CVE-2010-2307 : Directory traversal flaw in the Motorola SURFBoard SBV6120E web server (firmware SBV6X2X-1.0.0.5-SCM-02-SHPC) allows remote attackers to read arbitrary files via multiple leading slashes, dot-dot sequences, or encoded dot-dot in a URL. Affected component is the web server handling...

CVE-2010-2307

Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via 1 "//" multiple leading slash, 2 ../ dot dot sequences, and encoded dot dot sequences in a URL...

Motorola SB5101 Hax0rware Event Reset Remote Overflow

Exploit for hardware platform in category dos / poc ===================================================== Motorola SB5101 Hax0rware Event Reset Remote Overflow ===================================================== !/usr/bin/perl Motorola SB5101 Hax0rware Event Reset Remote Overflow Tested on...

Motorola SB5101 - Hax0rware Event Reset Remote Overflow

!/usr/bin/perl Motorola SB5101 Hax0rware Event Reset Remote Overflow Tested on Hax0rware 1.1 R30, R32 and R39 Author: Dillon Beresford Date: 6/6/2010 Vendor: Motorola Corporation and SBHacker SBHacker has been notified of the vuln . Software Link: http://www.sbhacker.net/forum/index.php...

Motorola SURFBoard Cable Modem Directory Traversal

Exploit Title: Motorola SURFBoard Cable Modem Directory Traversal Date: 2010.06.03 Author: S2 Crew Hungary Software Link: - Version: Model name: SBV6120E, Firmware Name: SBV6X2X-1.0.0.5-SCM-02-SHPC Tested on: ^ CVE: - Code : The following urls get back the /etc/passwd file from the modem:...

Motorola Surfboard Cable Modem - Directory Traversal

Motorola Surfboard Cable Modem - Directory Traversal Exploit Title: Motorola SURFBoard Cable Modem Directory Traversal Date: 2010.06.03 Author: S2 Crew Hungary Software Link: - Version: Model name: SBV6120E, Firmware Name: SBV6X2X-1.0.0.5-SCM-02-SHPC Tested on: ^ CVE: - Code : The following urls...