541 matches found
Linux/MIPS Kernel 2.6.36 - 'NetUSB' Remote Code Execution
!/usr/bin/env python Source: http://haxx.in/blasty-vs-netusb.py CVE-2015-3036 - NetUSB Remote Code Execution exploit Linux/MIPS =========================================================================== This is a weaponized exploit for the NetUSB kernel vulnerability discovered by SEC Consult...
802.11 Massive Monitoring: WiWo
wiwo is a distributed 802.11 monitoring and injecting system that was designed to be simple and scalable, in which all workers nodes can be managed by a Python framework Building the worker Requirements Install necessary requirements. $ sudo apt-get install build-essential git subversion...
[CVE-2015-4624] Predictable CSRF tokens in WiFi Pineapple firmware <= 2.3.0
Overview =============== WiFi Pineapples are a penetration testing tool used in offensive wireless activities. These devices run on a modified OpenWRT based on netBSD operating system. They include a web-based management interface. It has been discovered they have predictable anti-CSRF tokens bas...
Konke Smart Plug K - Authentication Bypass Vulnerability
No description provided by source. ----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail :...
Konke Smart Plug Authentication Bypass
----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail : gh&zixian Date : Oct, 17-2014 Vendor : http://www.kankunit.com/ Li...
Konke Smart Plug K - Authentication Bypass Vulnerability
Exploit for hardware platform in category remote exploits ----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail : gh&zixia...
Konke Smart Plug K - Authentication Bypass
----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail : gh&zixian Date : Oct, 17-2014 Vendor : http://www.kankunit.com/ Li...
Konke Smart Plug K - Authentication Bypass
Konke Smart Plug K - Authentication Bypass ----------------------------------------------------------------------- Konke Smart Plug Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : gamehacker&zixian Mail : gh&zixian Date : Oct,...
Вышла операционная система OpenWrt 14.07
Встроенная операционная система OpenWrt обновилась до версии 14.07. Эту ОС часто устанавливают на маршрутизаторах как замену проприетарным прошивкам. Основные компоненты OpenWrt включают в себя ядро Linux, util-linux, uClibc и BusyBox. Размер всех компонентов минимизирован, чтобы работать на...
Inteno DG301 Command Injection
Background According to the vendor, Inteno DG301 is a high-end Multi-WAN residential gateway with advanced router and bridge functions. 2. Summary Inteno DG301 Powered by LuCI Trunk inteno-1.0.34 and OpenWrt Backfire 10.03.1-RC6 is vulnerable to command injection, which can be exploited directly...
Inteno DG301 - Command Injection
Background According to the vendor, Inteno DG301 is a high-end Multi-WAN residential gateway with advanced router and bridge functions. 2. Summary Inteno DG301 Powered by LuCI Trunk inteno-1.0.34 and OpenWrt Backfire 10.03.1-RC6 is vulnerable to command injection, which can be exploited directly...
Inteno DG301 - Command Injection
Inteno DG301 - Command Injection 1. Background According to the vendor, Inteno DG301 is a high-end Multi-WAN residential gateway with advanced router and bridge functions. 2. Summary Inteno DG301 Powered by LuCI Trunk inteno-1.0.34 and OpenWrt Backfire 10.03.1-RC6 is vulnerable to command...
Inteno DG301 Command Injection Vulnerability
Exploit for hardware platform in category web applications 1. Background According to the vendor, Inteno DG301 is a high-end Multi-WAN residential gateway with advanced router and bridge functions. 2. Summary Inteno DG301 Powered by LuCI Trunk inteno-1.0.34 and OpenWrt Backfire 10.03.1-RC6 is...
Inteno DG301 Command Injection
Background According to the vendor, Inteno DG301 is a high-end Multi-WAN residential gateway with advanced router and bridge functions. 2. Summary Inteno DG301 Powered by LuCI Trunk inteno-1.0.34 and OpenWrt Backfire 10.03.1-RC6 is vulnerable to command injection, which can be exploited directly...
[Bluelog v1.1.1] Simple Bluetooth Scanner
Bluelog is a simple Bluetooth scanner designed to tell you how many discoverable devices there are in an area as quickly as possible. It is intended to be used as a site survey tool, identifying the number of possible Bluetooth targets there are in the surrounding environment. Changelog v1.1.1...
Bluetooth scanner: Bluelog
Bluelog is a Linux Bluetooth scanner written to do a single task, log devices that are in discoverable mode. It is intended to be used as a site survey tool, determining how many discoverable Bluetooth devices there are in the area. It has also proven to be very well suited to Bluetooth traffic...
OpenWRT 10.03 Cross Site Request Forgery / Cross Site Scripting
The openwrt 10.03 webinterface seems to have no protection against csrf... In addition, the following xss can be used against the webinterface: 1. nearly any page e.g. http://192.168.0.1/cgi-bin/luci/;stok=d/admin/network/network/"/alert1; 2. the query for packages e.g...
OpenWrt 10.03 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/44843/info OpenWrt is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
OpenWrt 10.03 - Multiple Cross-Site Scripting Vulnerabilities
OpenWrt 10.03 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/44843/info OpenWrt is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrar...
OpenWrt Router with a Blank Password (telnet check)
The remote host is running OpenWrt, an open source Linux distribution for embedded devices, especially routers. It is currently configured without a password, which is the case by default. Anyone can connect to the device via Telnet and gain administrative access to it. %NASLMINLEVEL 70300 C...