CVE-2021-30127

TerraMaster F2-210 devices through 2021-04-03 use UPnP to make the admin web server accessible over the Internet on TCP port 8181, which is arguably inconsistent with the "It is only available on the local network" documentation. NOTE: manually editing /etc/upnp.json provides a partial but...

Trojan-Dropper.Win32.SVB.cz Authentication Bypass / Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/d57536189430fd75e45f53845e9b3f94.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Dropper.Win32.SVB.cz Vulnerability: Authentication Bypass RCE Description: The malware listen...

CVE-2021-27823

An information disclosure vulnerability was discovered in /index.class.php via port 8181 on NetWave System 1.0 which allows unauthenticated attackers to exfiltrate sensitive information from the system...

CVE-2021-27823

An information disclosure vulnerability was discovered in /index.class.php via port 8181 on NetWave System 1.0 which allows unauthenticated attackers to exfiltrate sensitive information from the system...

CVE-2021-27823

CVE-2021-27823 affects NetWave System 1.0 with an information disclosure vulnerability in /index.class.php exposed via port 8181. The issue allows unauthenticated attackers to exfiltrate sensitive information from the system. Documented details indicate network-accessible exposure with a confiden...

Design/Logic Flaw

TerraMaster F2-210 devices through 2021-04-03 use UPnP to make the admin web server accessible over the Internet on TCP port 8181, which is arguably inconsistent with the "It is only available on the local network" documentation. NOTE: manually editing /etc/upnp.json provides a partial but...

CVE-2021-30127

CVE-2021-30127 affects TerraMaster F2-210 devices. The root issue is UPnP-enabled exposure of the admin web server on TCP port 8181 to the Internet, contrary to local-network expectations. Consequence is potential unauthorized access due to outward-facing admin interface. A partial, undocumented ...

Terramaster TerraMaster FS-210 安全漏洞

The Terramaster TerraMaster FS-210 is a NAS Network Attached Storage device from Tumi Electronic Technology Terramaster of Shenzhen, China. A security vulnerability exists in the TerraMaster F2-210 devices that originates from allowing access to the device over the Internet on TCP port 8181...

Ipswitch IMail 5.0 IMonitor Buffer Overflow DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/504/info The IMail IMonitor service can be crashed by exploiting a buffer overflow vulnerability. Telnet to target machine, port 8181 Send: glob1 hit enter twice Where glob1 is 2045 characters...

Code injection

The Web Administrator service STEMWADM.EXE in Websense Personal Email Manager 7.1 before Hotfix 4 and Email Security 7.1 before Hotfix 4 allows remote attackers to cause a denial of service crash by sending a HTTP GET request to TCP port 8181 and closing the socket before the service can send a...

Websense Email Security - Denial of Service

Security Advisory NSOADV-2009-002 Title: Websense Email Security Web Administrator DoS Severity: Low Advisory ID: NSOADV-2009-002 Found Date: 28.09.2009 Date Reported: 01.10.2009 Release Date: 20.10.2009 Author: Nikolas Sotiriu Mail: nso-research at sotiriu.de URL:...

CVE-1999-1046

IMail 5.0 is affected by a buffer overflow in the IMonitor service. The flaw can be triggered by sending a long string to port 8181, enabling remote denial of service and potentially arbitrary command execution. No remediation details are provided in the supplied documents.