347 matches found
Seagate BlackArmor NAS sg2000-2000.1331 Cross Site Scripting
Exploit Title: Seagate BlackArmor NAS - Multiple Persistent Cross Site Scripting Vulnerabilities Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link: http://www.seagate.com/support/downloads/item/banas-220-firmware-master-dl...
Seagate BlackArmor NAS sg2000-2000.1331跨站脚本漏洞
No description provided by source. Exploit Title: Seagate BlackArmor NAS - Multiple Persistent Cross Site Scripting Vulnerabilities Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ http://www.seagate.com/ Software Link:...
Seagate BlackArmor NAS sg2000-2000.1331 - Cross Site Request Forgery
Exploit for hardware platform in category web applications There are multiple CSRF attacks possible, the proof of concept shows how it is possible to add a user with administrative privileges to the system. It is also possible to: 1. Factory reset the device 2. Reboot the device 3. Add/Edit/Remov...
Seagate BlackArmor NAS sg2000-2000.1331 Remote Command Execution
Exploit Title: Seagate BlackArmor NAS - Remote Command Execution Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link: http://www.seagate.com/support/downloads/item/banas-220-firmware-master-dl/ Version: sg2000-2000.1331 Test...
Seagate BlackArmor - Root Exploit
Exploit for hardware platform in category web applications Public Release v0.2 abstract class MD5Decryptor abstract public function probe$hash; public static function plain$hash, $class = NULL if $class === NULL $class = getcalledclass; else $class = sprintf"MD5Decryptor%s", $class; $decryptor =...
Seagate BlackArmor权限提升漏洞
No description provided by source. ?php Seagate Black Armor Exploit by J. Diel [email protected] Public Release v0.2 abstract class MD5Decryptor abstract public function probe$hash; public static function plain$hash, $class = NULL if $class === NULL $class = getcalledclass; else $class =...
Seagate BlackArmor NAS sg2000-2000.1331 Cross Site Request Forgery
Exploit Title: Seagate BlackArmor NAS - Cross Site Request Forgery Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link: http://www.seagate.com/support/downloads/item/banas-220-firmware-master-dl/ Version: sg2000-2000.1331...
Seagate BlackArmor NAS sg2000-2000.1331 - Remote Command Execution
Exploit for hardware platform in category web applications The file getAlias.php located in /backupmgt has the following lines: $ipAddress = $GET"ip"; if $ipAddress != "" exec"grep -I $ipAddress $immedLogFile aliasHistory.txt"; .. .. The GET parameter can easily be manipulated to execute commands...
Seagate BlackArmor NAS sg2000-2000.1331远程代码执行漏洞
No description provided by source. Exploit Title: Seagate BlackArmor NAS - Remote Command Execution Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ http://www.seagate.com/ Software Link:...
Seagate BlackArmor NAS sg2000-2000.1331 - Remote Command Execution
Seagate BlackArmor NAS sg2000-2000.1331 - Remote Command Execution Exploit Title: Seagate BlackArmor NAS - Remote Command Execution Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link:...
Seagate Black Armor Root Exploit
Public Release v0.2 abstract class MD5Decryptor abstract public function probe$hash; public static function plain$hash, $class = NULL if $class === NULL $class = getcalledclass; else $class = sprintf"MD5Decryptor%s", $class; $decryptor = new $class; if count$hash 1 foreach $hash as &$one $one =...
Seagate BlackArmor NAS Multiple Vulnerabilities
Seagate BlackArmor NAS is prone to multiple vulnerabilities. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...
Seagate BlackArmor NAS sg2000-2000.1331跨站请求伪造漏洞
No description provided by source. Exploit Title: Seagate BlackArmor NAS - Cross Site Request Forgery Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link:...
Seagate BlackArmor NAS sg2000-2000.1331 - Multiple Persistent Cross-Site Scripting Vulnerabilities
Exploit Title: Seagate BlackArmor NAS - Multiple Persistent Cross Site Scripting Vulnerabilities Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link: http://www.seagate.com/support/downloads/item/banas-220-firmware-master-dl...
Seagate BlackArmor NAS sg2000-2000.1331 - Cross-Site Request Forgery
Exploit Title: Seagate BlackArmor NAS - Cross Site Request Forgery Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link: http://www.seagate.com/support/downloads/item/banas-220-firmware-master-dl/ Version: sg2000-2000.1331...
Seagate BlackArmor NAS - Privilege Escalation
Public Release v0.2 abstract class MD5Decryptor abstract public function probe$hash; public static function plain$hash, $class = NULL if $class === NULL $class = getcalledclass; else $class = sprintf"MD5Decryptor%s", $class; $decryptor = new $class; if count$hash 1 foreach $hash as &$one $one =...
Seagate BlackArmor NAS sg2000-2000.1331 - Remote Command Execution
Exploit Title: Seagate BlackArmor NAS - Remote Command Execution Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ Software Link: http://www.seagate.com/support/downloads/item/banas-220-firmware-master-dl/ Version: sg2000-2000.1331 Test...
Seagate BlackArmor NAS Detection (HTTP)
HTTP based detection of Seagate BlackArmor NAS devices. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Seagate NAS Default Credentials (HTTP)
The remote Seagate NAS is using known default credentials. Copyright C 2013 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...
CVE-2012-2568
d41d8cd98f00b204e9800998ecf8427e.php in the management web server on the Seagate BlackArmor device allows remote attackers to change the administrator password via unspecified vectors...