Pelco Sarix Pro Network Camera set_param Program Has an Override Access Vulnerability

pelco Sarix Professional is a video camera. An override access vulnerability exists in the pelco Sarix Pro network camera setparam program. The vulnerability allows attackers to remotely enable ssh services without authentication to take full control of the camera...

The vulnerability of the microprogramming software of the Siklu EtherHaul radio relay station, related to the use of pre-installed account data, allows a intruder to gain access to the embedded operating system with administrator privileges.

The vulnerability of the microprogramming software of the Siklu EtherHaul radio relay station is related to the use of a pre-installed root account. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to the embedded operating system with administrator...

The vulnerability of the Altum router’s microprogramming software relates to the use of pre-installed user accounts, which allow attackers to gain access to the embedded operating system with administrator privileges.

The vulnerability of the Altum router microprogramming system is related to the use of a pre-installed root account. Exploiting this vulnerability allows an attacker, operating remotely, to gain access to the embedded operating system with administrator privileges using SSH or Telnet connections...

CVE-2017-12084

A backdoor vulnerability exists in remote control functionality of Circle with Disney running firmware 2.0.1. A specific set of network packets can remotely start an SSH server on the device, resulting in a persistent backdoor. An attacker can send an API call to enable the SSH server...

OpenSSH Design Vulnerabilities

OpenSSH OpenBSD Secure Shell is a set of connection tools for secure access to remote computers maintained by the OpenBSD Project Group. The tools are an open source implementation of the SSH protocol and support encryption of all transmissions, effectively blocking eavesdropping, connection...

Circle with Disney Remote Access Vulnerability

Circle with Disney is a set of network monitoring and management devices for monitoring children's online behavior from Circle Media, Inc. in the United States. A remote access vulnerability exists in the remote control feature of Circle with Disney version 2.0.1. A remote attacker can exploit th...

PYSEC-2017-12

Dulwich before 0.18.5, when an SSH subprocess is used, allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-1000116, and CVE-2017-1000117...

DEBIAN-CVE-2017-16228

Dulwich before 0.18.5, when an SSH subprocess is used, allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-1000116, and CVE-2017-1000117...

DEBIAN-CVE-2017-1000116

Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks...

ALPINE-CVE-2017-1000117

A malicious third-party can give a crafted "ssh://..." URL to an unsuspecting victim, and an attempt to visit the URL can result in any program that exists on the victim's machine being executed. Such a URL could be placed in the .gitmodules file of a malicious project, and an unsuspecting victim...

ALPINE-CVE-2017-1000116

Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks...

SaltStack Salt Arbitrary Command Execution Vulnerability

SaltStack Salt a.k.a. SaltStack is an open source set of tools for managing infrastructure from the American company SaltStack. A security vulnerability exists in the Salt-api in SaltStack Salt. An attacker can exploit this vulnerability to execute arbitrary commands with the help of sshclient in...

CVE-2017-6720

A vulnerability in the Secure Shell SSH subsystem of Cisco Small Business Managed Switches software could allow an authenticated, remote attacker to cause a reload of the affected switch, resulting in a denial of service DoS condition. The vulnerability is due to improper processing of SSH...

Cisco Small Business Managed Switches Denial of Service Vulnerability

Cisco Small Business 300 Series Managed Switches and so on are the switch equipment of the American Cisco Cisco company. the Secure Shell SSH subsystem is one of the data encryption transmission subsystems. A denial of service vulnerability exists in the SSH subsystem in several Cisco products,...

Cisco Small Business Managed Switches Denial of Service Vulnerability

A vulnerability in the Secure Shell SSH subsystem of Cisco Small Business Managed Switches software could allow an authenticated, remote attacker to cause a reload of the affected switch, resulting in a denial of service DoS condition. The vulnerability is due to improper processing of SSH...

selinux-policy denial of service vulnerability

SELinux Security-Enhanced Linux is a mandatory access control security module for Linux-based systems developed by the NSA and SCC Secure Computing Corporation. selinux-policy is one of the Linux security engine bootstrap rules. A security vulnerability exists in selinux-policy. This vulnerabilit...

Arris Modems Hardcoded Backdoor Vulnerability

Arris Modems are modems produced by telecom equipment manufacturer Arris, customized for AT&T home users for on-net access. Arris Modems are vulnerable to a hard-coded backdoor vulnerability, where the modem has SSH enabled by default and allows Internet connectivity, which can be accessed by an...

DEBIAN-CVE-2017-12836

CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."...

ALPINE-CVE-2017-12836

CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."...

USN-3399-1 cvs vulnerability

Hank Leininger discovered that cvs did not properly handle SSH for remote repositories. A remote attacker could use this to construct a cvs repository that when accessed could run arbitrary code with the privileges of the user...