CVE-2017-6351

The WePresent WiPG-1500 device with firmware 1.0.3.7 has a manufacturer account that has a hardcoded username / password. Once the device is set to DEBUG mode, an attacker can connect to the device using the telnet protocol and log into the device with the 'abarco' hardcoded manufacturer account...

WePresent WiPG-1500 Backdoor Vulnerability

WePresent WiPG-1500 is a new gateway by AWIND, WiPG-1500 connects multi-platform devices Windows / Mac / Pad / Smartphone / AirPad for interactive presentations by supporting finger touch technology and virtual whiteboard. WePresent WiPG-1500 has a backdoor vulnerability. An attacker can connect ...

Backdoor Vulnerability in Multiple Sony IPELA ENGINE IP Cameras

SNC-CH115, SNC-CH120 and SNC-CH160 are IP camera products from Sony. A backdoor vulnerability exists in multiple Sony IPELA ENGINE IP Cameras. A remote attacker can exploit the vulnerabilities to remotely manage the camera using Telnet/SSH services to gain root access to the Linux shell, affectin...

InfraPower PPS-02-S Q213V1 - Hard-Coded Credentials Vulnerability

Exploit for hardware platform in category remote exploits InfraPower PPS-02-S Q213V1 Hard-coded Credentials Remote Root Access Vendor: Austin Hughes Electronics Ltd. Product web page: http://www.austin-hughes.com Affected version: Q213V1 Firmware: V2395S Fixed version: Q216V3 Firmware:...

BINOM3 Power Meter CSRF / XSS / Credential Management

Universal multifunctional Electric Power Quality Meter BINOM3 - Multiple Vulnerabilities About The meters are designed for autonomous operation in automated systems: aC/ SCADA systems aC/ Data aquisition and transmission systems aC/ Automated data and measurement systems for revenue and technical...

The vulnerability of the Cisco IOS operating system allows a malicious individual to establish a network connection using the TELNET protocol.

The Cisco IOS operating system of telecommunications equipment does not recognize the keyword “vrf-also” during the execution of the “access-class” command. This allows a malicious intruder to establish a network connection using the TELNET protocol...

The vulnerability of microprogramming software in mobile data storage devices like Wireless Plus Mobile Storage, GoFlex Satellite, LaCie FUEL, and Wireless Mobile Storage allows a perpetrator to gain administrator privileges.

The vulnerability of microprogrammed software in mobile data storage devices like Wireless Plus Mobile Storage, GoFlex Satellite, LaCie FUEL, and Wireless Mobile Storage lies in the default use of a standard user password. Exploiting this vulnerability allows a malicious actor to gain administrat...

Backdoor Vulnerability in Juniper Networks ScreenOS (CNVD-2015-08307)

ScreenOS is an operating system developed by Juniper Networks that runs on the NetScreen family of firewall products. An unauthorized access vulnerability exists in Juniper Networks ScreenOS, which can be exploited by an attacker to remotely gain administrative access to the device via SSH or...

Cisco IOS XR SSH Link Termination Denial of Service Vulnerability

Cisco IOS XR is a member of the Cisco IOS software family and uses a microkernel-based distribution operating system architecture. A security vulnerability in Cisco IOS XR SSH handling allows a remote authenticated user to disconnect the SSH link making the vty unstable and subsequent SSH or Teln...

Majority of 4G USB Modems, SIM Cards Exploitable

Researchers say 4G USB modems contain exploitable vulnerabilities through which attackers could, and researchers have, managed to gain full control of the machines to which the devices are connected. Researchers from Positive Technologies presented a briefing detailing how to compromise USB modem...

PT-2014-1222 · Emerson · Emerson Deltav

Name of the Vulnerable Software and Affected Versions: Emerson DeltaV versions 10.3.1 through 12.3 Description: The issue is related to errors that occur when changing access control rules through the Telnet protocol, allowing an attacker to gain access to applications via Telnet to run commands ...

NETGEAR DGN2200 Multiple Vulnerabilities

Nessus was able to determine that the remote device is a NETGEAR DGN2200. This device is affected by multiple vulnerabilities, the worst of which allow an unauthenticated, adjacent attacker to gain root telnet access to the device. C Tenable Network Security, Inc. include"compat.inc"; if...

Netgear D6300B routers backdoor

Specially crafted network packet activates root level telnet access...

Sitecom N300N600 Devices - Multiple Vulnerabilities

Sitecom N300N600 Devices - Multiple Vulnerabilities Multiple vulnerabilities on Sitecom N300/N600 devices ===================================================== ADVISORY INFORMATION Title: Multiple vulnerabilities on Sitecom N300/N600 devices Discovery date: 01/06/2013 Release date: 19/08/2013...

Sitecom wireless routers multiple security vulnerabilities

Undocumented hardcoded accounts, undocumented telnet access, weak WPA and administrator accounts generation...

CVE-2011-1623

Cisco Media Processing Software before 1.2 on Media Experience Engine MXE 5600 devices has a default root password, which makes it easier for context-dependent attackers to obtain access via 1 the local console, 2 an SSH session, or 3 a TELNET session, aka Bug ID CSCto77737...

FiWin SS28S Wi-Fi phones backdoor account

Phone has debug console with telnet access and hardcoded account 1 with password 1...

VulnCheck KEV: CVE-2004-1464

Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell RSH, Secure Shell SSH, and in some cases, Hypertext Transport Protocol HTTP access to the Cisco device...

security flaw

bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service CPU consumption via a certain sh ip bgp command entered in the telnet interface...

adpl33t.txt

Adp Elite system is an invoice/purchase order suite very common in car dealerships. It's a telnet based system. When a user logs in via telnet, adp dumps the user into the program where the user can check on a vehicle's status, generate PO's and RO's, etc.... The program is rather large and runs ...