325 matches found
phpBB v1.0.0 - 2.0.10 admin_cash.php remote exploit
No description provided by source. / exploit for phpBB 1.0.0 - 2.0.10 edit the b4b0.php file with the correct url to your backdoor and the correct filename for your backdoor upload it to a webserver. gcc -o b4b0-phpbb b4b0-phpbb.c ./b4b0-phpbb urltosystem phpbbdir urltob4b0.php telnet...
CVE-2004-0308
Unknown vulnerability in Cisco ONS 15327 before 4.13, ONS 15454 before 4.61, ONS 15454 SD before 4.13, and Cisco ONS15600 before 1.30 allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell...
netgearDG834G.txt
By opening http://192.168.0.1/setup.cgi?todo=debug you enable the router's debug mode.Then you just telnet at 192.168.0.1 at port 23 and then you have a root shell. Also i found that if you just telnet to 192.168.0.1 2602 you will get a prompt from the service ZEBRA that is running on the router....
[Full-Disclosure] backdoor menu on conexant chipset dsl router (Zoom X3)
i have just installed an adsl modem sold under the brand of Zoom X3 http://www.zoom.com/products/adsloverview.html and was apalled to find that an nmap scan of the external address immediately came up with the following: PORT STATE SERVICE 23/tcp open telnet 80/tcp open http 254/tcp open unknown...
ACME-mitel.txt
There is an interesting bug in a Mitel's servers for Voice over IP that allows to discover the numbers called and the numbers calling trought this dhcp server. This server is configurable via http interface and via telnet; in this case, if there is a call at moment of login/pass request, I've not...
Cisco Aironet AP1100 fails to provide universal login error messages thereby disclosing validity of user account
Overview A vulnerability in the Cisco Aironet 1100 Series Access Point may allow a remote attacker to discover valid accounts on the access point. Description Cisco describes the Aironet 1100 Series Access Point as, "an affordable and upgradable 802.11b wireless LAN WLAN solution, setting the...
Alcatel Operating System (AOS) does not require a password for accessing the telnet server
Overview The OmniSwitch 7700/7800 running Alcatel Operating System AOS version 5.1.1 has TCP port 6778 listening as a telnet server. This gives anyone access to the OmniSwitch's Vx-Works operating system without requiring a password. Description During an NMAP audit of the AOS 5.1.1 code that run...
Undocumented account vulnerability in Avaya P550R/P580/P880/P882 switches
Undocumented account vulnerability in Avaya P550R/P580/P880/P882 switches 1. Problem Description Two undocummented accounts with default passwords allow access via telnet and the web interface to Cajun P550R/P580/P880/P882 switches. Both accounts give developer access to the switch. The...
Phenoelit Advisory 0815 ++ /+ HP ProCurve
Phenoelit Advisory wir-haben-auch-mal-was-gefunden 0815 +-+- Authors FX [email protected] kim0 [email protected] Zet [email protected] Phenoelit Group http://www.phenoelit.de Advisory http://www.phenoelit.de/stuff/HPProCurve.txt Affected Products Hewlett Packard HP ProCurve Switch Tested on HP J4121A...
@stake Advisory: Multiple Vulnerabilities with Pingtel xpressa SIP Phones
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake Inc. www.atstake.com Security Advisory Advisory Name: Multiple Vulnerabilities with Pingtel xpressa SIP Phones Release Date: 07/12/2002 Hardware: Pingtel xpressa SIP VoIP phones model PX-1 Software: Versions 1.2.5-1.2.7.4 Platform: VxWorks...
Cisco 6400 NRP2 Unauthenticated Telnet Access (CSCdt65960)
The Cisco 6400 Access Concentrator Node Route Processor 2 NRP2 module allows Telnet access when no password has been set. The correct response is to disallow any remote access to the module until the password has been set. This vulnerability may result in users gaining unintended access to secure...
Aironet Telnet Vulnerability
...
CVE-2001-1135
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known...
DoS on HP ProCurve 4000M switch (possibly others)
Advisory Vitals: Name: HP ProCurve 4000M nmap DoS Affected Products: HP ProCurve 4000M J4121A, possibly others Firmware Versions: C.08.22 and C.09.09 both tested vulnerable Relevant Vendor URL: http://www.hp.com/rnd/ Vendor Contacted: 9/10/2001; 1/16/2002 Summary: nmap portscans cause a DoS on th...
Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) module permits telnet access when no password has been set
Overview The Cisco 6400 Access Concentrator Node Route Processor 2 NRP2 module permits unauthenticated telnet access when no password has been set. Description The Access Concentrator Node Route Processor is a router blade for the Cisco 6400. It's purpose is to aggregate and terminate incoming...
CVE-2001-1135
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known...
ZyXEL Router Default Telnet Password Present
The remote host is a ZyXEL router with a default password. An attacker could telnet to it and reconfigure it to lock the owner out and prevent him from using his Internet connection, or create a dial-in user to connect directly to the LAN attached to it. This script was written by Giovanni Fiasch...
Telnet досутп в Cisco 6400 (unauthorized access)
Разрешен телнет-доступ к vty с неустановленным паролем...
Cisco 6400 NRP2 Telnet Vulnerability
...
Fwd: APlio PRO web shell
This URL allows for the execution of commands via /bin/sh...