122 matches found
CVE-2017-6351
WePresent WiPG-1500 devices (firmware up to 1.0.3.7) contain a hardcoded manufacturer account with a username/password. When DEBUG mode is enabled, an attacker can connect via telnet (port 5885) and log in using the hardcoded account abarco . This account is not documented, nor is the DEBUG featu...
WePresent WiPG-1500 - Backdoor Account Vulnerability
Exploit for hardware platform in category remote exploits Exploit Title: CVE-2017-6351 - WePresent undocumented privileged manufacturer backdoor account Date: 27/02/2017 Exploit Author: Quentin Olagne Vendor Homepage: http://www.wepresentwifi.com/ or...
WePresent WiPG-1500 Backdoor Account
Exploit Title: CVE-2017-6351 - WePresent undocumented privileged manufacturer backdoor account Date: 27/02/2017 Exploit Author: Quentin Olagne Vendor Homepage: http://www.wepresentwifi.com/ or http://www.awindinc.com/productswepresentwipg1500.html Software Link:...
Softing FG-100 PB Hardcoded Backdoor
COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Softing FG-100 PB Vendor: Softing AG www.softing.com CVD ID: CVE-2014-6617 Subject: Backdoor Account Risk: High Effect: Remotely exploitable Author: Ingmar Rosenhagen Daniel Marzin Johannes Klick Date: 05.11.2014...
Telnet TN3270E Protocol Detection
Binary data 8378.prm...
Grandstream Backdoor / Cross Site Request Forgery / Cross Site Scripting
=============================================================================== GRANDSTREAM ==================================================================== =============================================================================== 1.Advisory Information Title: Grandstream Series...
Telnetd Encryption Key ID Code Execution
Added: 02/11/2012 CVE: CVE-2011-4862 BID: 51182 OSVDB: 78020 Background Telnet is a network protocol used on the Internet or local area networks to provide a bidirectional interactive text-oriented communications facility using a virtual terminal connection. Problem The flaw is caused due to a...
Telnetd Encryption Key ID Code Execution
Added: 02/11/2012 CVE: CVE-2011-4862 BID: 51182 OSVDB: 78020 Background Telnet is a network protocol used on the Internet or local area networks to provide a bidirectional interactive text-oriented communications facility using a virtual terminal connection. Problem The flaw is caused due to a...
FreeBSD : krb5-appl -- telnetd code execution vulnerability (4ddc78dc-300a-11e1-a2aa-0016ce01e285)
The MIT Kerberos Team reports : When an encryption key is supplied via the TELNET protocol, its length is not validated before the key is copied into a fixed-size buffer. Also see MITKRB5-SA-2011-008. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
krb5-appl -- telnetd code execution vulnerability
The MIT Kerberos Team reports: When an encryption key is supplied via the TELNET protocol, its length is not validated before the key is copied into a fixed-size buffer. Also see MITKRB5-SA-2011-008...
Multiple Vendor Telnet Client env_opt_add Buffer Overflow (CVE-2005-0468)
The TELNET protocol is designed to provide a standard method of interfacing terminal devices and terminal-oriented processes to each other. It allows a computer to act as a remote terminal of another machine on a network. The TELNET protocol allows a user to connect to a remote host in order to...
Microsoft Windows Telnet NTLM Credential Reflection Authentication Bypass Vulnerability
Description Microsoft Windows is prone to an authentication-bypass vulnerability in the Telnet protocol. An attacker can exploit this issue to gain unauthorized access to the affected computer with the privileges of the victim. Successful exploits may compromise the affected computer. Technologie...
FreeBSD 7.0-RELEASE Telnet Daemon Local Privilege Escalation Exploit
Exploit for freebsd platform in category local exploits ==================================================================== FreeBSD 7.0-RELEASE Telnet Daemon Local Privilege Escalation Exploit ==================================================================== FreeBSD 7.0-RELEASE telnet daemon...
FreeBSD Security Advisory (FreeBSD-SA-05:01.telnet.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:01.telnet.asc ADV FreeBSD-SA-05:01.telnet.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Sof...
Telnet Client Information Disclosure Vulnerability
Overview A vulnerability in the handling of the NEW-ENVIRON command allows a malicious telnet server to gain information from a client's environment variables. Description The Telnet network protocol is described in RFC854 and RFC855 as a general, bi-directional communications facility. The Telne...
mit-krb5: Multiple buffer overflows in telnet client
Background The MIT Kerberos 5 implementation provides a command line telnet client which is used for remote login via the telnet protocol. Description A buffer overflow has been identified in the envoptadd function, where a response requiring excessive escaping can cause a heap-based buffer...
Buffer overflow in multiple OS telnetd
It's possible to overflow buffer with AYT telnet protocol command...
Mandrake Linux Security Advisory : kdelibs (MDKSA-2002:079)
Vulnerabilities were discovered in the KIO subsystem support for various network protocols. The implementation of the rlogin protocol affects all KDE versions from 2.1 up to 3.0.4, while the flawed implementation of the telnet protocol only affects KDE 2.x. They allow a carefully crafted URL in a...
[Full-Disclosure] iDEFENSE Security Advisory 05.26.04: 3Com OfficeConnect Remote 812 ADSL Router Telnet Protocol Denial of Service Vulnerability
iDEFENSE Security Advisory 05.26.04 www.idefense.com/application/poi/display?id=105&type=vulnerabilities May 26, 2004 I. BACKGROUND The 3Com OfficeConnect Remote 812 ADSL Router is a standalone bridge/router, with interfaces to a Local Area Network and an ADSL interface to a Wide Area Network. II...
EvolutionX buffer overflow
Buffer overflow on ftp and telnet protocols...