Critical Remote Flaw Found in Linksys Wireless Access Point

A popular wireless access point made by Cisco Systems’ Linksys unit has a vulnerability that enables a remote attacker to gain root access and execute arbitrary commands on the device. The bug is several months old and Linksys has not issued a patch for it yet. The vulnerability is in the Linksys...

Linksys WAP610N - Root Access Security

Secure Network - Security Research Advisory Vuln name: Linksys WAP610N Unauthenticated Access With Root Privileges Systems affected: WAP610N Firmware Version: 1.0.01 Systems not affected: -- Severity: High Local/Remote: Remote Vendor URL: http://www.linksysbycisco.com Authors: Matteo Ignaccolo...

Linksys WAP610N Unauthenticated Root Access Security Vulnerability

Exploit for hardware platform in category remote exploits Vuln name: Linksys WAP610N Unauthenticated Access With Root Privileges Systems affected: WAP610N Firmware Version: 1.0.01 Systems not affected: -- Severity: High Local/Remote: Remote Vendor URL: http://www.linksysbycisco.com Authors: Matte...

Linksys WAP610N - Root Access Security

Linksys WAP610N - Root Access Security Secure Network - Security Research Advisory Vuln name: Linksys WAP610N Unauthenticated Access With Root Privileges Systems affected: WAP610N Firmware Version: 1.0.01 Systems not affected: -- Severity: High Local/Remote: Remote Vendor URL:...

CVE-2011-0885

A certain Comcast Business Gateway configuration of the SMC SMCD3G-CCR with firmware before 1.4.0.49.2 has a default password of D0nt4g3tme for the mso account, which makes it easier for remote attackers to obtain administrative access via the 1 web interface or 2 TELNET interface...

Default credentials

A certain Comcast Business Gateway configuration of the SMC SMCD3G-CCR with firmware before 1.4.0.49.2 has a default password of D0nt4g3tme for the mso account, which makes it easier for remote attackers to obtain administrative access via the 1 web interface or 2 TELNET interface...

CVE-2011-0885

The CVE-2011-0885 entry affects Comcast DOCSIS 3.0 Business Gateway (SMCD3G-CCR) prior to firmware 1.4.0.49.2. Trustwave’s TWSL2011-002 describes a default credential flaw: the admin login is “mso” with password “D0nt4g3tme,” enabling remote administrative access via web or TELNET. The advisory a...

CVE-2011-0885

A certain Comcast Business Gateway configuration of the SMC SMCD3G-CCR with firmware before 1.4.0.49.2 has a default password of D0nt4g3tme for the mso account, which makes it easier for remote attackers to obtain administrative access via the 1 web interface or 2 TELNET interface...

TWSL2011-002:Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways (SMCD3G-CCR)

Trustwave's SpiderLabs Security Advisory TWSL2011-002: Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways SMCD3G-CCR https://www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt Published: 2011-02-04 Version: 1.0 Vendor: Comcast http://comcast.com and SMC http://www.smc.com Product:...

Telnet Service START_TLS Support

The remote Telnet service supports the use of a 'STARTTLS' option to switch from a cleartext to an encrypted communications channel. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid51890; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...

Hackers Turn Back Time , Attack Telnet !

A new report by Akamai Technologies shows that the hackers seem to be increasingly using the Telnet protocol for remote access servers to attack the company in mobile networks. Akamai, which specializes in traffic management and web content, publishes quarterly reports on trends in Internet...

Golden FTP Server v4.70 PASS Command Buffer Overflow Exploit

Exploit for windows platform in category remote exploits GoldenFTP 4.70 PASS Exploit Tested on XP SP3 Vendor Contacted: 1/17/2011 no response For this exploit to work correctly, you need to know the subnet that the server is running on. You also need to make sure that "show new connections" is...

Golden FTP Server 4.70 - 'PASS' Buffer Overflow

GoldenFTP 4.70 PASS Exploit Authors: Craig Freyman cd1zz and Gerardo Iglesias Galvan iglesiasgg Tested on XP SP3 Vendor Contacted: 1/17/2011 no response For this exploit to work correctly, you need to know the subnet that the server is running on. You also need to make sure that "show new...

ProFTPD Telnet IAC buffer overflow

Added: 01/21/2011 CVE: CVE-2010-4221 BID: 44562 OSVDB: 68985 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem A buffer overflow vulnerability in ProFTPD allows remote attackers to execute arbitrary commands by sending a TELNETIAC escape sequence to the FTP...

ProFTPD Telnet IAC buffer overflow

Added: 01/21/2011 CVE: CVE-2010-4221 BID: 44562 OSVDB: 68985 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem A buffer overflow vulnerability in ProFTPD allows remote attackers to execute arbitrary commands by sending a TELNETIAC escape sequence to the FTP...

ProFTPD Telnet IAC buffer overflow

Added: 01/21/2011 CVE: CVE-2010-4221 BID: 44562 OSVDB: 68985 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem A buffer overflow vulnerability in ProFTPD allows remote attackers to execute arbitrary commands by sending a TELNETIAC escape sequence to the FTP...

ProFTPd 1.3.2 rc3 < 1.3.3b (Linux) - Telnet IAC Buffer Overflow (Metasploit)

$Id: proftptelnetiac.rb 11525 2011-01-09 23:33:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Design/Logic Flaw

Cisco Adaptive Security Appliances ASA 5500 series devices with software before 8.23 do not properly determine the interfaces for which TELNET connections should be permitted, which allows remote authenticated users to bypass intended access restrictions via vectors involving the "lowest security...

CVE-2010-4675

Cisco Adaptive Security Appliances ASA 5500 series devices with software before 8.23 do not properly determine the interfaces for which TELNET connections should be permitted, which allows remote authenticated users to bypass intended access restrictions via vectors involving the "lowest security...

CVE-2010-4675

Cisco ASA 5500 series devices running versions prior to 8.2(3) are affected by CVE-2010-4675 due to a bug (CSCsv40504) that causes improper determination of which interfaces TELNET connections should be permitted. This can allow remote authenticated users to bypass intended access restrictions by...