Default credentials

The Linux installation on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 has a default password of m for the root account, and a default password of merlin for the mg3500 account, which makes it easier for remote attackers to obtain access...

CVE-2010-4233

The Linux installation on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 has a default password of m for the root account, and a default password of merlin for the mg3500 account, which makes it easier for remote attackers to obtain access...

CVE-2010-4233

CVE-2010-4233 affects Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera (firmware 1.102A-008). The issue is undocumented default credentials on the Linux OS: root with password m and mg3500 with password merlin , enabling login via the camera’s TELNET interface. Several c...

Camtron CMNC-200 IP Camera Undocumented Default Accounts

Exploit for hardware platform in category web applications ======================================================== Camtron CMNC-200 IP Camera Undocumented Default Accounts ======================================================== The CMNC-200 IP Camera has undocumented default accounts on its Lin...

Camtron CMNC-200 IP Camera - Undocumented Default Accounts

Finding 4: Undocumented Default Accounts CVE: CVE-2010-4233 The CMNC-200 IP Camera has undocumented default accounts on its Linux operating system. These accounts can be used to login via the cameras telnet interface, which cannot be normally disabled. The usernames and passwords are listed below...

CVE-2010-4221

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

CVE-2010-4221

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

DEBIAN-CVE-2010-4221

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

CVE-2010-4221

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

Stack overflow

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

CVE-2010-4221

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

ProFTPD 1.3.2rc3 - 1.3.3b Telnet IAC Buffer Overflow (Linux)

This module exploits a stack-based buffer overflow in versions of ProFTPD server between versions 1.3.2rc3 and 1.3.3b. By sending data containing a large number of Telnet IAC commands, an attacker can corrupt memory and execute arbitrary code. The Debian Squeeze version of the exploit uses a litt...

ProFTPD 1.3.2rc3 - 1.3.3b Telnet IAC Buffer Overflow

$Id: proftptelnetiac.rb 10900 2010-11-04 18:12:11Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

ProFTPD 1.3.2rc3 - 1.3.3b Telnet IAC Buffer Overflow (FreeBSD)

This module exploits a stack-based buffer overflow in versions of ProFTPD server between versions 1.3.2rc3 and 1.3.3b. By sending data containing a large number of Telnet IAC commands, an attacker can corrupt memory and execute arbitrary code. This module requires Metasploit:...

[slackware-security] proftpd

New proftpd packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to a fix security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/proftpd-1.3.3c-i486-1slack13.1.txz: Upgraded. Fixed Telnet IAC stack overflow vulnerability...

IT-Grundschutz: SSH and Telnet BruteForce attack

SSH and Telnet BruteForce attack. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.96104";...

IT-Grundschutz: SSH and Telnet BruteForce attack

SSH and Telnet BruteForce attack. OpenVAS Vulnerability Test $Id: GSHBSSHTELNETBruteForce.nasl 7061 2017-09-05 11:50:40Z teissa $ SSH and Telnet BruteForce attack Authors: Thomas Rotter Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

Mandriva Update for rsh MDVA-2010:186 (rsh)

Check for the Version of rsh OpenVAS Vulnerability Test Mandriva Update for rsh MDVA-2010:186 rsh Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

Accton-based switches (3com, Dell, SMC, Foundry, EdgeCore) Backdoor

Exploit for windows platform in category remote exploits =================================================================== Accton-based switches 3com, Dell, SMC, Foundry, EdgeCore Backdoor =================================================================== On the 15th of august 2009, at the...

Accton-based switches (3com / Dell / SMC / Foundry / EdgeCore) - Backdoor Password

On the 15th of august 2009, at the HAR2009 conference, the existence of a backdoor password in Accton-based switches was revealed by Edwin Eefting, Erik Smit and Erwin Drent 12. Even though this is a 365-day exploit, it does not seem to be listed in any of the vulnerability databases. Also, I cou...