Cisco Telnet Denial of Service Vulnerability - Cisco Systems

A specially crafted Transmission Control Protocol TCP connection to a telnet or reverse telnet port of a Cisco device running Internetwork Operating System IOS may block further telnet, reverse telnet, Remote Shell RSH, Secure Shell SSH, and in some cases Hypertext Transport Protocol HTTP access ...

Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow

The Cisco IOS Firewall Authentication Proxy for FTP and/or Telnet Sessions feature in specific versions of Cisco IOS software is vulnerable to a remotely-exploitable buffer overflow condition. Devices that do not support, or are not configured for Firewall Authentication Proxy for FTP and/or Teln...

Cisco IOS Software TELNET Option Handling Vulnerability - Cisco Systems

A defect in multiple Cisco IOS software versions will cause a Cisco router to reload unexpectedly when the router is tested for security vulnerabilities by security scanning software programs. The defect can be exploited repeatedly to produce a consistent denial of service DoS attack. Customers...

myMP3-Player 3.0 Buffer Overflow

Exploit Title: myMP3-Player 3.0 NOT SEH Overwrite Date: 8 / 8 / 2010 Author: Oh Yaw Theng Software Link: http://www.chip.de/downloads/myMP3-Player-3.013008621.html Version: 3.0 Tested on: Windows XP SP 2 CVE : N / A !/usr/bin/python filename = "crash.m3u" junk = "\x41" 1024 ret = "\x65\x82\xA5\x7...

myMP3-Player v3.0 Buffer Overflow Exploit

No description provided by source. Exploit Title: myMP3-Player 3.0 NOT SEH Overwrite Date: 8 / 8 / 2010 Author: Oh Yaw Theng Software Link: http://www.chip.de/downloads/myMP3-Player-3.013008621.html Version: 3.0 Tested on: Windows XP SP 2 CVE : N / A !/usr/bin/python filename = "crash.m3u" junk =...

Session fixation

Unspecified vulnerability on the Cisco Firewall Services Module FWSM with software 3.2 before 3.217.2, 4.0 before 4.011.1, and 4.1 before 4.11.2 for Catalyst 6500 series switches and 7600 series routers, when multi-mode is enabled, allows remote attackers to cause a denial of service device reloa...

myMP3-Player v3.0 Buffer Overflow Exploit

Exploit for windows platform in category local exploits ========================================= myMP3-Player v3.0 Buffer Overflow Exploit ========================================= Exploit Title: myMP3-Player 3.0 NOT SEH Overwrite Date: 8 / 8 / 2010 Author: Oh Yaw Theng Software Link:...

myMP3-Player 3.0 - Local Buffer Overflow

Exploit Title: myMP3-Player 3.0 NOT SEH Overwrite Date: 8 / 8 / 2010 Author: Oh Yaw Theng Software Link: http://www.chip.de/downloads/myMP3-Player-3.013008621.html Version: 3.0 Tested on: Windows XP SP 2 CVE : N / A !/usr/bin/python filename = "crash.m3u" junk = "\x41" 1024 ret = "\x65\x82\xA5\x7...

CVE-2010-2821

Cisco FWSM vulnerabilities (CVE-2010-2821, related SunRPC/TCP DoS) may cause device reloads when multi-mode is enabled and TCP-based traffic (Telnet/SSH/ASDM) is processed. Affected: Cisco FWSM on Catalyst 6500 and 7600 platforms with software 3.x up to 3.2(17.2), 4.x up to 4.0(11.1), and 4.1 up ...

CVE-2010-2966

The INCLUDESECURITY functionality in Wind River VxWorks 6.x, 5.x, and earlier uses the LOGINUSERNAME and LOGINUSERPASSWORD aka LOGINPASSWORD parameters to create hardcoded credentials, which makes it easier for remote attackers to obtain access via a 1 telnet, 2 rlogin, or 3 FTP session...

CVE-2010-2967

The loginDefaultEncrypt algorithm in loginLib in Wind River VxWorks before 6.9 does not properly support a large set of distinct possible passwords, which makes it easier for remote attackers to obtain access via a 1 telnet, 2 rlogin, or 3 FTP session...

Hardcoded credentials

The INCLUDESECURITY functionality in Wind River VxWorks 6.x, 5.x, and earlier uses the LOGINUSERNAME and LOGINUSERPASSWORD aka LOGINPASSWORD parameters to create hardcoded credentials, which makes it easier for remote attackers to obtain access via a 1 telnet, 2 rlogin, or 3 FTP session...

Session fixation

The loginDefaultEncrypt algorithm in loginLib in Wind River VxWorks before 6.9 does not properly support a large set of distinct possible passwords, which makes it easier for remote attackers to obtain access via a 1 telnet, 2 rlogin, or 3 FTP session...

[R7-0035] VxWorks Authentication Library Weak Password Hashing

R7-0035: VxWorks Authentication Library Weak Password Hashing August 2, 2010 -- Vulnerability Details: This vulnerability allows remote attackers to bypass the authentication process for the Telnet and FTP services of the VxWorks operating system. This flaw occurs due to an insecure password...

CVE-2010-2966

The INCLUDESECURITY functionality in Wind River VxWorks 6.x, 5.x, and earlier uses the LOGINUSERNAME and LOGINUSERPASSWORD aka LOGINPASSWORD parameters to create hardcoded credentials, which makes it easier for remote attackers to obtain access via a 1 telnet, 2 rlogin, or 3 FTP session...

CVE-2010-2967

The CVE-2010-2967 vXWorks vulnerability stems from Wind River VxWorks’ loginLib loginDefaultEncrypt hashing: it uses a weak default hashing algorithm prone to collisions, enabling brute-force style password guessing for services that rely on the standard authentication API (telnet, rlogin, FTP). ...

CVE-2010-2966

The CVE-2010-2966 issue affects Wind River VxWorks 6.x, 5.x, and earlier where INCLUDE_SECURITY uses LOGIN_USER_NAME and LOGIN_USER_PASSWORD (LOGIN_PASSWORD) to create hardcoded credentials. This enables remote authentication for (1) telnet, (2) rlogin, or (3) FTP sessions. Root cause is hardcode...

Easy RM to MP3 2.7.3.700 (.m3u/.pls/.smi/.wpl/.wax/.wvx/.ram) Exploit

Exploit for windows platform in category local exploits ===================================================================== Easy RM to MP3 2.7.3.700 .m3u/.pls/.smi/.wpl/.wax/.wvx/.ram Exploit ===================================================================== Date: 4 / 8 / 2010 Author: Oh Yaw...

Easy RM to MP3 2.7.3.700 - '.m3u' / '.pls' / '.smi' / '.wpl' / '.wax' / '.wvx' / '.ram' Local Overflow

Exploit Title: Easy RM to MP3 2.7.3.700 Local Buffer Overflow .m3u , .pls , .smi , .wpl , .wax , .wvx , .ram Date: 4 / 8 / 2010 Author: Oh Yaw Theng Version: 2.7.3.700 Tested on: Windows XP SP 1 CVE : N / A !/usr/bin/python This exploit works for all the file extensions mention above User just ne...

Easy RM to MP3 2.7.3.700 - .m3u .pls .smi .wpl .wax .wvx .ram Local Overflow

Easy RM to MP3 2.7.3.700 - .m3u .pls .smi .wpl .wax .wvx .ram Local Overflow Exploit Title: Easy RM to MP3 2.7.3.700 Local Buffer Overflow .m3u , .pls , .smi , .wpl , .wax , .wvx , .ram Date: 4 / 8 / 2010 Author: Oh Yaw Theng Version: 2.7.3.700 Tested on: Windows XP SP 1 CVE : N / A...