6479 matches found
Debian DSA-977-1 : heimdal - several vulnerabilities
Two vulnerabilities have been discovered in heimdal, a free implementation of Kerberos 5. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CVE-2006-0582 Privilege escalation in the rsh server allows an authenticated attacker to overwrite arbitrary file...
Debian DSA-1049-1 : ethereal - several vulnerabilities
Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-1932 The OID printing routine is susceptible to an off-by-one error. - CVE-2006-1933 The UMA and BER...
Debian DSA-1059-1 : quagga - several vulnerabilities
Konstantin Gavrilenko discovered several vulnerabilities in quagga, the BGP/OSPF/RIP routing daemon. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-2223 Remote attackers may obtain sensitive information via RIPv1 REQUEST packets even if the quagga...
FiWin SS28S Wi-Fi phones backdoor account
Phone has debug console with telnet access and hardcoded account 1 with password 1...
CVE-2006-5038
The FiWin SS28S WiFi VoIP SIP/Skype Phone, firmware version 010207, has a hard-coded username and password, which allows remote attackers to gain administrative access via telnet...
CVE-2006-4832
Buffer overflow in the telnet service in Verso NetPerformer FRAD ACT SDM-95xx 7.xx R1 and earlier, SDM-93xx 10.x.x R2 and earlier, and SDM-92xx 9.x.x R1 and earlier allows remote attackers to cause a denial of service reboot and possibly execute arbitrary code via a long username...
CVE-2006-4832
Buffer overflow in the telnet service in Verso NetPerformer FRAD ACT SDM-95xx 7.xx R1 and earlier, SDM-93xx 10.x.x R2 and earlier, and SDM-92xx 9.x.x R1 and earlier allows remote attackers to cause a denial of service reboot and possibly execute arbitrary code via a long username...
netperformer.txt
NetPerformer Frame Relay Access Device FRAD ACT Multiple Vulnerabilities .. Release Date : 8 July 2006 Product Affected : - NetPerformer FRAD ACT SDM-95xx version 7.xx R1, earlier, and possibly newer - NetPerformer FRAD ACT SDM-93xx version 10.x.x R2, earlier, and possibly newer - NetPerformer FR...
[Full-disclosure] NetPerformer FRAD ACT Multiple Vulnerabilities
NetPerformer Frame Relay Access Device FRAD ACT Multiple Vulnerabilities .= Arif Jatmoko =. Release Date : 8 July 2006 Product Affected : - NetPerformer FRAD ACT SDM-95xx version 7.xx R1, earlier, and possibly newer - NetPerformer FRAD ACT SDM-93xx version 10.x.x R2, earlier, and possibly newer -...
Verso NetPerformer Frame Relay Access Device - Telnet Buffer Overflow
Verso NetPerformer Frame Relay Access Device - Telnet Buffer Overflow source: https://www.securityfocus.com/bid/19989/info Verso NetPerformer Frame Relay Access Device FRAD is prone to a remotely exploitable buffer overflow in the telnet service. A remote attacker can exploit this issue to execut...
Verso NetPerformer Frame Relay Access Device - Telnet Buffer Overflow
source: https://www.securityfocus.com/bid/19989/info Verso NetPerformer Frame Relay Access Device FRAD is prone to a remotely exploitable buffer overflow in the telnet service. A remote attacker can exploit this issue to execute arbitrary code on the affected device. Failed exploit attempts will...
Multiple NetPerformer FRAD ACT security vulnerabilities
Buffer overflow on oversized telnet username, LAND attack vulnerability...
mercur-login.pl.txt
!/usr/bin/perl Tested on Windows 2k Sp4 Italian and English version and Win XP Pro SP2 Italian and English version Perl script based on Sami FTP server remote exploit by Critical Security http://www.securityfocus.com/bid/17138 acaro at jervus.it use IO::Socket::INET; use Switch; if @ARGV 2 print...
Mercur MailServer 5.0 SP3 - 'IMAP' Remote Buffer Overflow (2)
!/usr/bin/perl Tested on Windows 2k Sp4 Italian and English version and Win XP Pro SP2 Italian and English version Perl script based on Sami FTP server remote exploit by Critical Security https://www.securityfocus.com/bid/17138 acaro at jervus.it use IO::Socket::INET; use Switch; if @ARGV 2 print...
VulnCheck KEV: CVE-2004-1464
Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell RSH, Secure Shell SSH, and in some cases, Hypertext Transport Protocol HTTP access to the Cisco device...
Dish dish intrusion issues face-to-face-the vulnerability warning-the black bar safety net
Dish dish intrusion issues face-to-face I was too lazy to go to school when you've never done the job to only one of the advantages of the love want to the problem in order to IT168, the development had to move to even have stainless candle of stupid hands. From that about itI found a lot of peop...
sipXtapi.txt
!/usr/bin/perl Remote Buffer Overflow in sipXtapi bad char 0x00 0x09 0x0a 0x0d 0x20 use IO::Socket; use strict; print "\n\n"; print "sipXtapi original Exploit by Michael Thumann added a real shellcode by acaro\n\n"; print "tested on sipXphone 2.6.0.27 read the code for ret address\n\n"; if not...
SIPfoundry sipXtapi (CSeq) Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ========================================================= SIPfoundry sipXtapi CSeq Remote Buffer Overflow Exploit ========================================================= !/usr/bin/perl Remote Buffer Overflow in sipXtapi bad char 0x00 0x09...
filecopa101.txt
!/usr/bin/perl -w bad char 0x00 0x0a tested on win00 SP4 English on filecopa ftp server 6/4/2006 version use Net::FTP; $target = $ARGV0 || die "usage:$0 "; my $user = "test"; my $pass = "test"; $shellcode = "\xd9\xee\xd9\x74\x24\xf4\x5b\x31\xc9\xb1\x5e\x81\x73\x17\xe0\x66"...
SIPfoundry sipXtapi - 'CSeq' Remote Buffer Overflow
!/usr/bin/perl Remote Buffer Overflow in sipXtapi bad char 0x00 0x09 0x0a 0x0d 0x20 use IO::Socket; use strict; print "\n\n"; print "sipXtapi original Exploit by Michael Thumann added a real shellcode by acaro\n\n"; print "tested on sipXphone 2.6.0.27 read the code for ret address\n\n"; if not...