Cisco 6509 switch telnet vulnerability

A vulnerability has been found on Cisco 6509 switches. The vulnerability was found to work on 2 different Cisco 6509 switches running CATOS 5.42 and 5.52. The vulnerability can lead to information and commands being exectued on the remote switch from the login prompt. Commands can be exectued at...

Cisco Catalist unauthorized access

telnet requiest with specific structure causes command execution without authentication...

Pine <= 4.56 Remote Buffer Overflow Exploit

Exploit for linux platform in category remote exploits =========================================== Pine eip/ebp this can actually be "bruteforced" I didn't show this since this is a PoC and uses "exact offsets" All u do is supply multiple charsets and overwrite larger areas of memory This makes...

ACME-mitel.txt

There is an interesting bug in a Mitel's servers for Voice over IP that allows to discover the numbers called and the numbers calling trought this dhcp server. This server is configurable via http interface and via telnet; in this case, if there is a call at moment of login/pass request, I've not...

Cisco Aironet AP1100 fails to provide universal login error messages thereby disclosing validity of user account

Overview A vulnerability in the Cisco Aironet 1100 Series Access Point may allow a remote attacker to discover valid accounts on the access point. Description Cisco describes the Aironet 1100 Series Access Point as, "an affordable and upgradable 802.11b wireless LAN WLAN solution, setting the...

OptiSwitch remote root compromise

Hello bugtraq : I've found bug in OptiSwitch 400 and 800 series, maybe another series : So abou t: then you connecting to the switch via telnet or console you may gain root acc ess pressing Crtl+C crcr so you will : Ok here is detailed information... Manufactor: MRV Communications, Inc...

Buffer overflow in ArgoSoft FTP Server

Product: ArGoSOft FTP Server Version: 1.22 other ? OffSite: http://www.argosoft.com/ Problem: Remote buffer overflow -------------------------------------------------------------- ArGoSOft FTP Server - FTP server for Windows. He is exposed to attack. The server does not process the input data...

CVE-2003-1069

The Telnet daemon in.telnetd for Solaris 2.6 through 9 allows remote attackers to cause a denial of service CPU consumption by infinite loop...

AudixShell.txt

This vulnerability is dedicated to my mother, who passed away on April 7, 2003. Mom, may God be with you. Avaya, a manufacturer of telecommunications products, makes a voicemail system called Intuity Audix. This system is based on a Novell licensed version of Unixware v2.1.3 by SCO. The one used...

Cisco Security Advisory: Cisco ONS15454, ONS15327, ONS15454SDH, and ONS15600 Nessus Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco ONS15454, ONS15327, ONS15454SDH, and ONS15600 Nessus Vulnerabilities Revision 1.0 For Public Release 2003 May 01 at 1600 UTC GMT ---------------------------------------------------------------------- Contents Summary...

Multiple DoS vulnerabilities in Cisco ONS

Multiple bugs in FTP, telnet, etc...

Microsoft Windows 2000NT 4 - RPC Locator Service Remote Overflow

Microsoft Windows 2000NT 4 - RPC Locator Service Remote Overflow / rpcexp.c RPC LOCATOR Exploit Autor: Marcin Wolak mail: [email protected] Last update: 30 march 2003 / / About Compilation: What You need to compile rpcexp.c ? 1. MS Platform SDK August SDK is sufficient. 2. Compilator f.e. MS Visual...

CVE-2002-0545

Cisco Aironet before 11.21 with Telnet enabled allows remote attackers to cause a denial of service reboot via a series of login attempts with invalid usernames and passwords...

CVE-2001-1291

The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing...

CVE-2001-1291

The CVE-2001-1291 entry concerns the telnet server on 3Com PS40 SuperStack II hardware that does not delay or disconnect after incorrect username/password attempts, enabling easier brute‑force access. Connected PT-2001-2418 notes affected versions are not specified, and there is no documented fix...

CVE-2002-0545

Cisco Aironet before 11.21 with Telnet enabled is vulnerable to a denial-of-service via rapid login attempts with invalid usernames/passwords, which can reboot the device. The CVE description and NASL entry corroborate a remote DoS by targeting Telnet login handling; no explicit patch/version rem...

CVE-2002-1558

Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote attackers to gain privileges by connecting to the account via Telnet...

Multi-Tech ProxyServers ship with null password for administrative access

Overview Some versions of the Multi-Tech ProxyServer products ship without a default password for the administrative interface. Description Some versions of the Multi-Tech ProxyServer products ships without a default password for the administrative interface permitting unauthenticated access via...

CVE-2002-1558

Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote attackers to gain privileges by connecting to the account via Telnet...

CVE-2002-1558

Cisco ONS15454 and ONS15327 running ONS before 3.4 expose a non-modifiable VxWorks system account within the TCC, TCC+ and XTC, enabling remote privilege escalation by Telnet. Affected product families: Cisco ONS. Root cause: account cannot be changed or disabled, allowing non-authenticated or lo...