LG Electronics LG3001f router

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Issue: ----------------------------------------------------------------| LG Electronics LR3001f is a WAN router. It comes with no access lists defined, which enables administrator to connect both to port 23/tcp telnet and 80/tcp www server. However, I...

LG Electronics LG3100p router

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Issue: ----------------------------------------------------------------| LG Electronics LR3100p is a small WAN router, with two WAN interfaces and one Ethernet. It comes with no access lists defined, which enables administrator to connect to port 23/t...

Avirt Gateway Suite Telnet Proxy Arbitrary Command Execution

It was possible to connect to the remote telnet server without a password and to get a command prompt with the 'DOS' command. And attacker may use this flaw to get access to your system. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11096; scriptversion "1.21";...

Advisory: Multiple 602Pro LAN SUITE 2002 Denial of Service Attacks

Date: August 3, 2002 Author: Stan Bubrouski Product: 602Pro LAN SUITE 2002 Version: 2002 Vendor: Software602, Inc. Summary: Denial of Service attacks in webserver and telnet proxy Description: There are two denial of service attacks in 602Pro LAN SUITE 2002 for windows. The problems are described...

602Pro LAN SUITE 2002 - Telnet Proxy localhost Denial of Service

602Pro LAN SUITE 2002 - Telnet Proxy localhost Denial of Service source: https://www.securityfocus.com/bid/5416/info The 602Pro LAN SUITE 2002 Telnet Proxy is reported to be prone to a denial of service condition. It is possible for proxy users to use the loopback interface to connect to localhos...

602Pro LAN SUITE 2002 - Telnet Proxy localhost Denial of Service

source: https://www.securityfocus.com/bid/5416/info The 602Pro LAN SUITE 2002 Telnet Proxy is reported to be prone to a denial of service condition. It is possible for proxy users to use the loopback interface to connect to localhost. If a large number of these connections are made concurrently, ...

Phenoelit Advisory 0815 ++ /+ HP ProCurve

Phenoelit Advisory wir-haben-auch-mal-was-gefunden 0815 +-+- Authors FX [email protected] kim0 [email protected] Zet [email protected] Phenoelit Group http://www.phenoelit.de Advisory http://www.phenoelit.de/stuff/HPProCurve.txt Affected Products Hewlett Packard HP ProCurve Switch Tested on HP J4121A...

HP ProCurve Switch 4000M - SNMP Write Denial of Service

source: https://www.securityfocus.com/bid/5336/info An issue has been reported with the HP ProCurve 4000M Switch. An attacker with SNMP write access to the device may write to the SNMP variable .iso.3.6.1.4.1.11.2.36.1.1.2.1.0. If more than 85 characters are written to this variable, the device...

@stake Advisory: Multiple Vulnerabilities with Pingtel xpressa SIP Phones

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake Inc. www.atstake.com Security Advisory Advisory Name: Multiple Vulnerabilities with Pingtel xpressa SIP Phones Release Date: 07/12/2002 Hardware: Pingtel xpressa SIP VoIP phones model PX-1 Software: Versions 1.2.5-1.2.7.4 Platform: VxWorks...

GoAhead Web Server 2.1.x - URL Encoded Slash Directory Traversal

GoAhead Web Server 2.1.x - URL Encoded Slash Directory Traversal source: https://www.securityfocus.com/bid/5197/info A vulnerability has been reported for GoAhead WebServer 2.1. Reportedly, it is possible to launch directory traversal attacks against GoAhead WebServer. It is possible for remote...

CVE-2002-0545

Cisco Aironet before 11.21 with Telnet enabled allows remote attackers to cause a denial of service reboot via a series of login attempts with invalid usernames and passwords...

CVE-2002-0350

HP Procurve Switch 4000M running firmware C.08.22 and C.09.09 allows remote attackers to cause a denial of service via a port scan of the management IP address, which disables the telnet service...

CVE-2002-0020

CVE-2002-0020 affects the Telnet server in Windows 2000 and Interix 2.2, where a buffer overflow in the handling of protocol options allows a remote attacker to execute arbitrary code. The vulnerability is exploitable remotely, without authentication, via crafted telnet sessions. Advisories refer...

CVE-2002-0020

Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed protocol options...

CVE-2001-0797

CVE-2001-0797 is a buffer overflow in the System V–derived /bin/login (affecting login/telnetd implementations such as TTYPROMPT) triggered by a large number of arguments, enabling remote arbitrary-command execution. The vulnerability affects various System V based OSes and can be exploited via s...

AnalogX SimpleServer:WWW 1.16 - Web Server Buffer Overflow

// source: https://www.securityfocus.com/bid/5006/info Reportedly, version 1.16 of SimpleServer:WWW is prone to a buffer overflow vulnerability. A remote attacker is able to connect to SimpleServer via telnet and makes an invalid request to the server. This will cause the web server to crash and...

Cisco CatOS Telnet Option Handling Overflow (CSCdw19195)

Some Cisco Catalyst switches, running certain CatOS based software releases, have a vulnerability wherein a buffer overflow in the telnet option handling can cause the telnet daemon to crash and result in a switch reload. This vulnerability can be exploited to initiate a denial of service DoS...

Nortel/Bay Networks Default Password

The remote switch/routers uses the default password. This means that anyone who has downloaded a user manual can telnet to it and gain administrative access. This script was written by Rui Bernardino See the Nessus Scripts License for details Changes by Tenable: - only attempt to login if the...

Cisco Catalyst Telnetd Authentication Failure Saturation Memory Leak Remote DoS (CSCds66191)

A series of failed telnet authentication attempts to the switch can cause the Catalyst Switch to fail to pass traffic or accept management connections until the system is rebooted or a power cycle is performed. All types of telnet authentication are affected, including Kerberized telnet, and AAA...

Shiva LanRover Blank Password

The Shiva LanRover has no password set for the root user account. An attacker is able to telnet to this system and gain access to any phone lines attached to this device. Additionally, the LanRover can be used as a relay point for further attacks via the telnet and rlogin functionality available...