Schneider Electric Modicon M340 PLC Station P34模块Web Servers安全漏洞

漏洞详情：Schneider Electric Modicon M340 PLC Station P34 module是法国施耐德电气（Schneider Electric）公司的一款可编程控制器。Schneider Electric Modicon M340 PLC Station P34模块中存在安全漏洞。远程攻击者可利用该漏洞获取敏感信息，在Web服务器进程上下文中执行任意代码，绕过身份验证机制，获取受影响设备的访问权限。漏洞类型远程利用影响硬编码身份认证是远程代码执行本地文件包含否目录遍历/文件篡改远程代码包含是远程代码执行/拒绝服务攻击跨站脚本攻击是获取敏感信息影响设备版本：...

Samsung Flaw Lets Hacker Easily Take Control of Your Galaxy Mobile Remotely

More than 600 Million users of Samsung Galaxy smartphones, including the newly released Galaxy S6, are potentially vulnerable to a software bug that allows hackers to secretly monitor the phone's camera and microphone, read text messages and install malicious apps. The vulnerability is due to a...

Lenovo ThinkPad series computers was traced to multiple security vulnerabilities-vulnerability warning-the black bar safety net

Recently, security firm IOActive at the Lenovo Series of computers found a security vulnerability, the attacker may be on the computers of legitimate applications replaced with malicious app and you can remotely execute malicious instructions. IOActive security researcher in the Bulletin elaborat...

Barracuda Web Interface Arbitrary Command Injection Vulnerability

Barracuda is an umbrella term for a family of hard disk drives. An arbitrary command injection vulnerability exists in the Barracuda web interface. The vulnerability could be exploited to allow an attacker to execute arbitrary commands on the affected device...

D-Link DIR Multiple Devices Default Credentials (HTTP)

The remote D-Link DIR device is using known default credentials. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Remote Password Disclosure Vulnerability in RXS-3211 IP Camera + others

-==Description==- The RXS-3211 IP camera, among others, is vulnerable to remote password disclosure, which can be exploited by an unauthenticated attacker with a single UDP packet. The problem exists in the camera management protocol used by the devices, which sends the administrator password and...

Mandriva Update for opensc MDVSA-2008:183 (opensc)

Check for the Version of opensc OpenVAS Vulnerability Test Mandriva Update for opensc MDVSA-2008:183 opensc Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Packeteer PacketShaper 7.x - Web Interface Remote Denial of Service

Packeteer PacketShaper 7.x - Web Interface Remote Denial of Service source: https://www.securityfocus.com/bid/24388/info Packeteer PacketShaper is prone to a remote denial-of-service vulnerability because the application's web interface fails to properly handle unexpected requests. Successfully...

Packeteer PacketShaper 7.x - Web Interface Remote Denial of Service

source: https://www.securityfocus.com/bid/24388/info Packeteer PacketShaper is prone to a remote denial-of-service vulnerability because the application's web interface fails to properly handle unexpected requests. Successfully exploiting this issue allows remote, authenticated attackers to reboo...

Sony Ericsson P900 Beamer - Malformed File Name Handling Denial of Service

source: https://www.securityfocus.com/bid/13782/info Sony Ericsson P900 handset is affected by a remote denial of service vulnerability. This issue arises because the application fails to perform boundary checks prior to copying user-supplied data into a finite sized buffer. The vulnerability...

CERT Advisory CA-2003-15 Cisco IOS Interface Blocked by IPv4 Packet

-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2003-15 Cisco IOS Interface Blocked by IPv4 Packet Original release date: July 16, 2003 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected All Cisco devices running Cisco IOS...

GlobalSunTech Access Point GL2422AP-0T - Information Disclosure

GlobalSunTech Access Point GL2422AP-0T - Information Disclosure // source: https://www.securityfocus.com/bid/6100/info An information disclosure vulnerability has been discovered in GlobalSunTech access points. It has been reported that a remote attacker is able to retrieve sensitive information...

Cisco IOS vulnerable to denial of service via Cisco Discovery Protocol

Overview The Cisco IOS contains a denial-of-service vulnerability that allows nearby remote attackers to crash or temporarily disable affected network devices. Description The Cisco Internetwork Operating System IOS contains a vulnerability in its processing of Cisco Discovery Protocol CDP packet...

[CORE SDI ADVISORY] Cisco IOS HTTP server DoS

CORE SDI http://www.core-sdi.com Vulnerability Report For Cisco IOS Web Administration DoS Date Published: 2000-10-25 Advisory ID: CORE-20002510 Bugtraq ID: 1838 CVE CAN: None currently assigned. Title: Cisco IOS Web Administration Denial of Service Class: Denial of Service Remotely Exploitable:...

ecurity Advisory: Cisco IOS HTTP Server Query Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Cisco IOS HTTP Server Query Vulnerability Revision 1.0 For public release 2000 October 25 at 08:00 US/Pacific UTC+0700 Summary A defect in multiple releases of Cisco IOS software will cause a Cisco router or switch to halt and reload if the IOS HTTP service is...

Cisco IOS 12.0.2 - Syslog Crash

Cisco IOS 12.0.2 - Syslog Crash source: https://www.securityfocus.com/bid/675/info Cisco devices running classic IOS are reported prone to a denial of service vulnerability. The issue occurs when a vulnerable device receives and processes a UDP packet on UDP port 514 for syslog. This issue result...

PT-1999-1220 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: A network intrusion detection system IDS does not properly reassemble fragmented packets. This issue may lead to potential security risks, but specific details about affected device...