Lucene search
K

14 matches found

nvd
nvd
added 2017/06/08 4:29 p.m.32 views

CVE-2014-8687

Seagate Business NAS devices with firmware before 2015.00322 allow remote attackers to execute arbitrary code with root privileges by leveraging use of a static encryption key to create session tokens...

10CVSS9.8AI score0.43813EPSS
Exploits7References6
cvelist
cvelist
added 2017/06/08 4:0 p.m.34 views

CVE-2014-8687

Seagate Business NAS devices with firmware before 2015.00322 allow remote attackers to execute arbitrary code with root privileges by leveraging use of a static encryption key to create session tokens...

9.8AI score0.43813EPSS
Exploits7References6
cve
cve
added 2017/06/08 4:0 p.m.64 views

CVE-2014-8687

CVE-2014-8687 affects Seagate Business NAS devices with firmware older than 2015.00322. The vulnerability allows remote code execution with root privileges by exploiting a static encryption key used to create session tokens, enabling unauthenticated command execution via the CodeIgniter session c...

10CVSS9.7AI score0.43813EPSS
Exploits7References6Affected Software1
zdt
zdt
added 2017/03/23 12:0 a.m.166 views

Seagate Business NAS - Unauthenticated Remote Command Execution Exploit

Exploit for linux platform in category web applications This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class MetasploitModule 'Seagate Business NAS Unauthenticated Remote...

10CVSS9.2AI score0.71515EPSS
Exploits8
seebug
seebug
added 2015/09/06 12:0 a.m.20 views

Seagate Business NAS <= 2014.00319 - Pre-Authentication Remote Code Execution

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
added 2015/09/06 12:0 a.m.16 views

Seagate Business NAS 2014.00319 system/libraries/Session.php 代码执行

No description provided by source...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2015/03/04 12:0 a.m.56 views

Seagate Business NAS - Remote Command Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class MetasploitModule 'Seagate Business NAS Unauthenticated Remote Command Execution', 'Description' = %q Some Seagate Busine...

7.4AI score
Exploits0
zdt
zdt
added 2015/03/03 12:0 a.m.86 views

Seagate Business NAS Unauthenticated Remote Command Execution Exploit

Some Seagate Business NAS devices are vulnerable to command execution via a local file include vulnerability hidden in the language parameter of the CodeIgniter session cookie. The vulnerability manifests in the way the language files are included in the code on the login page, and hence is open ...

10CVSS9.2AI score0.71515EPSS
Exploits8
packetstorm
packetstorm
added 2015/03/02 12:0 a.m.63 views

Seagate Business NAS Unauthenticated Remote Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit4 'Seagate Business NAS Unauthenticated Remote Command Execution', 'Description' = %q Some Seagate Business NA...

6.8CVSS0.7AI score0.71515EPSS
Exploits8
metasploit
metasploit
added 2015/03/01 3:25 a.m.80 views

Seagate Business NAS Unauthenticated Remote Command Execution

Some Seagate Business NAS devices are vulnerable to command execution via a local file include vulnerability hidden in the language parameter of the CodeIgniter session cookie. The vulnerability manifests in the way the language files are included in the code on the login page, and hence is open ...

9.8CVSS9.5AI score0.71515EPSS
Exploits8
zdt
zdt
added 2015/03/01 12:0 a.m.89 views

Seagate Business NAS <= 2014.00319 - Pre-Authentication Remote Code Execution (0day)

Some Seagate Business NAS devices are vulnerable to command execution via a local file include vulnerability hidden in the language parameter of the CodeIgniter session cookie. The vulnerability manifests in the way the language files are included in the code on the login page, and hence is open ...

10CVSS9.2AI score0.71515EPSS
Exploits8
packetstorm
packetstorm
added 2015/03/01 12:0 a.m.49 views

Seagate Business NAS 2014.00319 Remote Code Execution

!/usr/bin/env python Seagape ======= Seagate Business NAS pre-authentication remote code execution exploit as root user. by OJ Reeves @TheColonial - for full details please see https://beyondbinary.io/advisory/seagate-nas-rce/ Usage ===== seagape.py -c ua - ip : ip or host name of the target NAS ...

6.4CVSS9.7AI score0.43813EPSS
Exploits7
exploitpack
exploitpack
added 2015/03/01 12:0 a.m.24 views

Seagate Business NAS 2014.00319 - Remote Code Execution

Seagate Business NAS 2014.00319 - Remote Code Execution !/usr/bin/env python Seagape ======= Seagate Business NAS pre-authentication remote code execution exploit as root user. by OJ Reeves @TheColonial - for full details please see https://beyondbinary.io/advisory/seagate-nas-rce/ Usage =====...

8.1AI score
Exploits0
exploitdb
exploitdb
added 2015/03/01 12:0 a.m.64 views

Seagate Business NAS 2014.00319 - Remote Code Execution

!/usr/bin/env python Seagape ======= Seagate Business NAS pre-authentication remote code execution exploit as root user. by OJ Reeves @TheColonial - for full details please see https://beyondbinary.io/advisory/seagate-nas-rce/ Usage ===== seagape.py -c ua - ip : ip or host name of the target NAS ...

7.4AI score
Exploits0
Rows per page
Query Builder