140 matches found
Netgear Wireless Cable Modem Gateway - Authentication Bypass / Cross-Site Request Forgery
Sense of Security - Security Advisory - SOS-11-011 Release Date. 20-Sep-2011 Last Update. - Vendor Notification Date. 22-Mar-2011 Product. NETGEAR Wireless Cable Modem Gateway CG814WG Affected versions. Hardware 1.03, Software V3.9.26 R14 verified, possibly others Severity Rating. High Impact...
NETGEAR Wireless Cable Modem Gateway Auth Bypass and CSRF
Exploit for hardware platform in category web applications Sense of Security - Security Advisory - SOS-11-011 Release Date. 20-Sep-2011 Last Update. - Vendor Notification Date. 22-Mar-2011 Product. NETGEAR Wireless Cable Modem Gateway CG814WG Affected versions. Hardware 1.03, Software V3.9.26 R14...
Cable Modem Termination System Authentication Bypass - Cisco Systems
Two issues are described in this security advisory. The first issue involves cable modems not manufactured by Cisco that allow a configuration file to be downloaded from an interface that is not connected to the network of the cable modem's service provider. This historical behavior allows an...
CVE-2010-2307
Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via 1 "//" multiple leading slash, 2 ../ dot dot sequences, and encoded dot dot sequences in a URL...
CVE-2010-2307
Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via 1 "//" multiple leading slash, 2 ../ dot dot sequences, and encoded dot dot sequences in a URL...
CVE-2010-2307
CVE-2010-2307 : Directory traversal flaw in the Motorola SURFBoard SBV6120E web server (firmware SBV6X2X-1.0.0.5-SCM-02-SHPC) allows remote attackers to read arbitrary files via multiple leading slashes, dot-dot sequences, or encoded dot-dot in a URL. Affected component is the web server handling...
Motorola SB5101 Hax0rware Event Reset Remote Overflow
Exploit for hardware platform in category dos / poc ===================================================== Motorola SB5101 Hax0rware Event Reset Remote Overflow ===================================================== !/usr/bin/perl Motorola SB5101 Hax0rware Event Reset Remote Overflow Tested on...
Motorola SB5101 - Hax0rware Event Reset Remote Overflow
!/usr/bin/perl Motorola SB5101 Hax0rware Event Reset Remote Overflow Tested on Hax0rware 1.1 R30, R32 and R39 Author: Dillon Beresford Date: 6/6/2010 Vendor: Motorola Corporation and SBHacker SBHacker has been notified of the vuln . Software Link: http://www.sbhacker.net/forum/index.php...
Motorola SURFBoard Cable Modem Directory Traversal
Exploit Title: Motorola SURFBoard Cable Modem Directory Traversal Date: 2010.06.03 Author: S2 Crew Hungary Software Link: - Version: Model name: SBV6120E, Firmware Name: SBV6X2X-1.0.0.5-SCM-02-SHPC Tested on: ^ CVE: - Code : The following urls get back the /etc/passwd file from the modem:...
Motorola SURFBoard Cable Modem Directory Traversal
Exploit for hardware platform in category local exploits ================================================== Motorola SURFBoard Cable Modem Directory Traversal ================================================== Exploit Title: Motorola SURFBoard Cable Modem Directory Traversal Date: 2010.06.03...
Motorola Surfboard Cable Modem - Directory Traversal
Motorola Surfboard Cable Modem - Directory Traversal Exploit Title: Motorola SURFBoard Cable Modem Directory Traversal Date: 2010.06.03 Author: S2 Crew Hungary Software Link: - Version: Model name: SBV6120E, Firmware Name: SBV6X2X-1.0.0.5-SCM-02-SHPC Tested on: ^ CVE: - Code : The following urls...
Motorola Surfboard Cable Modem - Directory Traversal
Exploit Title: Motorola SURFBoard Cable Modem Directory Traversal Date: 2010.06.03 Author: S2 Crew Hungary Software Link: - Version: Model name: SBV6120E, Firmware Name: SBV6X2X-1.0.0.5-SCM-02-SHPC Tested on: ^ CVE: - Code : The following urls get back the /etc/passwd file from the modem:...
CVE-2010-2026
The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allows remote attackers to bypass authentication, and reset the modem or replace the firmware, via a direct request to an unspecified page...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allow remote attackers to hijack the authentication of administrators for requests that 1 reset the modem, 2 erase the...
CVE-2010-2026
The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allows remote attackers to bypass authentication, and reset the modem or replace the firmware, via a direct request to an unspecified page...
CVE-2010-2082
The CVE-2010-2082 entry concerns the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem. Affected component: the web interface on firmware 2.0.2r1256-060303. Root cause: default administrator password (SAPassword) W2402 is known, enabling easier privileged access for remote attackers. Impact ...
CVE-2010-2082
The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 has a default administrative password aka SAPassword of W2402, which makes it easier for remote attackers to obtain privileged access...
CVE-2010-2026
The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allows remote attackers to bypass authentication, and reset the modem or replace the firmware, via a direct request to an unspecified page...
CVE-2010-2026
The CVE-2010-2026 entry applies to Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modems. The web interface (firmware 2.0.2r1256-060303) is vulnerable to cross-site request forgery (CSRF) and insufficient authentication, allowing remote attackers to bypass authentication and reset the modem or ...
CVE-2010-2025
Cisco WebSTAR DPC2100R2 cable modem (firmware 2.0.2r1256-060303) is affected by CSRF and insufficient authentication in its web interface, enabling remote attackers to hijack administrator actions such as resetting the modem, erasing or changing firmware, and altering the admin password via reque...