Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.333 views

Intersil (Boa) HTTPd Basic Authentication Password Reset

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Intersil Boa HTTPd Basic Authentication Password Reset', 'Description' = %q The Intersil extension in the Boa HTTP Server 0.93.x - 0.94.11 allows...

10CVSS7.4AI score0.68168EPSS
Exploits3
Circl
Circl
added 2018/05/29 3:50 p.m.25 views

CVE-2007-4915

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/intersilpassreset.rb 2025-02-06 03:13:38+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:25+00:00| seen|...

10CVSS5.7AI score0.68168EPSS
Exploits3References1
Metasploit
Metasploit
added 2012/06/17 2:14 a.m.200 views

Intersil (Boa) HTTPd Basic Authentication Password Reset

The Intersil extension in the Boa HTTP Server 0.93.x - 0.94.11 allows basic authentication bypass when the user string is greater than 127 bytes long. The long string causes the password to be overwritten in memory, which enables the attacker to reset the password. In addition, the malicious...

10CVSS0.1AI score0.68168EPSS
Exploits3
CVE
CVE
added 2007/09/17 5:0 p.m.122 views

CVE-2007-4915

The CVE-2007-4915 issue affects Boa 0.93.x to 0.94.11 with Intersil isl3893 extensions, where stack writes can overwrite memory locations used for string constants. This allows a remote attacker to change the admin password stored in memory through a long username in an HTTP Basic Authentication ...

10CVSS6.7AI score0.68168EPSS
Exploits3References8Affected Software1
Rows per page
Query Builder