Lucene search
K

86 matches found

0day.today
0day.today
added 2015/07/08 12:0 a.m.128 views

Grandstream GXV3275 SSH Key / Command Execution Vulnerability

Grandstream GXV3275 ships with a default root SSH key which could be used a backdoor. It also suffers from an issue where restricted commands can be leveraged to break out into a full shell. The Grandstream GXV3275 is an Android-based VoIP phone. Several vulnerabilities were found affecting this...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2015/07/08 12:0 a.m.27 views

Grandstream GXV3275 SSH Key / Command Execution

The Grandstream GXV3275 is an Android-based VoIP phone. Several vulnerabilities were found affecting this device. The device ships with a default root SSH key, which could be used as a backdoor: /system/root/.ssh cat authorizedkeys Public key portion is: ssh-rsa...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2015/07/08 12:0 a.m.40 views

Grandstream GXV3275 < 1.0.3.30 - Multiple Vulnerabilities

The Grandstream GXV3275 is an Android-based VoIP phone. Several vulnerabilities were found affecting this device. The device ships with a default root SSH key, which could be used as a backdoor: /system/root/.ssh cat authorizedkeys Public key portion is: ssh-rsa...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2015/01/16 12:0 a.m.4 views

PT-2015-3735 · Red Hat · Red Hat Cloudforms

Name of the Vulnerable Software and Affected Versions: Red Hat CloudForms 3.1 Management Engine CFME version 5.3 Description: The issue concerns the customization template in Red Hat CloudForms, which uses a default password for the root account when no password is specified for a new image. This...

10CVSS8.9AI score0.02946EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2015/01/14 7:41 p.m.4 views

CFME: default fallback password in customization_templates.yml

It was found that the CloudForms Management Engine customization template used a default root password for newly created images if no root password was specified...

10CVSS7.3AI score0.02946EPSS
Exploits0References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

MobileIron Virtual Smartphone Platform Privilege Escalation Exploit

No description provided by source. MobileIron Virtual Smartphone Platform Privilege Escalation Exploit 0day ======================================================================== The MobileIron Virtual Smartphone Platform is the first solution to combine data-driven smartphone and tablet...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.35 views

Sagem Router Fast 3304/3464/3504 Telnet Authentication Bypass

No description provided by source. !/home/bin/python Remote Exploit: SAGEM ROUTER FAST 3304/3464/3504 - Telnet Authentication bypass Date: 15-August-2011 Author: Elouafiq Ali Version: 3304-V1 / 3304-V2 / 3464 / 3504 Tested on: Linux Ubuntu 11.04, Linux Backtrack 5 Tested Router: SAGEM FAST 3304-V...

7.1AI score
Exploits0
CISA
CISA
added 2014/02/21 12:0 a.m.11 views

Cisco UCS Director Default Credentials Vulnerability

Cisco has released a security advisory to address a vulnerability in Cisco Unified Computing System UCS Director. This vulnerability could allow an unauthenticated, remote attacker to take complete control of the affected device due to a default root user account created during installation...

6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/03/01 12:0 a.m.23 views

Scientific Linux Security Update : pki-core on SL6.x i386/x86_64 (20130221)

Note: The Certificate Authority component provided by this advisory cannot be used as a standalone server. It is installed and operates as a part of Identity Management the IPA component in Scientific Linux. Multiple cross-site scripting flaws were discovered in Certificate System. An attacker...

4.3CVSS5.2AI score0.01227EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/02/20 4:18 p.m.22 views

Moderate: Red Hat Security Advisory: pki-core security, bug fix and enhancement update

Updated pki-core packages that fix multiple security issues, two bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...

4.3CVSS5.6AI score0.01227EPSS
Exploits0References5
Cisco
Cisco
added 2012/01/18 4:0 p.m.23 views

Cisco IP Video Phone E20 Default Root Account

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

10CVSS6.3AI score0.02072EPSS
Exploits0References1
exploitpack
exploitpack
added 2011/08/16 12:0 a.m.35 views

Sagem Router Fast 330434643504 - Telnet Authentication Bypass

Sagem Router Fast 330434643504 - Telnet Authentication Bypass !/home/bin/python Remote Exploit: SAGEM ROUTER FAST 3304/3464/3504 - Telnet Authentication bypass Date: 15-August-2011 Author: Elouafiq Ali Version: 3304-V1 / 3304-V2 / 3464 / 3504 Tested on: Linux Ubuntu 11.04, Linux Backtrack 5 Teste...

0.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2011/06/02 8:55 p.m.2 views

CVE-2011-1623

Cisco Media Processing Software before 1.2 on Media Experience Engine MXE 5600 devices has a default root password, which makes it easier for context-dependent attackers to obtain access via 1 the local console, 2 an SSH session, or 3 a TELNET session, aka Bug ID CSCto77737...

10CVSS5.5AI score0.01571EPSS
Exploits0References6
Prion
Prion
added 2011/06/02 8:55 p.m.13 views

Default credentials

Cisco Media Processing Software before 1.2 on Media Experience Engine MXE 5600 devices has a default root password, which makes it easier for context-dependent attackers to obtain access via 1 the local console, 2 an SSH session, or 3 a TELNET session, aka Bug ID CSCto77737...

10CVSS6.9AI score0.01571EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2011/06/02 8:0 p.m.22 views

CVE-2011-1623

Cisco Media Processing Software before 1.2 on Media Experience Engine MXE 5600 devices has a default root password, which makes it easier for context-dependent attackers to obtain access via 1 the local console, 2 an SSH session, or 3 a TELNET session, aka Bug ID CSCto77737...

6.4AI score0.01571EPSS
Exploits0References5
Cvelist
Cvelist
added 2009/05/21 3:0 p.m.17 views

CVE-2009-1745

Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, has a default root password hash, and permits password-based root logins over SSH, which makes it easier for remote attackers to obtain access...

6.8AI score0.02146EPSS
Exploits0References3
NVD
NVD
added 2008/11/17 6:18 p.m.9 views

CVE-2008-5104

Ubuntu 6.06 LTS, 7.10, 8.04 LTS, and 8.10, when installed as a virtual machine by 1 python-vm-builder or 2 ubuntu-vm-builder in VMBuilder 0.9 in Ubuntu 8.10, have ! exclamation point as the default root password, which allows attackers to bypass intended login restrictions...

7.2CVSS6.5AI score0.00471EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2008/11/17 6:18 p.m.35 views

CVE-2008-5104

Ubuntu 6.06 LTS, 7.10, 8.04 LTS, and 8.10, when installed as a virtual machine by 1 python-vm-builder or 2 ubuntu-vm-builder in VMBuilder 0.9 in Ubuntu 8.10, have ! exclamation point as the default root password, which allows attackers to bypass intended login restrictions...

7.2CVSS5.9AI score0.00471EPSS
Exploits1References1
CVE
CVE
added 2008/11/17 6:0 p.m.42 views

CVE-2008-5104

CVE-2008-5104 describes a default root password vulnerability in VMBuilder-based workflows on Ubuntu 6.06 LTS/7.10/8.04 LTS/8.10 when VM images are created with VMBuilder 0.9 in Ubuntu 8.10 (via python-vm-builder or ubuntu-vm-builder). The root password is set to !, allowing an attacker with acce...

7.2CVSS6.5AI score0.00471EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2008/11/17 6:0 p.m.19 views

CVE-2008-5104

Ubuntu 6.06 LTS, 7.10, 8.04 LTS, and 8.10, when installed as a virtual machine by 1 python-vm-builder or 2 ubuntu-vm-builder in VMBuilder 0.9 in Ubuntu 8.10, have ! exclamation point as the default root password, which allows attackers to bypass intended login restrictions...

6.5AI score0.00471EPSS
Exploits1References6
Rows per page
Query Builder