631 matches found
Riorey RIOS Hardocded Password
Title: Riorey "RIOS" Hardcoded Password Vulnerability Severity: High Full root access to the device Date: 07 October 2009 Versions Affected: RIOS 4.6.6 , 4.7.0 possibly others Discovered on: 25 July 2009 Vendor URL: www.riorey.com Author: Marek Kroemeke Overview: Riorey DDoS mitigation appliences...
Fedora 9 : xterm-238-1.fc9 (2009-0059)
This update fixes the following security issue: CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF aka \n characters surrounding a command name within a Device Control Request Status String DECRQSS escape sequence in a text file, a related...
xterm: arbitrary command injection
CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF aka \n characters surrounding a command name within a Device Control Request Status String DECRQSS escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071...
Fedora Core 9 FEDORA-2009-0059 (xterm)
The remote host is missing an update to xterm announced via advisory FEDORA-2009-0059. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Debian GNU/Linux XTERM (DECRQSS/comments) Weakness Vulnerability
Exploit for linux platform in category local exploits ================================================================ Debian GNU/Linux XTERM DECRQSS/comments Weakness Vulnerability ================================================================ Package: xterm Version: 222-1etch2 Severity: grave...
Crlf injection
CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF aka \n characters surrounding a command name within a Device Control Request Status String DECRQSS escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071...
CVE-2008-2383
CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF aka \n characters surrounding a command name within a Device Control Request Status String DECRQSS escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071...
[Full-disclosure] Yoggie Pico Pro Remote Code Execution
This vulnerability affects the Yoggie Pico Pro and most certainly the Yoggie Pico, due to them being effectively identical security appliance. They expose a 'ping' function in their web interface for diagnostic purposes, which passes the IP/hostname given directly to ping in the form of 'ping -c ...
Netgear WG602 Accesspoint vulnerability
KHAMSIN Security News KSN Reference: 2004-06-03 0001 TIP --------------------------------------------------------------------------- Title ----- The Netgear WG602 Accesspoint contains an undocumented administrative account. Date ---- 2004-06-03 Description ----------- The webinterface which is...
pam_console bug
When accepting luser console login, pamconsole called by /bin/login tries to be user-friendly, doing several chowns on devices like login tty and corresponding vcsa device, as well as other interesting devices: fd, audio devices dsp, mixer, audio, midi, sequencer, cdrom, streamer/zip drive device...
PT-2010-5695 · Suse +2 · Suse Linux Enterprise Kernel-Kdumppae-Debuginfo +3
Name of the Vulnerable Software and Affected Versions: SUSE Linux Enterprise kernel-vmipae-debuginfo affected versions not specified SUSE Linux Enterprise kernel-kdumppae-debuginfo affected versions not specified Linux kernel versions prior to 2.6.36.2 Description: The issue involves multiple...