VIA Technologies EPIA-E900 System Motherboard ETK_E900.sys SmartETK Driver Denial of Service Vulnerability

VIA Technologies EPIA-E900 system board is an embedded Pico-ITX motherboard from VIA Technologies.ETKE900.sys SmartETK driver is one of the drivers. A denial of service vulnerability exists in the ETKE900.sys SmartETK driver for the VIA Technologies EPIA-E900 system motherboard, which can be...

CVE-2018-20404

ETKE900.sys, a SmartETK driver for VIA Technologies EPIA-E900 system board, is vulnerable to denial of service attack via IOCTL 0x9C402048, which calls memmove and constantly fails on an arbitrary uncontrollable address, resulting in an eternal hang or a BSoD...

Code injection

ETKE900.sys, a SmartETK driver for VIA Technologies EPIA-E900 system board, is vulnerable to denial of service attack via IOCTL 0x9C402048, which calls memmove and constantly fails on an arbitrary uncontrollable address, resulting in an eternal hang or a BSoD...

CVE-2018-20404

CVE-2018-20404 affects the ETK_E900.sys SmartETK driver for VIA Technologies EPIA-E900 system boards. The vulnerability is triggered by IOCTL 0x9C402048, which calls memmove and may fail on an arbitrary, uncontrollable address, leading to an eternal hang or a blue screen (DoS). Exploitation detai...

CVE-2018-20404

ETKE900.sys, a SmartETK driver for VIA Technologies EPIA-E900 system board, is vulnerable to denial of service attack via IOCTL 0x9C402048, which calls memmove and constantly fails on an arbitrary uncontrollable address, resulting in an eternal hang or a BSoD...

Linksys E-Series TheMoon Remote Command Injection Exploit

Some Linksys E-Series Routers are vulnerable to an unauthenticated OS command injection. This vulnerability was used from the so called "TheMoon" worm. There are many Linksys systems that might be vulnerable including E4200, E3200, E3000, E2500, E2100L, E2000, E1550, E1500, E1200, E1000, E900. Th...

Linksys E-Series TheMoon Remote Command Injection

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Linksys E-Series TheMoon Remote Command Injection', 'Description' = %q Some Linksys E-Series Routers are vulnerable to an...

Linksys E-Series TheMoon Remote Command Injection

Some Linksys E-Series Routers are vulnerable to an unauthenticated OS command injection. This vulnerability was used from the so-called "TheMoon" worm. There are many Linksys systems that are potentially vulnerable, including E4200, E3200, E3000, E2500, E2100L, E2000, E1550, E1500, E1200, E1000,...

Linksys系列未明远程代码执行漏洞

No description provided by source. !/usr/bin/php ?php / Exploit for 0day linksys unauthenticated remote code execution vulnerability. As exploited by TheMoon worm; Discovered in the wild on Feb 13, 2013 by Johannes Ullrich. I was hoping this would stay under-wraps until a firmware patch could be...

Linksys E-Series Remote Code Execution

!/usr/bin/php ?php / Exploit for 0day linksys unauthenticated remote code execution vulnerability. As exploited by TheMoon worm; Discovered in the wild on Feb 13, 2013 by Johannes Ullrich. I was hoping this would stay under-wraps until a firmware patch could be released, but it appears the cat is...

Linksys E-series - Remote Code Execution

Linksys E-series - Remote Code Execution !/usr/bin/php ?php / Exploit for 0day linksys unauthenticated remote code execution vulnerability. As exploited by TheMoon worm; Discovered in the wild on Feb 13, 2013 by Johannes Ullrich. I was hoping this would stay under-wraps until a firmware patch cou...