Lucene search
+L

199 matches found

ATTACKERKB
ATTACKERKB
added 2015/02/13 2:59 a.m.4 views

CVE-2014-8385

Buffer overflow on Advantech EKI-1200 gateways with firmware before 1.63 allows remote attackers to execute arbitrary code via unspecified vectors...

10CVSS6.2AI score0.04045EPSS
Exploits0References2
Prion
Prion
added 2015/02/13 2:59 a.m.14 views

Buffer overflow

Buffer overflow on Advantech EKI-1200 gateways with firmware before 1.63 allows remote attackers to execute arbitrary code via unspecified vectors...

10CVSS8.7AI score0.04045EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2015/02/13 2:0 a.m.54 views

CVE-2014-8385

CVE-2014-8385 is a buffer overflow vulnerability in Advantech EKI-1200 series gateways (firmware prior to 1.63). The issue (CWE-122) can allow remote attackers to execute arbitrary code, as described in the ICS-CERT advisory. A patch has been released by Advantech to mitigate the vulnerability (f...

10CVSS8.3AI score0.04045EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/02/13 2:0 a.m.20 views

CVE-2014-8385

Buffer overflow on Advantech EKI-1200 gateways with firmware before 1.63 allows remote attackers to execute arbitrary code via unspecified vectors...

8.1AI score0.04045EPSS
Exploits0References1
CNVD
CNVD
added 2015/02/13 12:0 a.m.5 views

Unspecified Buffer Overflow Vulnerability in Advantech EKI-1200 Series

Advantech EKI-1200 Gateway is the EKI-1200 series Modbus data gateway product from Advantech China, which is mainly used to integrate Modbus/RTU and Modbus/ASCI serial devices into bi-directional gateways based on TCP/IP networks. An unspecified buffer overflow vulnerability exists in the Advante...

10CVSS8AI score0.04045EPSS
Exploits0References1
Core Security
Core Security
added 2015/02/09 12:0 a.m.518 views

Advantech EKI-1221D Buffer Overflow

None...

7AI score
Exploits0
securityvulns
securityvulns
added 2014/12/01 12:0 a.m.42 views

[CORE-2014-0009] - Advantech EKI-6340 Command Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Advantech EKI-6340 Command Injection 1. Advisory Information Title: Advantech EKI-6340 Command Injection Advisory ID: CORE-2014-0009 Advisory URL: http://www.coresecurity.com/advisories/advantech-eki-6340-command-injection Date...

9CVSS0.2AI score0.30947EPSS
Exploits5
securityvulns
securityvulns
added 2014/12/01 12:0 a.m.45 views

Advantech EKI-6340 code execution

Shell commands injection in Web interface...

9CVSS2.7AI score0.30947EPSS
Exploits5References1
exploitpack
exploitpack
added 2014/11/24 12:0 a.m.79 views

Advantech EKI-6340 - Command Injection

Advantech EKI-6340 - Command Injection Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Advantech EKI-6340 Command Injection 1. Advisory Information Title: Advantech EKI-6340 Command Injection Advisory ID: CORE-2014-0009 Advisory URL:...

9CVSS0.7AI score0.30947EPSS
Exploits5
Exploit DB
Exploit DB
added 2014/11/24 12:0 a.m.72 views

Advantech EKI-6340 - Command Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Advantech EKI-6340 Command Injection 1. Advisory Information Title: Advantech EKI-6340 Command Injection Advisory ID: CORE-2014-0009 Advisory URL: http://www.coresecurity.com/advisories/advantech-eki-6340-command-injection Date...

9CVSS6.6AI score0.30947EPSS
Exploits5
NVD
NVD
added 2014/11/20 1:55 p.m.16 views

CVE-2014-8387

cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi...

9CVSS7.1AI score0.30947EPSS
Exploits5References4
ATTACKERKB
ATTACKERKB
added 2014/11/20 1:55 p.m.5 views

CVE-2014-8387

cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi...

9CVSS6AI score0.30947EPSS
Exploits5References5
Prion
Prion
added 2014/11/20 1:55 p.m.25 views

Code injection

cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi...

9CVSS7.6AI score0.30947EPSS
Exploits5References4Affected Software1
Cvelist
Cvelist
added 2014/11/20 11:0 a.m.27 views

CVE-2014-8387

cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi...

7.1AI score0.30947EPSS
Exploits5References4
CVE
CVE
added 2014/11/20 11:0 a.m.63 views

CVE-2014-8387

Affected product/versions: Advantech EKI-6340 series (v2.05). Vulnerability: OS Command Injection via the web CGI (ping.cgi) caused by improper sanitization of the pinghost parameter; the vulnerability stems from the call_ping function in /usr/webui/webroot/cgi/utility.cgi, where shell metacharac...

9CVSS7.2AI score0.30947EPSS
Exploits5References4Affected Software2
0day.today
0day.today
added 2014/11/20 12:0 a.m.61 views

Advantech EKI-6340 2.05 Command Injection Vulnerability

Advantech EKI-6340 series is vulnerable to an OS command injection, which can be exploited by remote attackers to execute arbitrary code and commands, by using a non privileged user against a vulnerable CGI file. Advantech EKI-6340 Command Injection 1. Advisory Information Title: Advantech EKI-63...

9CVSS1.2AI score0.30947EPSS
Exploits5
Packet Storm
Packet Storm
added 2014/11/20 12:0 a.m.73 views

Advantech EKI-6340 2.05 Command Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Advantech EKI-6340 Command Injection 1. Advisory Information Title: Advantech EKI-6340 Command Injection Advisory ID: CORE-2014-0009 Advisory URL: http://www.coresecurity.com/advisories/advantech-eki-6340-command-injection Date...

9CVSS0.7AI score0.30947EPSS
Exploits5
Core Security
Core Security
added 2014/11/19 12:0 a.m.543 views

Advantech EKI-6340 Command Injection

1. Advisory Information Title: Advantech EKI-6340 Command Injection Advisory ID: CORE-2014-0009 Advisory URL: http://www.coresecurity.com/advisories/advantech-eki-6340-command-injection Date published: 2014-11-19 Date of last update: 2014-11-19 Vendors contacted: Advantech Release mode: User...

9CVSS0.1AI score0.30947EPSS
Exploits5
Symantec
Symantec
added 2014/09/24 12:0 a.m.256 views

GNU Bash CVE-2014-6271 Remote Code Execution Vulnerability

Description GNU Bash is prone to remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Advantech EKI-1320 1.98...

10CVSS1.5AI score0.99999EPSS
Exploits141References36Affected Software319
Rows per page
Query Builder