[TSI-ADV-1202] Polycom Web Management Interface O.S. Command Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===== Tempest Security Intelligence - Advisory 02 / 2012 ============ Polycom Web Management Interface O.S. Command Injection ------------------------------------------------------- Authors: - Joao Paulo Caldas Campello: - @jpcampello -...

Polycom Web Management Interface Directory Traversal

===== Tempest Security Intelligence - Advisory 01 / 2012 ================== Path Traversal on Polycom Web Management Interface -------------------------------------------------- Authors: - Heyder Andrade: - @heyderandrade - http://linkedin.com/in/heyderandrade - - Joao Paulo Caldas Campello: -...

Researchers spot router-based botnet worm

Researchers at DroneBL have spotted signs of a stealthy router-based botnet worm zdnet.com targeting routers and DSL modems. The worm, called “psyb0t,” has been circulating since at least January this year, infecting vulnerable embedded Linux devices such as the Netcomm NB5 ADSL modem and launchi...

Netgear embedded Linux for the SSL312 router DOS Vulnerability

No description provided by source. / / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2008-02-27 Affected Software: propietary CGI Affect...

Netgear embedded Linux for the SSL312 router DOS Vulnerability

Exploit for hardware platform in category dos / poc ============================================================== Netgear embedded Linux for the SSL312 router DOS Vulnerability ============================================================== / / / / / / / / / / / / / // / / / / / / / / / // / / / ...

Netgear SSL312 Router - Denial of Service

/ / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2008-02-27 Affected Software: propietary CGI Affected OS : Netgear embedded Linux for...

CVE-2006-1206

Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service connection slot exhaustion via a large number of connection attempts that exceeds the MAXUNAUTHCLIENTS defined value...

CVE-2006-1206

Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service connection slot exhaustion via a large number of connection attempts that exceeds the MAXUNAUTHCLIENTS defined value...

ecl-channel.adv

ECL Security R&D Privilege escalation vulnerabilities in W-Channel embedded linux +----------------------------------------------------------------+ Type: Local Impact: Critical Affected versions: all versions below v1.54 Product description: -------------------+ Read...

[ECL] WCI TC-IDE embedded linux vulnerabilities

ECL Security R&D Privilege escalation vulnerabilities in W-Channel embedded linux +----------------------------------------------------------------+ Type: Local Impact: Critical Affected versions: all versions below v1.54 Product description: -------------------+ Read...

Dynalink routers backdoor?

I was playing with a Dynalink RTA 230 http://www.dynalink.co.nz/products/rta230.htm, a linux based mips-cored adsl router. Looking at embedded linux system, i've found something like a backdoor: cat /etc/passwd admin:xxxxxobscuredxxxxx:0:0:Administrator:/:/bin/sh...