21 matches found
EUVD-2004-2044
Malware in sbrugna...
EUVD-2004-2042
Malware in sbrugna...
EUVD-2004-2043
Malware in sbrugna...
EUVD-2004-2040
Malware in sbrugna...
eSeSIX Thintune Thin Client Multiple Vulnerabilities
Thintune is a series of thin client appliances sold by eSeSIX GmbH, Germany. They offer ICA, RDP, X11 and SSH support based on a customized Linux platform. Multiple security vulnerabilities have been found, one of them is a backdoor password 'jstwo' allowing complete access to the system. OpenVAS...
CVE-2004-2050
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell...
CVE-2004-2050
CVE-2004-2050 concerns eSeSIX Thintune Thin Client firmware 2.4.38 and earlier. Local users can gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the hard-coded password maertsJ in lshell, enabling a local privilege escalation. OpenVAS notes a backdoor password (jstwo) in Thintune, indi...
CVE-2004-2048
radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access...
CVE-2004-2049
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier store sensitive usernames and passwords in cleartext in configuration files for the keeper library, which allows attackers to gain access...
CVE-2004-2052
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier accept any password that begins with the actual password, which makes it easier for users to conduct brute force password guessing...
CVE-2004-2048
The CVE-2004-2048 entry concerns eSeSIX Thintune Thin Client devices. A radmin service starts a process on port 25072 in firmware 2.4.38 and earlier, which can be accessed using the default password “jstwo,” enabling remote attackers to gain complete access. Related OpenVAS data corroborates a ba...
CVE-2004-2052
The affected software is eSeSIX Thintune thin clients with firmware up to 2.4.38. The vulnerability arises from an authentication weakness where any password that begins with the actual password is accepted, enabling brute‑force password guessing. Impact is described as partial confidentiality an...
CVE-2004-2051
The CVE-2004-2051 entry affects eSeSIX Thintune thin clients (Phoenix browser) running firmware 2.4.38 and earlier. The issue allows local users to read arbitrary files via a file:/// URL, as described in the CVE description. Related OpenVAS data also references multiple vulnerabilities in Thintu...
CVE-2004-2049
Summary (CVE-2004-2049) : The eSeSIX Thintune thin clients (firmware
CVE-2004-2051
The Phoenix browser in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allows local users to read arbitrary files via a file:/// URL...
CVE-2004-2052
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier accept any password that begins with the actual password, which makes it easier for users to conduct brute force password guessing...
CVE-2004-2048
radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access...
CVE-2004-2050
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell...
CVE-2004-2049
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier store sensitive usernames and passwords in cleartext in configuration files for the keeper library, which allows attackers to gain access...
eSeSIX Thintune thin client multiple vulnerabilities
eSeSIX Thintune thin client multiple vulnerabilities IT-Consult, 2004-07-24 Background - -------- Thintune is a series of thin client appliances sold by eSeSIX GmbH, Germany. They offer ICA, RDP, X11 and SSH support based on a customized Linux platform. See http://www.thintune.com for details...