78 matches found
Miele Professional PG 8528 Directory Traversal
Title: ====== Miele Professional PG 8528 - Web Server Directory Traversal Author: ======= Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG CVE-ID: ======= CVE-2017-7240 Risk Information: ================= Risk Factor: Medium CVSS Base Score: 5.0 CVSS Vector: CVSS2AV:N/AC:L/Au:N/C:P/I:N/A:N...
Eaton xComfort Ethernet Communication Interface Unauthorized Access Vulnerability
Eaton xComfort is a smart home solution from Eaton Corporation of America. The solution includes a wireless home automation system that provides the home with features such as security and energy management.Ethernet Communication Interface ECI is one of the Ethernet connection ports. A security...
CVE-2016-9368
An issue was discovered in Eaton xComfort Ethernet Communication Interface ECI Versions 1.07 and prior. By accessing a specific uniform resource locator URL on the webserver, a malicious user may be able to access files without authenticating...
CVE-2016-8368
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. The affected Ethernet interface module is connected to a MELSEC-Q PLC, which may allow a remote attacker to conne...
Code injection
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. Weakly encrypted passwords are transmitted to a MELSEC-Q PLC...
CVE-2016-8370
The CVE affects Mitsubishi Electric MELSEC-Q series Ethernet interface modules QJ71E71-100, QJ71E71-B5, and QJ71E71-B2. Root cause is use of a broken or risky cryptographic algorithm, resulting in weakly encrypted passwords being transmitted to a MELSEC-Q PLC. Impact reported includes the possibi...
CVE-2016-8368
The CVE-2016-8368 issue affects Mitsubishi Electric MELSEC-Q series Ethernet interface modules QJ71E71-100, QJ71E71-B5, and QJ71E71-B2. It is caused by an Unrestricted Externally Accessible Lock that may allow a remote attacker to connect to the connected MELSEC-Q PLC via Port 5002/TCP and cause ...
CVE-2016-8368
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. The affected Ethernet interface module is connected to a MELSEC-Q PLC, which may allow a remote attacker to conne...
IBM Power 5 Service Processor privilege escalation vulnerability
Overview IBM Power 5 Service Processor contain a vulnerability which could allow an attacker to operate with elevated privileges. Description IBM's security advisory states, "A security issue has been identified on IBM Power 5 Systems such that the firewall code does not get executed in certain...
broadcast-pppoe-discover NSE Script
Discovers PPPoE Point-to-Point Protocol over Ethernet servers using the PPPoE Discovery protocol PPPoED. PPPoE is an ethernet based protocol so the script has to know what ethernet interface to use for discovery. If no interface is specified, requests are sent out on all available interfaces. As...
broadcast-ping NSE Script
Sends broadcast pings on a selected interface using raw ethernet packets and outputs the responding hosts' IP and MAC addresses or if requested adds them as targets. Root privileges on UNIX are required to run this script since it uses raw sockets. Most operating systems don't respond to...
Design/Logic Flaw
The IBM WebSphere DataPower XML Accelerator XA35, Low Latency Appliance XM70, Integration Appliance XI50, B2B Appliance XB60, and XML Security Gateway XS40 SOA Appliances before 3.8.0.0, when a QLOGIC Ethernet interface is used, allow remote attackers to cause a denial of service interface outage...
Sentinel is a compact anti-sniffer tools-vulnerability warning-the black bar safety net
by xundi This morning a friend asked me, say what tool found in the network to be sniffing the better, I say ISS the anti-Sniffer? he said too slow! Later to remember the previous visiting network when seen Such a program is also antisniffer type, so they put it to find out. The Sentinel is...
Belkin F5D6130 Wireless Network Access Point - SNMP Request Denial of Service
source: https://www.securityfocus.com/bid/5571/info A denial of service vulnerability has been reported in the Belkin F5D6130 Wireless Network Access Point. Reportedly, this issue may be exploited by making a sequence of SNMP requests. A valid community name is not required. After a number of SNM...
CVE-1999-1331
Affected software: netcfg 2.16-1 on Red Hat Linux 4.2. Vulnerability: Local users can control the Ethernet interface on reboot when a specific option is set, enabling a denial of service by shutting down the interface. Root cause/trigger: The description indicates the interface control occurs at ...
CVE-1999-1331
netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the interface...
CVE-2000-0292
The Adtran MX2800 M13 Multiplexer allows remote attackers to cause a denial of service via a ping flood to the Ethernet interface, which causes the device to crash...
CVE-1999-1331
netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the interface...