18 matches found
EUVD-2005-3715
Malware in sbrugna...
EUVD-2005-3714
Malware in sbrugna...
Unauthorized Access Vulnerability in Xinhua SecPath F1000-AK145
Xinhua San Technology Co., Ltd. is an industry-leading leader in digital solutions. An unauthorized access vulnerability exists in Xinhua SecPath F1000-AK145, which can be exploited by attackers to obtain sensitive information...
Weak Password Vulnerability in H3C SecPath F1000-C-G2
The H3C SecPath F1000-C-G2 is a firewall from Xinhua San Technologies Co. A weak password vulnerability exists in the H3C SecPath F1000-C-G2, which can be exploited by an attacker to obtain sensitive information...
Weak Password Vulnerability in H3C SecPath F1000 Series Multiple Firewalls
H3C SecPath F1000 series is a firewall from Xinhua San Technologies Co. A weak password vulnerability exists in multiple H3C SecPath F1000 series firewalls, which can be exploited by attackers to obtain sensitive information...
Weak Password Vulnerability in H3C SecPath F1000-AK115
The H3C SecPath F1000-AK115 is an enterprise-class firewall. A weak password vulnerability exists in the H3C SecPath F1000-AK115. An attacker uses the default weak password to log into the backend and obtain sensitive information...
Weak password vulnerability in H3C F1000-C8102 of Xinhua San Technologies Co.
The H3C F1000-C8102 is a firewall from Xinhua San Technologies Co. A weak password vulnerability exists in the H3C F1000-C8102 of Xinhua SanTechnology Limited, which can be exploited by an attacker to log in to the backend to obtain data or perform unauthorized operations...
f1000.com XSS vulnerability
Vulnerable URL: http://f1000.com/prime/search/faculty?query=" Details: Description| Value ---|--- Patched:| Yes, at 08.01.2017 Latest check for patch:| 08.01.2017 14:01 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 99205 VIP website status:| No Check f1000.com...
CVE-2005-3717
The telnet daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has a default username "target" and password "password", which allows remote attackers to gain full access to the system...
CVE-2005-3718
UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 does not allow users to disable access to 1 SNMP or 2 the rlogin port TCP 513, which allows remote attackers to exploit other vulnerabilities such as CVE-2005-3716, or execute arbitrary shell commands via rlogin, whic...
CVE-2005-3716
The SNMP daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has hard-coded public credentials that cannot be changed, which allows attackers to obtain sensitive information...
CVE-2005-3716
CVE-2005-3716 affects UTStarcom F1000 VOIP WIFI Phone (s2.0, VxWorks 5.5.1, WIND 2.6). The SNMP daemon uses hard-coded public credentials that cannot be changed, enabling attackers to obtain sensitive information. No exploit details are provided in the documents, and the impact is reported as par...
CVE-2005-3718
Affected product: UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6. Vulnerability details: The device does not allow users to disable access to (1) SNMP or (2) rlogin on TCP 513, enabling remote attackers to trigger other vulnerabilities (e.g., CVE-2005-3716) or exe...
CVE-2005-3718
UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 does not allow users to disable access to 1 SNMP or 2 the rlogin port TCP 513, which allows remote attackers to exploit other vulnerabilities such as CVE-2005-3716, or execute arbitrary shell commands via rlogin, whic...
CVE-2005-3717
CVE-2005-3717 documents a vulnerability in the telnet daemon of UTStarcom F1000 VOIP WIFI Phone (S2.0) running VxWorks 5.5.1 with kernel WIND 2.6. The issue arises from a default account with username "target" and password "password", enabling remote attackers to gain full system access. Public s...
PT-2005-4471 · Wind River +1 · Vxworks +2
Name of the Vulnerable Software and Affected Versions: UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 Description: The issue concerns hard-coded public credentials in the SNMP daemon that cannot be changed, allowing attackers to obtain sensitive information...
[Full-disclosure] UTstarcom F1000 VoIP Wifi phone multiple vulnerabilities
I disclosed today the following vulnerabilities at the 32nd CSI conference in Washington, D.C. https://www.cmpevents.com/CSI32/a.asp?option=G&V=3&id=406438 Thanks, Shawn Merdinger =============================================================== VENDOR: UTStarcom VENDOR NOTIFIED: 27 June, 2005 via...
Multiple UTstarcom F1000 wirieless Wi-Fi VoIP phones vulnerabilities
SNMP access, unauthenticated telnet TCP/21 and rlogin TCP/513 access...