20 matches found
UTT HiPER 810G 安全漏洞
UTT HiPER 810G is a firewall router produced by UTT Corporation. Versions of UTT HiPER 810G prior to 1.7.7-1711 contained security vulnerabilities. These vulnerabilities were caused by improper handling of the passwd1 parameter in the file/goform/setSysAdm, which could lead to a buffer overflow...
UTT HiPER 810G 安全漏洞
UTT HiPER 810G is a firewall router produced by UTT Corporation. Versions of UTT HiPER 810G prior to 1.7.7-171114 contained security vulnerabilities. These vulnerabilities were caused by incorrect operations on the GroupName parameter in the goform/formFireWall function of the Management Interfac...
EUVD-2006-1007
Malware in sbrugna...
NETGEAR FVS336G 安全漏洞
The NETGEAR FVS336G is a VPN Virtual Private Network firewall router from NETGEAR. The NETGEAR FVS336G suffers from a command injection vulnerability. The vulnerability stems from the application failing to properly filter constructed command special characters, commands, and so on. An attacker...
MOXA TN-4900 命令注入漏洞
MOXA TN-4900 is a series of industrial firewall routers from MOXA, China.MOXA TN-5900 is a series of industrial firewall routers from MOXA, China. A command injection vulnerability exists in the MOXA TN-4900 and TN-5900, which can be exploited by an attacker to execute remote code on an affected...
MOXA TN-4900 路径遍历漏洞
MOXA TN-4900 is a series of industrial firewall routers from MOXA, China.MOXA TN-5900 is a series of industrial firewall routers from MOXA, China. A command injection vulnerability exists in the MOXA TN-4900 and TN-5900, which can be exploited by an attacker to delete arbitrary files...
Weak Password Vulnerability in DrayTek Vigor2912
The Vigor 2912 is a high-performance firewall router product for small and medium-sized businesses. A weak password vulnerability exists in DrayTek Vigor 2912. An attacker uses a weak password to log into the backend and obtain sensitive information...
Weak Password Vulnerability in 3Com OfficeConnect ADSL Wireless 11g Firewall Router
The 3Com OfficeConnect ADSL Wireless 11g Firewall Router is a firewall router. A weak password vulnerability exists in the 3Com OfficeConnect ADSL Wireless 11g Firewall Router. An attacker could use the default weak password to log into the router's management backend and obtain sensitive...
Command Injection Vulnerability in Multiple Cisco Products (CNVD-2020-35164)
Cisco RV110W and others are a VPN firewall router from Cisco USA. A command injection vulnerability exists in several Cisco products. The vulnerability stems from the failure of the web interface to properly validate user-submitted input and can be exploited by an attacker to execute arbitrary...
WatchGuard XMT515 Cross-Site Scripting Vulnerability
WatchGuard XMT515 is a firewall router product from WatchGuard USA. A cross-site scripting vulnerability exists in WatchGuard XMT515 version 12.1.3 and earlier. The vulnerability stems from the lack of proper validation of client-side data by the WEB application. An attacker can exploit the...
pfSense 2.1 Inclusion / Traversal / Escalation
| | / | \ | |/ |/ | / | | | | | | | | | | | | | / \ | | | || || | |\ | || | | / | | |/|| ||// \| Exploit Title: pfSense 2.1 Privilege Escalation from less privileged users LFI/RCE Date: 25/01/2014 0-day Exploit Author: @u0x Pichaya Morimoto Software Link: www.pfsense.org Category: Local...
pfSense 2.0.1 XSS / CSRF / Remote Command Execution Vulnerabilities
Exploit for php platform in category web applications Exploit Title: pfSense 2.0.1 XSS & CSRF Remote root Access Date: 04/01/2013 Author: Yann CAM @ Synetis Vendor or Software Link: www.pfsense.org Version: 2.0.1 Category: XSS & CSRF Remote root Access Google dork: Tested on: FreeBSD pfSense...
pfSense 2.0.1 - Cross-Site Scripting Cross-Site Request Forgery Remote Command Execution
pfSense 2.0.1 - Cross-Site Scripting Cross-Site Request Forgery Remote Command Execution Exploit Title: pfSense 2.0.1 XSS & CSRF Remote root Access Date: 04/01/2013 Author: Yann CAM @ Synetis Vendor or Software Link: www.pfsense.org Version: 2.0.1 Category: XSS & CSRF Remote root Access Google...
3Com OfficeConnect Routers DoS (Content-Type)
No description provided by source. Model - Tested on 3Com OfficeConnect ADSL Wireless 11g Firewall Router 3CRWDR100A-72 and 3CRWDR100Y-72 Software Version - Tested on 2.06T13 Apr 2007, last version for these routers Attacker - Tested from GNU/Linux Sidux and Ubuntu and Windows 7 Exploit languaje ...
3Com OfficeConnect Routers DoS (Content-Type)
Exploit for unknown platform in category dos / poc ============================================= 3Com OfficeConnect Routers DoS Content-Type ============================================= Title: 3Com OfficeConnect Routers DoS Content-Type CVE-ID: OSVDB-ID: Author: Alberto Ortega Published:...
3Com OfficeConnect Routers - 'Content-Type' Denial of Service
Model - Tested on 3Com OfficeConnect ADSL Wireless 11g Firewall Router 3CRWDR100A-72 and 3CRWDR100Y-72 Software Version - Tested on 2.06T13 Apr 2007, last version for these routers Attacker - Tested from GNU/Linux Sidux and Ubuntu and Windows 7 Exploit languaje - Ruby Type - Remote Denial of...
3Com OfficeConnect Routers Remote DoS Exploit
Exploit for unknown platform in category dos / poc ============================================= 3Com OfficeConnect Routers Remote DoS Exploit ============================================= Title: 3Com OfficeConnect Routers Remote DoS Exploit CVE-ID: OSVDB-ID: Author: Alberto Ortega Llamas...
3Com OfficeConnect Command Execution
Product: 3Com OfficeConnect Firewall/Router Website: http://www.3com.com/ Discovered By: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it Vuln: remote command execution and password disclosure Admin password disclosure 1 SSH/Telnet to router using one of these hidde...
Design/Logic Flaw
The backup configuration option in NETGEAR WGT624 Wireless Firewall Router stores sensitive information in cleartext, which allows remote attackers to obtain passwords and gain privileges...
CVE-2006-1003
The backup configuration option in NETGEAR WGT624 Wireless Firewall Router stores sensitive information in cleartext, which allows remote attackers to obtain passwords and gain privileges...