EUVD-2019-15583

Malware in sbrugna...

CVE-2019-6015

FON2601E-SE, FON2601E-RE, FON2601E-FSW-S, and FON2601E-FSW-B with firmware versions 1.1.7 and earlier contain an issue where they may behave as open resolvers. If this vulnerability is exploited, FON routers may be leveraged for DNS amplification attacks to some other entities...

FON routers may behave as an open resolver

Overview FON routers contain an issue where they may behave as open resolvers. A device that behaves as a DNS resolver for recursive DNS queries from anyone on the internet is called "Open Resolver". FON routers contain an issue where they may behave as open resolvers. Hideyoshi Okazaki of ARTERI...

Multiple FON Products Input Validation Error Vulnerability

The Fon Wireless FON2601E-SE, among others, is a wireless router from the Spanish company Fon Wireless. An input validation error vulnerability exists in multiple FON products, which can be exploited by attackers to conduct DNS amplification attacks against certain other entities via the FON...

fon-toto.ru XSS vulnerability

Open Bug Bounty ID: OBB-466694 Description| Value ---|--- Affected Website:| fon-toto.ru Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

fon-friseur.de XSS vulnerability

Vulnerable URL: http://www.fon-friseur.de/typo3conf/ext/kjimagelightbox2/lib/class.txkjimagelightbox2print.php?image=13'" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3180842 VIP...

FRITZ!App Fon - Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application FRITZ!App Fon published at the 'play' market has multiple vulnerabilities...

CVE-2011-2003

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted .fon file, aka "Font Librar...

Buffer overflow

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted .fon file, aka "Font Librar...

MS11-077: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2567053)

The remote host is running a version of the Windows kernel that is affected by the following vulnerabilities : - A NULL pointer deference that could allow privilege escalation. CVE-2011-1985 - A DoS caused by processing a specially crafted TrueType font file. CVE-2011-2002 - A code execution...

JVN#96839637: La Fonera+ vulnerable to denial-of-service (DoS)

La Fonera+ provided by FON is a wireless LAN router. La Fonera+ contains a denial-of-service DoS vulnerability. Impact An attacker who can communicate with La Fonera+ directly may cause a denial-of-service DoS. Solution Update the firmware Update to the latest firmware version according to the...

CVE-2007-0193

FON La Fonera routers do not properly limit DNS service access by unauthenticated clients, which allows remote attackers to tunnel traffic via DNS requests for hosts that should not be accessible before authentication...

CVE-2007-0193

CVE-2007-0193 affects FON La Fonera routers. The vulnerability arises because the DNS service is not properly limited to authenticated clients, allowing remote attackers to tunnel traffic via DNS requests for hosts that should not be accessible before authentication. The provided documents do not...