3038 matches found
PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities
Exploit for php platform in category web applications Overview ======== Technical Risk: high Likelihood of Exploitation: medium Credits: Discovered and researched by Orwelllabs CVE-Number: N/A DWF: Submited Adivisory URL: http://www.orwelllabs.com/2016/02/planet-ip-surveillance-camera-local.html ...
PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities
| | | | | | | | | | | | / | '\ \ /\ / / \ | | |/ | ' / | | | | \ V V / / | | | | | | \ \ /|| // ||||,|./|/ Security Adivisory 2016-04-06 www.orwelllabs.com Twitter:@orwelllabs mantra: ...not affect a product that is in scope for... AhHum! Overview ======== Technical Risk: high Likelihood of...
ExaGrid - Known SSH Key and Default Password (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class MetasploitModule 'ExaGrid Known SSH Key and Default Password', 'Description' = %q ExaGrid ships a public/private key pair on...
PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities
PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities | | | | | | | | | | | | / | '\ \ /\ / / \ | | |/ | ' / | | | | \ V V / / | | | | | | \ \ /|| // ||||,|./|/ Security Adivisory 2016-04-06 www.orwelllabs.com Twitter:@orwelllabs mantra: ...not affect a product that is in...
CVE-2015-7921
The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials...
CVE-2015-7921
The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials...
Hardcoded credentials
The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials...
CVE-2015-7921
The CVE describes hard-coded credentials in the FTP server of Pro-face GP-Pro EX (affected models EX-ED, PFXEXEDV, PFXEXEDLS, PFXEXGRPLS) prior to version 4.05.000, enabling remote authentication bypass. Root cause: hard-coded credentials in the FTP service. Impact: unauthorized access to device ...
CVE-2015-7921
The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials...
Hardcoded credentials
The SysPlant.sys driver in the Application and Device Control ADC component in the client in Symantec Endpoint Protection SEP 12.1 before RU6-MP4 allows remote attackers to execute arbitrary code via a crafted HTML document, related to "RWX Permissions."...
Hardcoded credentials
Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...
CVE-2016-1329
Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...
CVE-2016-1329
Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...
CVE-2016-1329
Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...
CVE-2016-1329
CVE-2016-1329 affects Cisco NX-OS on Nexus 3000 (6.0(2)U6(1)–6.0(2)U6(5)) and Nexus 3500 (6.0(2)A6(1)–6.0(2)A6(5), 6.0(2)A7(1)). The root cause is hardcoded/default credentials present in an account created at installation, allowing unauthenticated remote attackers to obtain root privileges via T...
CVE-2015-7261
The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...
Hardcoded credentials
The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...
CVE-2015-7261
CVE-2015-7261 affects QNAP iArtist Lite before 1.4.54 (bundled with Signage Station before 2.0.1). The FTP service contains hardcoded credentials, enabling remote access via TCP port 21. Root cause is hard-coded FTP accounts/passwords in iArtist Lite used by Signage Station; impact is unauthorize...
CVE-2015-7261
The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...
Servision HVG Hardcoded Credentials
Hello... Over a year ago I disclosed several vulnerabilities in Servision HVG network video recording devices. CVE-2015-0929 and CVE-2015-0930. https://www.kb.cert.org/vuls/id/522460 Since it's been a while now, and hardcoded backdoor passwords in "security" devices are the current hotness...