CVE-2004-2556

NetGear WG602 aka WG602v1 Wireless Access Point firmware 1.04.0 and 1.5.67 has a hardcoded account of username "super" and password "5777364", which allows remote attackers to modify the configuration...

CVE-2004-2556

CVE-2004-2556 affects NetGear WG602 (WG602v1) Wireless Access Point firmware 1.04.0 and 1.5.67, which contain a hardcoded administrator account (username: super, password: 5777364). This flaw allows remote attackers to modify the device configuration. The issue is rooted in a hardcoded credential...

CVE-2004-2557

NetGear WG602 aka WG602v1 Wireless Access Point 1.7.14 has a hardcoded account of username "superman" and password "21241036", which allows remote attackers to modify the configuration...

[Full-disclosure] Zyxel P2000W (Version1) VoIP Wifi phone multiple vulnerabilties

I disclosed today the following vulnerabilities at the 32nd CSI conference in Washington, D.C. https://www.cmpevents.com/CSI32/a.asp?option=G&V=3&id=406438 Thanks, Shawn Merdinger =============================================================== VENDOR: Zyxel PRODUCT: Zyxel P2000W Version 1 VOIP WI...

[Full-disclosure] Hitachi IP5000 VoIP Wifi phone multiple vulnerabilities

I disclosed today the following vulnerabilities at the 32nd CSI conference in Washington, D.C. https://www.cmpevents.com/CSI32/a.asp?option=G&V=3&id=406438 Thanks, Shawn Merdinger =============================================================== VENDOR: Hitachi PRODUCT: Hitachi IP5000 VOIP WIFI Pho...

GNU Mailutils imap4d 0.6 - Search Remote Format String

GNU Mailutils imap4d 0.6 - Search Remote Format String / GNU Mailutils 0.6 imap4d 'search' format string exploit. Ref: www.idefense.com/application/poi/display?id=303&type=vulnerabilities This silly exploit uses hardcoded values taken from GNU/Debian testing etch. $ ./imap4dsearchexpl -h 127.0.0....

CVE-2005-1837

Fortinet firewall running FortiOS 2.x contains a hardcoded username with the password set to the serial number, which allows local users with console access to gain privileges...

CVE-2005-1837

Affected product: Fortinet FortiOS 2.x Fortinet firewall. Vulnerability: Hardcoded username with the password set to the device serial number, enabling local users with console access to gain privileges. Impact: Privilege escalation to higher privileges for local attackers. Root cause: Credential...

CVE-2005-1837

Fortinet firewall running FortiOS 2.x contains a hardcoded username with the password set to the serial number, which allows local users with console access to gain privileges...

CVE-2004-1921

X-Micro WLAN 11b Broadband Router 1.6.0.1 has a hardcoded "1502" username and password, which could allow remote attackers to gain access...

CVE-2004-1920

X-Micro WLAN 11b Broadband Router (versions 1.2.2, 1.2.2.3, 1.2.2.4, 1.6.0.0) contains a hardcoded 'super' username and password, which could allow remote attackers to gain access. The connected documents confirm the affected product and credential issue but do not provide details on exploitation...

CVE-2004-1920

X-Micro WLAN 11b Broadband Router 1.2.2, 1.2.2.3, 1.2.2.4, and 1.6.0.0 has a hardcoded "super" username and password, which could allow remote attackers to gain access...

CVE-2004-2050

eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell...

CVE-2004-1921

The CVE-2004-1921 entry affects X-Micro WLAN 11b Broadband Router 1.6.0.1, which uses a hardcoded username/password combo ("1502"). This permits remote access without authentication, with a CVSS v2 base score of 7.5 (Network, Low complexity, No user interaction). The provided documents confirm th...

CVE-2004-1694

Symantec ON Command CCM 5.4.x and iCommand 3.0.x has four default usernames and passwords, one of which is hardcoded, which allows remote attackers to gain unauthorized access...

Cisco IP/VC Videoconferencing System default SNMP community unauthorized access

There are hardcoded SNMP communities for device management...

CVE-2004-1322

Cisco Unity 2.x–4.x (when integrated with Microsoft Exchange) is affected by hard coded usernames and passwords that enable remote unauthorized access and the ability to change configuration or read emails. The vulnerability is described across CVE-2004-1322 references from NVD and CVE records, i...

CVE-2004-2556

NetGear WG602 aka WG602v1 Wireless Access Point firmware 1.04.0 and 1.5.67 has a hardcoded account of username "super" and password "5777364", which allows remote attackers to modify the configuration...

CVE-2004-2557

NetGear WG602 aka WG602v1 Wireless Access Point 1.7.14 has a hardcoded account of username "superman" and password "21241036", which allows remote attackers to modify the configuration...

Ultrix 4.5/MIPS dxterm Local Buffer Overflow Exploit

Exploit for ultrix platform in category local exploits ==================================================== Ultrix 4.5/MIPS dxterm Local Buffer Overflow Exploit ==================================================== / Ultrix 4.5/MIPS dxterm exploit by ztion in 2004 Greets to: Stok, sidez It wasn't...