Lucene search
+L

6 matches found

Positive Technologies
Positive Technologies
added 2013/05/29 12:0 a.m.2 views

PT-2013-54: Access Restrictions Bypassing in Huawei SGSN USN9810

The specialists of the Positive Research center have detected an Access Restrictions Bypassing vulnerability in Huawei SGSN USN9810. The application does not sufficiently check the user’s authorization in the system. This allows an authorized attacker to obtain access to various administrative...

4CVSS7.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2013/05/29 12:0 a.m.7 views

PT-2013-57: Password Access in Huawei M2000

The specialists of the Positive Research center have detected a Password Access vulnerability in Huawei SGSN USN9810. The application stores and displays the FTP server password in clear text. This vulnerability allows the attackers to hijack the password and obtain access to the FTP server. How ...

5.1CVSS7.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2013/05/29 12:0 a.m.5 views

PT-2013-56: Path Traversal in Huawei SGSN USN9810

The specialists of the Positive Research center have detected a Path Traversal vulnerability in Huawei SGSN USN9810. REPORTDIR parameter allows the use of symbols, which enable going beyond the current directory. How to fix Customers can contact the Huawei Technical Assistance Center TAC to reque...

5.4CVSS7.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2013/05/29 12:0 a.m.5 views

PT-2013-53: Information Disclosure in Huawei SGSN USN9810

The specialists of the Positive Research center have detected an Information Disclosure vulnerability in Huawei SGSN USN9810. Web application displays the system information such as the version of the web server, its components, and the details about the installation platform in the HTTP-response...

5CVSS7.1AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2013/05/29 12:0 a.m.7 views

PT-2013-55: Access Restrictions Bypassing in Huawei SGSN USN9810

The specialists of the Positive Research center have detected an Access Restrictions Bypassing vulnerability in Huawei SGSN USN9810. The platform does not provide sufficient entropy in session identifiers. This allows an attacker to brute force the current ID to bypass the authorization mechanism...

5.4CVSS7.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2013/05/17 12:0 a.m.5 views

PT-2013-52: XML External Entities Injection in Huawei SGSN USN9810

The specialists of the Positive Research center have detected an XML External Entities Injection vulnerability in Huawei SGSN USN9810. An XML document may contain a Document Type Definition that, among other features, allows the definition of external entities. A malicious user may perform attack...

5.8CVSS7.8AI score
Exploits0References3
Rows per page
Query Builder