84 matches found
Design/Logic Flaw
A DNS rebinding vulnerability in the UPnP IGD implementations in Freebox v5 before 1.5.29 and Freebox Server before 4.2.3...
CVE-2020-24376
CVE-2020-24376 describes a DNS rebinding vulnerability in the UPnP Internet Gateway Device (IGD) implementations of Freebox v5 prior to 1.5.29 and Freebox Server prior to 4.2.3. The connected records confirm the affected products and versions and reiterate the same vulnerability description. No d...
Internet Bug Bounty: CVE-2017-8798 - miniupnp getHTTPResponse chunked encoding integer signedness error
Integer signedness error in miniupnpc 1 allows remote attackers to cause a denial of service condition access violation and heap corruption via specially crafted HTTP response An integer signedness error was found in miniupnp's miniwget allowing an unauthenticated remote entity typically located ...
UPnP Internet Gateway Device (IGD) Port Mapping Listing
According to its UPnP data, the remote device is a NAT router that supports the Internet Gateway Device IGD Standardized Device Control Protocol. Nessus was able to list 'port mappings' that redirect ports from the device's external interface to the scanner address. An unauthenticated, remote...
Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Disclosure
No description provided by source...
UPnP IGD SOAP Port Mapping Utility
Manage port mappings on UPnP IGD-capable device using the AddPortMapping and DeletePortMapping SOAP requests This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'nokogiri' class MetasploitModule 'UPnP IGD SOAP Por...
Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Disclosure Vulnerability
Exploit for hardware platform in category web applications ! /usr/bin/python Exploit Title: Huawei Home Gateway password disclosure Date: June 27, 2015 Exploit Author: Fady Mohamed Osman @fadyosman Vendor Homepage: http://www.huawei.com/en/ Software Link: N/A. Version: UPnP/1.0 IGD/1.00 Tested on...
Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Change Vulnerability
Exploit for hardware platform in category web applications ! /usr/bin/python Exploit Title: Huawei Home Gateway password change vulnerability Date: June 27, 2015 Exploit Author: Fady Mohamed Osman @fadyosman Vendor Homepage: http://www.huawei.com/en/ Software Link: N/A. Version: UPnP/1.0 IGD/1.00...
Huawei Home Gateway UPnP1.0 IGD1.00 - Password Disclosure
Huawei Home Gateway UPnP1.0 IGD1.00 - Password Disclosure ! /usr/bin/python Exploit Title: Huawei Home Gateway password disclosure Date: June 27, 2015 Exploit Author: Fady Mohamed Osman @fadyosman Vendor Homepage: http://www.huawei.com/en/ Software Link: N/A. Version: UPnP/1.0 IGD/1.00 Tested on:...
Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Change
!/usr/bin/python Exploit Title: Huawei Home Gateway password change vulnerability Date: June 27, 2015 Exploit Author: Fady Mohamed Osman @fadyosman Vendor Homepage: http://www.huawei.com/en/ Software Link: N/A. Version: UPnP/1.0 IGD/1.00 Tested on: HG530 - HG520b Provided by TE-DATA egypt...
Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Disclosure
!/usr/bin/python Exploit Title: Huawei Home Gateway password disclosure Date: June 27, 2015 Exploit Author: Fady Mohamed Osman @fadyosman Vendor Homepage: http://www.huawei.com/en/ Software Link: N/A. Version: UPnP/1.0 IGD/1.00 Tested on: HG530 - HG520b Provided by TE-DATA egypt Exploit-db :...
USN-2280-1: MiniUPnPc vulnerability
It was discovered that MiniUPnPc incorrectly handled certain buffer lengths. A remote attacker could possibly use this issue to cause applications using MiniUPnPc to crash, resulting in a denial of service...
avm fritz!dsl igd control service 2.2.29 - Directory Traversal information disclosure vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22093/info The AVM Fritz!DSL IGD Control Service is prone to a remote information-disclosure vulnerability because the application fails to properly sanitize user-supplied input. Exploiting this issue allows remote,...
Zoom X4 / X5 SQL Injection / Authentication Bypass Vulnerabilities
Zoom X4 and X5 modems suffers from authentication bypass and remote SQL injection vulnerabilities. Vulnerable Products - Zoom X4 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions Zoom X5 ADSL Modem and Router running Nucleus/4.3...
Zoom Telephonics X4X5 ADSL Modem - Multiple Vulnerabilities
Zoom Telephonics X4X5 ADSL Modem - Multiple Vulnerabilities Vulnerable Products - Zoom X4 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions Zoom X5 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions...
Zoom X4/X5 ADSL Modem and Router -Unauthenticated Remote Root Command Execution
Vulnerable Products - Zoom X4 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions Zoom X5 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions Note: A similar vulnerability was reported several years ag...
CVE-2011-4506
The UPnP IGD implementation on the Thomson aka Technicolor TG585 with firmware 7.x before 7.4.3.2 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
CVE-2011-4502
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers...
CVE-2011-4503
The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
CVE-2011-4501
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers...