26 matches found
The vulnerability of the Heimdal protocol’s Kerberos implementation, related to errors in managing cryptographic keys, allows a perpetrator to carry out a “man-in-the-middle” attack.
The vulnerability of the Heimdal protocol’s Kerberos implementation is related to errors in managing cryptographic keys. Exploiting this vulnerability could allow a malicious actor to carry out a “man-in-the-middle” attack...
The vulnerability of the WiFiRanger router’s microprogramming software, related to key management errors, allows a hacker to obtain access to the SSH key and gain root account access to the system.
The vulnerability of the WiFiRanger router’s microprogramming software is related to key management errors. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain access to the SSH key and gain control of the system with the root account...
PHOENIX CONTACT PLCNext AXC F 2152
1. EXECUTIVE SUMMARY CVSS v3 7.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Phoenix Contact Equipment: PLCNext AXC F 2152 Vulnerabilities: Key Management Errors, Improper Access Control, Man-in-the-Middle, Using Component with Known Vulnerabilities 2. RISK EVALUATION...
Linksys SMART Wi-Fi Firmware Patches Released
Two versions of popular consumer and small office Linksys routers remain vulnerable to a pair of vulnerabilities recently patched in other models of the Belkin-owned networking gear. Linksys EA2700 and EA3500 routers running Linksys SMART Wi-Fi firmware have yet to be patched against...
Linksys SMART WiFi firmware contains multiple vulnerabilities
Overview Linksys EA series routers running the Linksys SMART WiFi firmware contain multiple vulnerabilities. Description CWE-320: Key Management Errors - CVE-2014-8243An remote, unauthenticated attacker can read the router's .htpassword file by requesting https:///.htpasswd. The .htpasswd file...
OleumTech WIO Family Vulnerabilities
OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-14-202-01 OleumTech WIO Family Vulnerabilities that was published July 21, 2014, on the NCCIC/ICS-CERT web site. --------- Begin Update A Part 1 of 2 -------- Security researchers Lucas Apa and Carlos Mario Penagos...