EUVD-2013-3556

Malware in sbrugna...

HomeMatic Zentrale CCU2 Unauthenticated Remote Code Execution

Exploit Title: HomeMatic Zentrale CCU2 Unauthenticated RCE Date: 16-07-2018 Software Link: https://www.homematic.com/ Exploit Author: Kacper Szurek - ESET Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ YouTube: https://www.youtube.com/c/KacperSzurek Category: remot...

CVE-2017-11196

Pulse Connect Secure 8.3R1 has CSRF in logout.cgi. The logout function of the admin panel is not protected by any CSRF tokens, thus allowing an attacker to logout a user by making them visit a malicious web page...

CVE-2017-11196

Pulse Connect Secure 8.3R1 is affected by a Cross-Site Request Forgery in logout.cgi. The admin panel logout is not protected by CSRF tokens, allowing an attacker to log out a user by enticing them to visit a malicious page. Connected documents confirm the issue and note remediation through softw...

CVE-2013-3622

Buffer overflow in logout.cgi in the Intelligent Platform Management Interface IPMI with firmware before 3.15 SMTX9315 on Supermicro X9 generation motherboards allows remote authenticated users to execute arbitrary code via the SID parameter...

CVE-2013-3622

Buffer overflow in logout.cgi in the Intelligent Platform Management Interface IPMI with firmware before 3.15 SMTX9315 on Supermicro X9 generation motherboards allows remote authenticated users to execute arbitrary code via the SID parameter...

CVE-2013-3622

The CVE-2013-3622 issue affects Supermicro X9 generation motherboards running firmware before 3.15 (SMT_X9_315). It is a buffer overflow in logout.cgi within IPMI, enabling remote authenticated users to execute arbitrary code via the SID parameter. Affected component: IPMI logout.cgi; root cause:...