11 matches found
EUVD-2013-5860
Malware in sbrugna...
Emerson IP-KVM Avocent MergePoint Unity 弱口令
参考链接: http://community.emerson.com/networkpower/support/avocent/kvmip/mpunity/w/wiki-mergepoint-unity/363.default-user-name-and-password-for-the-mergepoint-unity-kvm-over-ip-appliance...
Emerson Network Power Avocent MergePoint Unity KVM Switch Detection
Binary data emersonmpukvmdetect.nbin...
Emerson Network Power Avocent MergePoint Unity KVM Switch < 1.14 / 1.18 download.php filename Parameter Directory Traversal
The remote host is an Emerson Network Power Avocent MergePoint Unity KVM Switch with a firmware version prior to 1.14 or 1.18. It is, therefore, affected by a directory traversal vulnerability due to a failure to sanitize user-supplied input to the 'filename' parameter of the 'download.php' scrip...
Emerson Network Power Avocent MergePoint Unity 2016 KVM Detection (HTTP)
The script sends a connection request to the server and attempts to extract the version number from the reply. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...
Emerson Network Power Avocent MergePoint Unity 2016 KVM Directory Traversal Vulnerability
Emerson Network Power Avocent MergePoint Unity 2016 KVM is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C...
CVE-2013-6030
Directory traversal vulnerability on the Emerson Network Power Avocent MergePoint Unity 2016 aka MPU2016 KVM switch with firmware 1.9.16473 allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by reading the /etc/passwd file...
Directory traversal
Directory traversal vulnerability on the Emerson Network Power Avocent MergePoint Unity 2016 aka MPU2016 KVM switch with firmware 1.9.16473 allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by reading the /etc/passwd file...
CVE-2013-6030
CVE-2013-6030 affects the Emerson Network Power Avocent MergePoint Unity 2016 KVM Switch (MPU2016). A directory traversal vulnerability exists in the download.php handler due to insufficient sanitization of the filename parameter, enabling reading of arbitrary files (e.g., “/etc/passwd”). Affecte...
CVE-2013-6030
Directory traversal vulnerability on the Emerson Network Power Avocent MergePoint Unity 2016 aka MPU2016 KVM switch with firmware 1.9.16473 allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by reading the /etc/passwd file...
Emerson Network Power Avocent MergePoint Unity 2016 KVM and possibly other model switches contain a directory traversal vulnerability
Overview Emerson Network Power Avocent MergePoint Unity 2016 KVM and possibly other model switches running firmware version 1.9.16473 and possibly previous versions contain a directory traversal vulnerability CWE-23. Description CWE-23: Relative Path Traversal Emerson Network Power Avocent...