36 matches found
EUVD-2016-9210
Malware in sbrugna...
EUVD-2016-6734
Malware in sbrugna...
EUVD-2016-10156
Malware in sbrugna...
EUVD-2016-5490
Malware in sbrugna...
Moxa Device Credential Retrieval
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Moxa Device Credential Retrieval', 'Description' = %q The Moxa protocol listens on 4800/UDP and will respond to broadcast or direct traffic. The...
CVE-2020-6997
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, sensitive information is transmitted over some web applications in cleartext...
The vulnerability of the iw_console component in the wireless access point software for Moxa AWK-3131A industrial systems allows a hacker to elevate their privileges to the root level.
The vulnerability of the iwconsole component in the wireless access device software of Moxa AWK-3131A industrial systems is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to elevate their privileges to the root level...
Moxa AWK-3131A Buffer Overflow Vulnerability (CNVD-2020-13476)
Moxa AWK-3131A is a wireless access device from Moxa. The Moxa AWK-3131A is vulnerable to a buffer overflow vulnerability. No detailed vulnerability details are provided at this time...
PT-2019-18369 · Moxa · Bmxnor0200H Ethernet / Serial Rtu Module
Name of the Vulnerable Software and Affected Versions: BMXNOR0200H Ethernet / Serial RTU module all firmware versions Description: A vulnerability exists in the BMXNOR0200H Ethernet / Serial RTU module, which could cause disconnection of active connections when an unusually high number of IEC...
MOXA Device Manager Buffer Overflow (Update A)
Overview --------- Begin Update A Part 1 of 2 ---------- On October 20, 2010, an independent security researcher postedRubén Santamarta, http://www.reversemode.com/index.php?option=comcontent&task=view&id=70&Itemid=1, website last visited October 28, 2010. information regarding a vulnerability in...
Moxa EDR-810 Denial of Service Vulnerability (CNVD-2018-11729)
The EDR-810 is a highly integrated industrial multi-port security router with firewall/NAT/VPN and two-layer manageable switch functionality. A denial of service vulnerability exists in the service proxy feature of the Moxa EDR-810 V4.1 build 17030317. An attacker can exploit this vulnerability b...
CVE-2017-14438
Exploitable denial of service vulnerabilities exists in the Service Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted packet can cause a denial of service. An attacker can send a large packet to 4000/tcp to trigger this vulnerability...
PT-2018-5640 · Moxa · Moxa Edr-810
Name of the Vulnerable Software and Affected Versions: Moxa EDR-810 version 4.1 build 17030317 Description: A denial of service issue exists in the Service Agent functionality, allowing an attacker to cause a denial of service by sending a specially crafted packet. The attacker can trigger this...
PT-2018-5365 · Moxa · Moxa Edr-810
Name of the Vulnerable Software and Affected Versions: Moxa EDR-810 version 4.1 build 17030317 Description: A denial of service issue exists in the web server functionality. It can be triggered by a specially crafted HTTP URI, causing a null pointer dereference that results in the web server...
PT-2018-5362 · Moxa · Moxa Edr-810
Name of the Vulnerable Software and Affected Versions: Moxa EDR-810 version 4.1 build 17030317 Description: A command injection issue exists in the web server functionality, allowing a specially crafted HTTP POST to cause a privilege escalation resulting in a root shell. An attacker can inject OS...
CVE-2017-14459
An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client in firmware versions 1.4 to 1.7 current. An attacker can inject commands via the username parameter of several...
CVE-2017-13698
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices. An attacker could extract public and private keys from the firmware image available on the MOXA website and could use them against a production switch that has the default keys embedded...
CVE-2017-13699
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices. The password encryption method can be retrieved from the firmware. This encryption method is based on a chall value that is sent in cleartext as a POST parameter. An attacker could reverse the password encryption algorithm to...
MOXA EDS-G512E Denial of Service Vulnerability
Moxa EDS-G512E is an Ethernet switch device from Moxa. A security vulnerability exists in the MOXA EDS-G512E version 5.1 build 16072215. An attacker can exploit this vulnerability to cause a denial of service...
MOXA Device Manager Tool 2.1 - Buffer Overflow Exploit
Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MOXA Device Manager Tool 2.1 Buffer Overflow', 'Description' = %q This module exploits a...