Mitsubishi MX Component Active-X Code Execution

//Payload is a windows/bindshell that is spawned on LPORT=5500 shellcode =...

Mitsubishi MX ActiveX Component 3 - ActUWzd.dll WzTitle Remote Heap Spray

Mitsubishi MX ActiveX Component 3 - ActUWzd.dll WzTitle Remote Heap Spray //Payload is a windows/bindshell that is spawned on LPORT=5500 shellcode =...

Mitsubishi MX ActiveX Component 3 - 'ActUWzd.dll' 'WzTitle' Remote Heap Spray

//Payload is a windows/bindshell that is spawned on LPORT=5500 shellcode =...

Sharp MX-M850 Default Administrator Password

The remote Sharp MX-M850 has the default password SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mitsubishi Electric Automation MX Component V3 ActiveX Vulnerability

OVERVIEW This advisory is a follow-up to the alert titled ICS-ALERT-13-091-01 Mitsubishi Electric Automation MX Buffer Overflow Vulnerability that was published April 1, 2013, on the ICS-CERT Web siteICSA-13-091-01, http://ics-cert.us-cert.gov/alerts/ICSA-13-091-01, last accessed May 20, 2013...

Samsung Exynos芯片内核device /dev/exynos-mem本地权限提升漏洞

BUGTRAQ ID: 56955 Exynos是韩国三星电子基于ARM构架处理器品牌。 Samsung Exynos在内核设备/dev/exynos-mem内存在安全漏洞，此设备允许所有用户读写所有物理内存，导致攻击者获取系统的root访问权限。/dev/exynos-mem用于图形处理，例如照相机、图形内存分配、hdmi等。多个设备受到影响：Samsung Galaxy S2、Samsung Galxy Note 2、MEIZU MX、所有嵌入了exynos处理器（4210和4412）的设备。有3个库使用了/dev/exynos-mem：...

CVE-2012-6422

The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when running an Exynos 4210 or 4412 processor, uses weak permissions 0666 for /dev/exynos-mem, which allows attackers to read or write arbitrary physical memory and gain privileges via a crafted...

Code injection

The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when running an Exynos 4210 or 4412 processor, uses weak permissions 0666 for /dev/exynos-mem, which allows attackers to read or write arbitrary physical memory and gain privileges via a crafted...

CVE-2012-6422

The CVE-2012-6422 entry concerns the kernel on certain Android devices (Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly others) using weak permissions (0666) on /dev/exynos-mem when running an Exynos 4210/4412, enabling an attacker to read or write arbitrary physical memory and achieve p...

CVE-2012-6422

The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when running an Exynos 4210 or 4412 processor, uses weak permissions 0666 for /dev/exynos-mem, which allows attackers to read or write arbitrary physical memory and gain privileges via a crafted...

dns-check-zone NSE Script

Checks DNS zone configuration against best practices, including RFC 1912. The configuration checks are divided into categories which each have a number of different tests. Script Arguments dns-check-zone.domain the dns zone to check Example Usage nmap -sn -Pn ns1.example.com --script dns-check-zo...

CVE-2011-1623

Cisco Media Processing Software before 1.2 on Media Experience Engine MXE 5600 devices has a default root password, which makes it easier for context-dependent attackers to obtain access via 1 the local console, 2 an SSH session, or 3 a TELNET session, aka Bug ID CSCto77737...

Способы взлома почтовых серверов. Разновидности уязвимостей.

Мы рассмотрим технологию взлома почтового сервера, использующую MX инъекции. Я думаю, что многие читатели слышали об инъекциях, таких как Xрath, SQL, LDAр, SSI и т.д. Как и в других инъекциях, в MX перед взломщиком стоит задача сыграть на уязвимости почтового web-приложения, которая заключается в...

Microsoft Windows SMTP Server MX Record Denial of Service Vulnerability

The Microsoft Windows Simple Mail Transfer Protocol SMTP Server is prone to a denial-of-service vulnerability and to an information disclosure vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Microsoft Windows SMTP Server MX Record Denial of Service Vulnerability

The Microsoft Windows Simple Mail Transfer Protocol SMTP Server is prone to a denial-of-service vulnerability and to to an information-disclosure vulnerability. Successful exploits of the denial-of-service vulnerability will cause the affected SMTP server to stop responding, denying service to...

Microsoft Windows SMTP Server组件MX记录解析拒绝服务漏洞（MS10-024）

BUGTRAQ ID: 39308 CVE ID: CVE-2010-0024 Microsoft Windows是微软发布的非常流行的操作系统。 Windows的SMTP组件处理特制的DNS邮件交换器（MX）资源记录的方式中存在拒绝服务漏洞。利用该漏洞的尝试不要求进行认证，攻击者可以通过向运行SMTP服务的计算机发送特制网络消息来利用该漏洞。成功利用此漏洞的攻击者可能会导致SMTP服务停止响应，直至重新启动。 Microsoft Exchange Server 2003 SP2 Microsoft Windows XP SP3 Microsoft Windows XP SP2...

MX Simulator Server buffer overflow

Buffer overflow on network request handling...

MX Simulator Server 2010-02-06 Buffer Overflow

/ MX Simulator Server 2010-02-06 Remote Buffer Overflow PoC This PoC will executes the calc.exe software on the remote system. The bug was discovered by Luigi Auriemma www.aluigi.org Copyright 2010 Salvatore Fresta aka Drosophila This program is free software; you can redistribute it and/or modif...

MX Simulator Server - Remote Buffer Overflow

/ MX Simulator Server 2010-02-06 Remote Buffer Overflow PoC This PoC will executes the calc.exe software on the remote system. The bug was discovered by Luigi Auriemma www.aluigi.org Copyright 2010 Salvatore Fresta aka Drosophila http://www.salvatorefresta.net/?opt=adv...

Mandriva Update for mandriva-doc MDVA-2010:072 (mandriva-doc)

Check for the Version of mandriva-doc OpenVAS Vulnerability Test Mandriva Update for mandriva-doc MDVA-2010:072 mandriva-doc Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...