CVE-2016-5085

CVE-2016-5085 affects the Animas OneTouch Ping insulin pump system. The vulnerability stems from use of a static or non-changing CRC32-derived value as an encryption key during the pairing/authentication handshake, enabling an unauthenticated remote attacker to sniff RF communications between the...

CVE-2016-5086

Johnson & Johnson Animas OneTouch Ping devices allow remote attackers to bypass authentication via replay attacks...

CVE-2016-5084

Johnson & Johnson Animas OneTouch Ping devices do not use encryption for certain data, which might allow remote attackers to obtain sensitive information by sniffing the network...

Animas OneTouch Ping insulin pump contains multiple vulnerabilities

Overview The Animas OneTouch Ping insulin pump contains multiple vulnerabilities that may allow an unauthenticated remote attacker to obtain patient treatment or device data, or execute commands on the device. The attacker cannot obtain personally identifiable information. Description CWE-319:...

Pentmenu - A simple Bash Script for Recon and DOS Attacks

A bash script inspired by pentbox. Designed to be a simple way to implement various network pentesting functions, including network attacks, using wherever possible readily available software commonly installed on most linux distributions without having to resort to multiple specialist tools. Sud...

CVE-2016-2788

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to execute arbitrary code via vectors related to the mco ping command...

Command line Network Diagnostic Tool: myLG

Command line Network Diagnostic Tool myLG, my looking glass is software utility which combines the functions of the different network probes in one network diagnostic tool. Features Popular looking glasses ping/trace/bgp like Telia, Level3 More than 200 countries DNS Lookup information Local fast...

Hitron CGNV4 ModemRouter 4.3.9.9-SIP-UPC - Multiple Vulnerabilities

Hitron CGNV4 ModemRouter 4.3.9.9-SIP-UPC - Multiple Vulnerabilities Hitron CGNV4 modem/router multiple vulnerabilities -------------------------------------------------- Platforms / Firmware confirmed affected: - Hitron CGNV4, 4.3.9.9-SIP-UPC - Product page:...

The vulnerability of the Linux operating system, which allows a malicious individual to trigger a service failure or increase their privileges.

The Linux operating system contains a vulnerability related to errors in the implementation of the pinginitsock function in the original operating system code. Exploiting this vulnerability allows for denial of service or increases privileges by using an incorrect pointer counter in that function...

http-mcmp NSE Script

Checks if the webserver allows modcluster management protocol MCMP methods. The script sends a MCMP PING message to determine protocol support, then issues the DUMP command to dump the current configuration seen by modclustermanager. References: Script Arguments slaxml.debug See the documentation...

ETX-R vulnerable to denial-of-service (DoS)

Overview ETX-R provided by I-O DATA DEVICE, INC. is a wired LAN router. ETX-R contains a denial-of-service DoS vulnerability. Junichi MURAKAMI of FFRI, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A...

CVE-2016-0878

Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to cause a denial of service cold start by sending two crafted ping requests...

CVE-2016-0877

Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause a denial of service memory consumption by executing the ping function...

CVE-2016-0877

Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause a denial of service memory consumption by executing the ping function...

Memory corruption

Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause a denial of service memory consumption by executing the ping function...

CVE-2016-0877

CVE-2016-0877 affects Moxa EDR-G903 Secure Router devices (pre-3.4.12). The vulnerability is a memory leak in the information exposure path caused by the ping function, allowing remote attackers to cause denial of service via memory consumption. The issue is tied to a vulnerability in the device’...

CVE-2016-0877

Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause a denial of service memory consumption by executing the ping function...

New Relic: Blind SSRF on synthetics.newrelic.com

Introduction It was possible to retrieve some data from the http://169.254.169.254/latest/ URL corresponding to the amazon instance metadatas. With more time, we can dump the whole content. PoC When creating a Ping Monitor on the https://synthetics.newrelic.com/accounts/XXXXXXX/synthetics URL, it...

Linux kernel ping 套接字释放后重利用漏洞

No description provided by source...

CANToolz aka YACHT (Yet Another Car Hacking Tool) - Framework for Black-Box CAN Network Analysis

CANToolz is a framework for analysing CAN networks and devices. This tool based on different modules which can be assembled in pipe together and can be used by security researchers and automotive/OEM security testers for black-box analysis and etc. You can use this software for ECU discovery, MIT...