28 matches found
Supermicro Onboard IPMI Port 49152 Sensitive File Exposure
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule 'Supermicro Onboard IPMI Port 49152 Sensitive File Exposure', 'Description' = %q This module abuses a file exposure vulnerability...
The vulnerability in the implementation of the sprintf() function in the microprogramming software for DIR-890L A1 allows a hacker to execute arbitrary code.
The vulnerability of the sprintf function implementation in the microprogramming-based router software DIR-890L A1 is related to incorrect checking of string lengths in HTTP headers. Exploiting this vulnerability could allow an attacker to execute arbitrary code by connecting through port 49152...
CVE-2022-30521
The LAN-side Web-Configuration Interface has Stack-based Buffer Overflow vulnerability in the D-Link Wi-Fi router firmware DIR-890L DIR890LA1FW107b09.bin and previous versions. The function created at 0x17958 of /htdocs/cgibin will call sprintf without checking the length of strings in parameters...
CVE-2022-30521
The LAN-side Web-Configuration Interface has Stack-based Buffer Overflow vulnerability in the D-Link Wi-Fi router firmware DIR-890L DIR890LA1FW107b09.bin and previous versions. The function created at 0x17958 of /htdocs/cgibin will call sprintf without checking the length of strings in parameters...
Stack overflow
The LAN-side Web-Configuration Interface has Stack-based Buffer Overflow vulnerability in the D-Link Wi-Fi router firmware DIR-890L DIR890LA1FW107b09.bin and previous versions. The function created at 0x17958 of /htdocs/cgibin will call sprintf without checking the length of strings in parameters...
PT-2022-3311 · D Link · D-Link Dir-890L
Name of the Vulnerable Software and Affected Versions: D-Link DIR-890L versions prior to DIR890LA1 FW107b09.bin Description: The issue is related to a stack-based buffer overflow vulnerability in the LAN-side Web-Configuration Interface of the D-Link Wi-Fi router firmware. This vulnerability is...
CVE-2017-14117
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures an unauthenticated proxy service on WAN TCP port 49152, which allows remote attackers to establish arbitrary TCP connections to intranet hosts by sending \x2a\xce\x01...
KATHREIN UFSconnect 916 / 906 DoS / Unauthenticated Actions
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: KATHREIN - UFSconnect 916, UFSconnect 906 vulnerable version: 2.23 Build 224, 2.22 Build 349 fixed version: - CVE number: impact: High...
Supermicro Onboard IPMI Port 49152 敏感文件泄露漏洞
关于 IPMI:智能平台管理接口 IPMI 是一种开放标准的硬件管理接口规格,定义了嵌入式管理子系统进行通信的特定方法。IPMI 信息通过基板管理控制器 BMC(位于 IPMI 规格的硬件组件上)进行交流。IPMI是智能型平台管理接口(Intelligent Platform Management Interface)的缩写,是管理基于...
Supermicro Onboard IPMI Port 49152 Sensitive File Exposure Exploit
This module abuses a file exposure vulnerability accessible through the web interface on port 49152 of Supermicro Onboard IPMI controllers. The vulnerability allows an attacker to obtain detailed device information and download data files containing the clear-text usernames and passwords for the...
Supermicro IPMI/BMC Cleartext Password Scanner
!/bin/bash Supermicro IPMI/BMC Cleartext Password Scanner v20140622 by 1N3 http://treadstonesecurity.blogspot.ca Usage: sh supermicroscan.sh proxy ABOUT: Supermicro’s implementation of IPMI/BMC allows remote, unauthenticated attackers to request the file PSBlock via port 49152. This plain text...
jetAudio 7.0.5 COWON Media Center MP4 Stack Overflow Exploit
No description provided by source. !/bin/perl jetAudio 7.0.5 COWON Media Center MP4 Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Shell on port 49152 usage: - download the latest 3ivx codec from here: hxxp://www.3ivx.com/codec/3ivxMPEG-4501trialwin.exe - play...
jetAudio 7.0.5 COWON Media Center MP4 - Local Stack Overflow
!/bin/perl jetAudio 7.0.5 COWON Media Center MP4 Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Shell on port 49152 usage: - download the latest 3ivx codec from here: hxxp://www.3ivx.com/codec/3ivxMPEG-4501trialwin.exe - play the AVI file with COWON Media Cent...
Nullsoft Winamp MP4 tags Stack Overflow
!/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Tuned for Nullsoft Winamp 5.32 d.i. Shell on port 49152 usage: well, not much fun for you kids here .. to get the shell you have to use ALT+3 and press UPDATE. Instead this one ...
Nullsoft Winamp 5.32 MP4 tags Stack Overflow Exploit
No description provided by source. !/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Tuned for Nullsoft Winamp 5.32 d.i. Shell on port 49152 usage: well, not much fun for you kids here ...
Windows media player 6.4 MP4 Stack Overflow 0-day
!/bin/perl Windows media player 6.4 MP4 Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Shell on port 49152 usage: - download this codec in order to manage MP4 content: http://www.3ivx.com/coral/3ivxd4451win.exe - open the MP4 file with mplayer2.exe SYS 49152...
Media Player Classic 6.4.9 MP4 File Stack Overflow Exploit
No description provided by source. !/bin/perl Media Player Classic 6.4.9 MP4 Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Shell on port 49152 usage: - download this codec in order to manage MP4 content: http://www.3ivx.com/coral/3ivxd4451win.exe...
mpc-overflow.txt
!/bin/perl Media Player Classic 6.4.9 MP4 Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Shell on port 49152 usage: - download this codec in order to manage MP4 content: http://www.3ivx.com/coral/3ivxd4451win.exe - open the MP4 file with mplayerc.exe SYS 49152...
Windows Media Player 6.4 MP4 File Stack Overflow PoC
Exploit for unknown platform in category local exploits ==================================================== Windows Media Player 6.4 MP4 File Stack Overflow PoC ==================================================== !/bin/perl Windows media player 6.4 MP4 Stack Overflow 0-day discovered and...
Microsoft Windows Media Player 6.4 - .MP4 File Stack Overflow
Microsoft Windows Media Player 6.4 - .MP4 File Stack Overflow !/bin/perl Windows media player 6.4 MP4 Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Shell on port 49152 usage: - download this codec in order to manage MP4 content:...