Lucene search
K

3869 matches found

OpenVAS
OpenVAS
added 2013/01/30 12:0 a.m.15 views

Xerox Printer Default / No Credentials (HTTP)

The remote Xerox Printer is using default or no credentials for the HTTP based interface. Copyright C 2013 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Th...

7.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.30 views

RHEL 6 : kernel (RHSA-2011:1106)

Updated kernel packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.0 Extended Update Support. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring...

5.7CVSS6.9AI score0.01003EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2013/01/17 12:0 a.m.46 views

Scientific Linux Security Update : gtk2 on SL5.x i386/x86_64 (20130108)

An integer overflow flaw was found in the X BitMap XBM image file loader in GTK+. A remote attacker could provide a specially crafted XBM image file that, when opened in an application linked against GTK+ such as Nautilus, would cause the application to crash. CVE-2012-2370 This update also fixes...

5CVSS6.3AI score0.04096EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2013/01/16 12:0 a.m.9 views

drupal -- multiple vulnerabilities

Drupal Security Team reports: Cross-site scripting Various core and contributed modules Access bypass Book module printer friendly version Access bypass Image module...

2AI score
Exploits0References1
OpenVAS
OpenVAS
added 2013/01/11 12:0 a.m.31 views

RedHat Update for hplip3 RHSA-2013:0133-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

1.2CVSS6.4AI score0.00444EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/01/08 12:0 a.m.29 views

RHEL 5 : hplip3 (RHSA-2013:0133)

Updated hplip3 packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

1.2CVSS7.4AI score0.00444EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2012/12/17 8:37 p.m.7 views

Cisco VoIP Phone Hacked, Turned into Listening Device

Network-enabled devices such as routers and printers are notoriously insecure and fully exploitable gateways leading attackers toward network resources. A researcher and PhD student at Columbia University recently added VoIP phones to the list of pressing concerns. Ang Cui demonstrated an attack...

1.1AI score
Exploits0References1
securityvulns
securityvulns
added 2012/12/09 12:0 a.m.47 views

[security bulletin] HPSBPI02828 SSRT100778 rev.1 - HP LaserJet and Color LaserJet, Cross-Site Scripting (XSS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03556108 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03556108 Version: 1 HPSBPI02828...

4.3CVSS5.8AI score0.01627EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/12/04 12:0 a.m.24 views

Samsung / Dell Printer SNMP Backdoor

Binary data 6639.prm...

7.5CVSS7.3AI score0.08015EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2012/12/03 12:0 a.m.121 views

Samsung / Dell Printer SNMP Backdoor

The remote host appears to be a Samsung printer, or a Dell printer manufactured by Samsung. It has a hard-coded SNMP read-write community string that allows access even when SNMP has been disabled in the printer management utility. A remote, unauthenticated attacker can exploit this to take contr...

7.5CVSS8.1AI score0.08015EPSS
Exploits1References3
seebug.org
seebug.org
added 2012/11/30 12:0 a.m.80 views

Samsung 打印机固件管理账号后门

BUGTRAQ ID: 56692 CVECAN ID: CVE-2012-4964 Samsung是韩国三星电子,成立于1969年。 Samsung打印机及某些三星产的Dell打印机包含硬编码的完全读写权限的SNMP community string,即使在打印机管理程序中禁用SNMP,此字符串也是有效的,导致远程攻击者可完全控制受影响设备。2012年10月31日后的发布的模块不受此漏洞的影响。 利用该漏洞,一个远端的未授权的攻击者可以1 以管理权限访问受影响设备 (2)修改受影响设备的配置、访问敏感资源 (3) 代码执行 有报告称已有发布工具利用该漏洞。 0 Samsung...

7.5CVSS6.4AI score0.08015EPSS
Exploits1
The Hacker News
The Hacker News
added 2012/11/28 6:44 p.m.11 views

Samsung printer having secret admin account Backdoor

US CERT warn about Some Samsung printers, including models the Korean company made for Dell, have a backdoor administrator account coded into their firmware. This hard coded admin account in firmware could enable attackers to change their configuration, read their network information or stored...

6.4AI score
Exploits0
NVD
NVD
added 2012/11/28 1:55 a.m.27 views

CVE-2012-4964

The Samsung printer firmware before 20121031 has a hardcoded read-write SNMP community, which makes it easier for remote attackers to obtain administrative access via an SNMP request...

7.5CVSS6.6AI score0.08015EPSS
Exploits1References1
Prion
Prion
added 2012/11/28 1:55 a.m.24 views

Hardcoded credentials

The Samsung printer firmware before 20121031 has a hardcoded read-write SNMP community, which makes it easier for remote attackers to obtain administrative access via an SNMP request...

7.5CVSS7.2AI score0.08015EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2012/11/28 1:0 a.m.84 views

CVE-2012-4964

The CVE-2012-4964 vulnerability affects Samsung printer firmware prior to 20121031 that ships with a hardcoded read-write SNMP community string. This enables remote attackers to obtain administrative access over SNMP, potentially taking full control of affected devices (including some Dell-brande...

7.5CVSS7.4AI score0.08015EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2012/11/28 1:0 a.m.33 views

CVE-2012-4964

The Samsung printer firmware before 20121031 has a hardcoded read-write SNMP community, which makes it easier for remote attackers to obtain administrative access via an SNMP request...

7.4AI score0.08015EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2012/11/28 12:0 a.m.102 views

Samsung Printer SNMP Hardcoded Community String Authentication Bypass Vulnerability

Samsung Printers are prone to an authentication bypass vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.4AI score0.08015EPSS
Exploits1References4
Prion
Prion
added 2012/11/22 12:28 p.m.7 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Printer, email and PDF versions module 6.x-1.x before 6.x-1.15 and 7.x-1.x before 7.x-1.0 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably the PATHINFO...

4.3CVSS6.2AI score0.02325EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2012/11/22 11:0 a.m.15 views

CVE-2012-2084

Cross-site scripting XSS vulnerability in the Printer, email and PDF versions module 6.x-1.x before 6.x-1.15 and 7.x-1.x before 7.x-1.0 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably the PATHINFO...

5.8AI score0.02325EPSS
Exploits0References9
CVE
CVE
added 2012/11/22 11:0 a.m.50 views

CVE-2012-2084

The CVE-2012-2084 case affects Drupal’s Printer, email and PDF versions module (6.x-1.x before 6.x-1.15; 7.x-1.x before 7.x-1.0). The root cause is insufficient escaping of URL elements when rendering content, allowing remote attackers to inject arbitrary scripts/HTML (XSS) via likely PATH_INFO v...

4.3CVSS5.9AI score0.02325EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder