32 matches found
EUVD-2013-7262
Malware in sbrugna...
EUVD-2008-1435
Malware in sbrugna...
CVE-2013-10049
An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-NAS4220—via the unauthenticated timeHandler.cgi endpoint exposed through the web interface. The CGI script fails to properly sanitize user-supplied input in the timeZone paramet...
CVE-2013-10049
An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-NAS4220—via the unauthenticated timeHandler.cgi endpoint exposed through the web interface. The CGI script fails to properly sanitize user-supplied input in the timeZone paramet...
CVE-2013-10049
An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-NAS4220—via the unauthenticated timeHandler.cgi endpoint exposed through the web interface. The CGI script fails to properly sanitize user-supplied input in the timeZone paramet...
CVE-2013-10049
The vulnerability CVE-2013-10049 affects Raidsonic NAS devices IB-NAS5220 and IB-NAS4220 via the unauthenticated POST endpoint timeHandler.cgi, where improper sanitization of the timeZone parameter allows OS command execution. The root cause is input handling in timeHandler.cgi, enabling remote a...
CVE-2013-10049 Raidsonic NAS Devices Unauthenticated Remote Command Execution
An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-NAS4220—via the unauthenticated timeHandler.cgi endpoint exposed through the web interface. The CGI script fails to properly sanitize user-supplied input in the timeZone paramet...
CVE-2013-10049 Raidsonic NAS Devices Unauthenticated Remote Command Execution
An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-NAS4220—via the unauthenticated timeHandler.cgi endpoint exposed through the web interface. The CGI script fails to properly sanitize user-supplied input in the timeZone paramet...
PT-2025-31686 · Raidsonic · Ib-Nas5220 +1
Name of the Vulnerable Software and Affected Versions: Raidsonic NAS devices versions IB-NAS5220 and IB-NAS4220 Description: An OS command injection issue exists due to improper sanitization of user-supplied input. The timeHandler.cgi API endpoint is vulnerable, allowing remote attackers to injec...
Raidsonic IB-NAS5220和Raidsonic IB-NAS4220 安全漏洞
The Raidsonic IB-NAS5220 and Raidsonic IB-NAS4220 are both wireless routers from the German company Raidsonic. A security vulnerability exists in the Raidsonic IB-NAS5220 and Raidsonic IB-NAS4220 that stems from insufficient timeHandler.cgi endpoint input cleanup, which could lead to remote code...
Raidsonic NAS Devices Unauthenticated Remote Command Execution
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...
Raidsonic IB-NAS5220 and IB-NAS4220-B - Multiple Vulnerabilities
No description provided by source. Device Name: IB-NAS5220 / IB-NAS4220-B Vendor: Raidsonic ============ Vulnerable Firmware Releases: ============ Product Name IB-NAS5220 / IB-NAS4220-B Tested Firmware IB5220: 2.6.3-20100206S Tested Firmware IB4220: 2.6.3.IB.1.RS.1 Firmware Download:...
RaidSonic IB-NAS5220 and IB-NAS4220-B Multiple Security Vulnerabilities (Sep 2013) - Active Check
RaidSonic IB-NAS5220 and IB-NAS422-B devices are prone to multiple security vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Raidsonic NAS Devices Unauthenticated Remote Command Execution
Different Raidsonic NAS devices are vulnerable to OS command injection via the web interface. The vulnerability exists in timeHandler.cgi, which is accessible without authentication. This Metasploit module has been tested with the versions IB-NAS5220 and IB-NAS4220. Since this module is adding a...
Raidsonic NAS Devices - Remote Command Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Raidsonic NAS Devices Unauthenticated...
Raidsonic NAS Devices Unauthenticated Remote Command Execution
Different Raidsonic NAS devices are vulnerable to OS command injection via the web interface. The vulnerability exists in timeHandler.cgi, which is accessible without authentication. This module has been tested with the versions IB-NAS5220 and IB-NAS4220. Since this module is adding a new user an...
RaidSonic IB-NAS5220 and IB-NAS4220-B Multiple Security Vulnerabilities
RaidSonic IB-NAS5220 and IB-NAS422-B are prone to multiple security vulnerabilities, including: 1. An authentication-bypass vulnerability 2. An HTML-injection vulnerability 3. A command-injection vulnerability The attacker may leverage these issues to bypass certain security restrictions and...
Raidsonic IB-NAS5220 and IB-NAS4220-B - Multiple Vulnerabilities
Exploit for hardware platform in category web applications Device Name: IB-NAS5220 / IB-NAS4220-B Vendor: Raidsonic ============ Vulnerable Firmware Releases: ============ Product Name IB-NAS5220 / IB-NAS4220-B Tested Firmware IB5220: 2.6.3-20100206S Tested Firmware IB4220: 2.6.3.IB.1.RS.1 Firmwa...
Raidsonic IB-NAS5220 / IB-NAS4220-B XSS / Authentication Bypass
Device Name: IB-NAS5220 / IB-NAS4220-B Vendor: Raidsonic ============ Vulnerable Firmware Releases: ============ Product Name IB-NAS5220 / IB-NAS4220-B Tested Firmware IB5220: 2.6.3-20100206S Tested Firmware IB4220: 2.6.3.IB.1.RS.1 Firmware Download:...
Raidsonic IB-NAS5220 and IB-NAS4220-B - Multiple Vulnerabilities
Raidsonic IB-NAS5220 and IB-NAS4220-B - Multiple Vulnerabilities Device Name: IB-NAS5220 / IB-NAS4220-B Vendor: Raidsonic ============ Vulnerable Firmware Releases: ============ Product Name IB-NAS5220 / IB-NAS4220-B Tested Firmware IB5220: 2.6.3-20100206S Tested Firmware IB4220: 2.6.3.IB.1.RS.1...