PT-2022-6145 · Abb · Rmc-100-Lite +6

Name of the Vulnerable Software and Affected Versions: ABB RMC-100 Standard, RMC-100-LITE, XIO, XFCG5, XRCG5, uFLOG5, UDC Description: The issue is related to Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' and Improper Neutralization of Special Elements used in a...

CVE-2020-29664

A command injection issue in djisys in DJI Mavic 2 Remote Controller before firmware version 01.00.0510 allows for code execution via a malicious firmware upgrade packet...

Command injection

A command injection issue in djisys in DJI Mavic 2 Remote Controller before firmware version 01.00.0510 allows for code execution via a malicious firmware upgrade packet...

CVE-2020-29664

DJI Mavic 2 Remote Controller is affected by CVE-2020-29664 due to a command injection in the dji_sys component. The vulnerability allows code execution via a malicious firmware upgrade packet when the controller runs firmware prior to 01.00.0510. The issue is rooted in the firmware upgrade handl...

CVE-2020-29664

A command injection issue in djisys in DJI Mavic 2 Remote Controller before firmware version 01.00.0510 allows for code execution via a malicious firmware upgrade packet...

DJI Mavic 2 Command Injection Vulnerability

The Dji DJI Mavic 2 Remote Controller is a hardware device from Dji Japan. Provides connectivity to other aircraft powered by the Mavic 2 and OcuSync 2.0 to maximize outdoor flight performance. A command injection vulnerability exists in the DJI Mavic 2 Remote Controller. The vulnerability stems...

50m-ctf: CTF write-up: c8889970d9fb722066f31e804e351993

So the CTF starts with this tweet. F434370 The first image is about the 50 million in bounties but the second one looks related to the CTF. The first thing that comes to mind when relating CTFs and images is "steganography". Using the all purpose steg tool zsteg as our first resort, we discover...

Multiple Medtronic Product Information Disclosure Vulnerabilities

Medtronic MMT-508 MiniMed insulin pump and others are different models of insulin pumps from Medtronic, USA. An information disclosure vulnerability exists in several Medtronic products, which can be exploited by an attacker to capture the information passed between the controller and pump when t...

CVE-2018-14781 Medtronic MiniMed MMT-500/MMT-503 Remote Controllers Authentication Bypass by Capture-replay

Medtronic MiniMed MMT devices when paired with a remote controller and having the “easy bolus” and “remote bolus” options enabled non-default, are vulnerable to a capture-replay attack. An attacker can capture the wireless transmissions between the remote controller and the pump and replay them t...

Default configuration

Medtronic MMT 508 MiniMed insulin pump, 522 / MMT - 722 Paradigm REAL-TIME, 523 / MMT - 723 Paradigm Revel, 523K / MMT - 723K Paradigm Revel, and 551 / MMT - 751 MiniMed 530G The models identified above, when paired with a remote controller and having the "easy bolus" and "remote bolus" options...

DameWare Remote Controller <= 12.0.0.520 - Remote Code Execution Exploit

Exploit for windows platform in category remote exploits Exploit Title: Dameware Remote Controller RCE Date: 3-04-2016 Exploit Author: Securifera Vendor Homepage: http://www.dameware.com/products/mini-remote-control/product-overview.aspx Version: 12.0.0.520 Website:...

DameWare Remote Controller 12.0.0.520 Remote Code Execution

Exploit Title: Dameware Remote Controller RCE Date: 3-04-2016 Exploit Author: Securifera Vendor Homepage: http://www.dameware.com/products/mini-remote-control/product-overview.aspx Version: 12.0.0.520 Website:...

DameWare Remote Controller 12.0.0.520 - Remote Code Execution

DameWare Remote Controller 12.0.0.520 - Remote Code Execution Exploit Title: Dameware Remote Controller RCE Date: 3-04-2016 Exploit Author: Securifera Vendor Homepage: http://www.dameware.com/products/mini-remote-control/product-overview.aspx Version: 12.0.0.520 Website:...

TV remote controller - MIT license, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application TV remote controller published at the 'play' market has multiple vulnerabilities...

OnePlus DR-1 — World's Smallest $19.99 Drone

Chinese smartphone maker OnePlus who recently announced that the company is planning to launch its latest flying drone, OnePlus DR-1, saying it would be a "Game Changer." There have already been some speculations about a drone from OnePlus circulating on the Internet, but now the company has...

Samsun TV and BD-players security vulnerabilities

DoS, buffer overflow in Remote Controller protocol...