EUVD-2010-1774

Malware in sbrugna...

📄 Off 2.15.4 Unauthenticated Remote System Control

Off version 2.15.4 exposes a TCP service that accepts remote commands like Shutdown, Restart, Lock, Sleep, and Hibernate without any authentication. Exploit Title: Off 2.15.4 - Unauthenticated Remote System Control Shutdown/Restart/Lock/Sleep/Hibernate Date: 25/06/25 Exploit Author: Chokri Hammed...

CVE-2018-16994

An issue was discovered on PHOENIX CONTACT AXL F BK PN =1.0.4, AXL F BK ETH = 1.12, and AXL F BK ETH XC = 1.11 devices and Bosch Rexroth S20-ETH-BK and Rexroth S20-PN-BK+ the S20-PN-BK+/S20-ETH-BK fieldbus couplers sold by Bosch Rexroth contain technology from Phoenix Contact. Incorrect handling ...

Honda's Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles

A duo of researchers has released a proof-of-concept PoC demonstrating the ability for a malicious actor to remote lock, unlock, and even start Honda and Acura vehicles by means of what's called a replay attack. The attack is made possible, thanks to a vulnerability in its remote keyless system...

CVE-2019-5633

An insecure storage of sensitive information vulnerability is present in Hickory Smart for iOS mobile devices from Belwith Products, LLC. The application's database was found to contain information that could be used to control the lock devices remotely. This issue affects Hickory Smart for iOS,...

Trend Micro Mobile Security for Enterprise remote_lock_device Device_DeviceId SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Mobile Security for Enterprise. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of the remotelockdevice action. When parsing the...

SAP Afaria - Authorization bypass, Insecure signature

Application: SAP Afaria 7.0.6001.5 Vendor URL: http://www.sap.com Bugs: Authorization bypass Reported: 12.03.2015 Vendor response: 13.03.2015 Date of Public Advisory: 12.05.2015 Reference: SAP Security Note 2134905 Authors: Dmitry Chastukhin ERPScan Description An anonymous attacker can spoof a...

Android Device Manager allows user to Lock, Wipe and Locate device remotely

If you lose your device, Google lets you secure it instantly from afar through Android Device Manager, that let you locate and remotely wipe your phones and tablets. The latest update to Android Device Manager enables remote password locking, overrides the built-in Pattern, PIN code, Face unlock ...

CVE-2010-1754

Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch does not properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe, which allows physically proximate attackers to bypass intended passcode requirements via unspecified vectors...

Design/Logic Flaw

Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch does not properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe, which allows physically proximate attackers to bypass intended passcode requirements via unspecified vectors...

PT-2010-3392 · Apple · Mobileme +1

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 4 Description: The issue concerns the Passcode Lock feature in Apple iOS, which fails to properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe. This allows...

Axent Raptor 6.0 - Denial of Service

Axent Raptor 6.0 - Denial of Service // source: https://www.securityfocus.com/bid/736/info It is possible to remotely lock Axent Raptor firewalls by sending them packets with malformed IP options fields. According to an advisory posted to bugtraq by the perdue CERIAS labs, setting the SECURITY an...

Axent Raptor 6.0 - Denial of Service

// source: https://www.securityfocus.com/bid/736/info It is possible to remotely lock Axent Raptor firewalls by sending them packets with malformed IP options fields. According to an advisory posted to bugtraq by the perdue CERIAS labs, setting the SECURITY and TIMESTAMP IP options length to 0 ca...