38 matches found
CVE-2016-4521
Sixnet BT-5xxx and BT-6xxx M2M devices are affected by a hardcoded credentials vulnerability (CVE-2016-4521) in firmware before 3.8.21 and 3.9.x before 3.9.8. The issue allows remote attackers to obtain access via unspecified vectors. Affected models include BT-5xxx/BT-6xxx series; remediation is...
CVE-2016-4521
Sixnet BT-5xxx and BT-6xxx M2M devices before 3.8.21 and 3.9.x before 3.9.8 have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors...
Sixnet BT Series Hard-coded Credentials Vulnerability
OVERVIEW Independent researcher Neil Smith has identified a hard-coded credential vulnerability in Sixnet’s BT series routers. Sixnet has produced patches and new firmware to mitigate this vulnerability. This vulnerability could be exploited remotely. Exploits that target this vulnerability are...
Sixnet Sixview Web Console Directory Traversal (CVE-2014-2976)
Sixnet Sixview contains a flaw that allows traversing outside of a restricted path. The issue is due to the program not properly sanitizing user input. With a specially crafted request, a remote attacker can gain access to arbitrary files...
Sixnet Sixview 2.4.1 - Web Console Directory Traversal
No description provided by source. Exploit Title: Sixnet sixview web console directory traversal Date: 2014-04-21 Exploit Author: daniel svartman Vendor Homepage: www.sixnet.com Software Link: Not available, hardware piece - appliance Version: 2.4.1 Tested on: Sixnet Sixview web console Linux bas...
CVE-2014-2976
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...
Directory traversal
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...
CVE-2014-2976
CVE-2014-2976 affects Sixnet SixView Manager 2.4.1 (Sixview web console). A directory traversal flaw allows remote attackers to read arbitrary files via a crafted HTTP GET (port 18081) that uses a .. sequence. The root cause is insufficient input sanitization in the web console, enabling access t...
EUVD-2014-2998
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...
CVE-2014-2976
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...
Sixnet Sixview 2.4.1 - Web Console Directory Traversal
Exploit for hardware platform in category web applications Exploit Title: Sixnet sixview web console directory traversal Date: 2014-04-21 Exploit Author: daniel svartman Vendor Homepage: www.sixnet.com Software Link: Not available, hardware piece - appliance Version: 2.4.1 Tested on: Sixnet Sixvi...
Sixnet Sixview 2.4.1 - Web Console Directory Traversal
Sixnet Sixview 2.4.1 - Web Console Directory Traversal Exploit Title: Sixnet sixview web console directory traversal Date: 2014-04-21 Exploit Author: daniel svartman Vendor Homepage: www.sixnet.com Software Link: Not available, hardware piece - appliance Version: 2.4.1 Tested on: Sixnet Sixview w...
Sixnet Sixview 2.4.1 Directory Traversal
Exploit Title: Sixnet sixview web console directory traversal Date: 2014-04-21 Exploit Author: daniel svartman Vendor Homepage: www.sixnet.com Software Link: Not available, hardware piece - appliance Version: 2.4.1 Tested on: Sixnet Sixview web console Linux based appliance CVE : 2014-2976 PoV,...
Sixnet Sixview 2.4.1 - Web Console Directory Traversal
Exploit Title: Sixnet sixview web console directory traversal Date: 2014-04-21 Exploit Author: daniel svartman Vendor Homepage: www.sixnet.com Software Link: Not available, hardware piece - appliance Version: 2.4.1 Tested on: Sixnet Sixview web console Linux based appliance CVE : 2014-2976 PoV,...
CVE-2013-2802
The universal protocol implementation in Sixnet UDR before 2.0 and RTU firmware before 4.8 allows remote attackers to execute arbitrary code; read, modify, or create files; or obtain file metadata via function opcodes...
Code injection
The universal protocol implementation in Sixnet UDR before 2.0 and RTU firmware before 4.8 allows remote attackers to execute arbitrary code; read, modify, or create files; or obtain file metadata via function opcodes...
CVE-2013-2802
Sixnet UDR (<2.0) and RTU firmware (
Sixnet Universal Protocol Undocumented Function Codes (Update B)
OVERVIEW This updated advisory is a follow-up to the updated advisory titled ICSA-13-231-01A Sixnet Universal Protocol Undocumented Function Codes that was published August 26, 2013, on the ICS-CERT Web page. --------- Begin Update B Part 1 of 1 -------- Researchers Kyle Stone and Mehdi Sabraoui...