18 matches found
EUVD-2004-0614
Malware in sbrugna...
CVE-2024-28052
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet gateway for homes and small offices while aiming to be easy to configure and operate. In addition to providing a WiFi access point, the device serves as a 4-port wired router and implements a variety of...
CVE-2024-28052
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet gateway for homes and small offices while aiming to be easy to configure and operate. In addition to providing a WiFi access point, the device serves as a 4-port wired router and implements a variety of...
CVE-2024-28052
The CVE-2024-28052 entry concerns LevelOne WBR-6012, a wireless SOHO router. Talos reports a buffer overflow in the Web Application when handling HTTP POST requests with a URI length of 1454+ characters that do not start with /upn or /upg, causing a crash/reboot and potential access to a backdoor...
CVE-2024-28052
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet gateway for homes and small offices while aiming to be easy to configure and operate. In addition to providing a WiFi access point, the device serves as a 4-port wired router and implements a variety of...
LevelOne WBR-6012 Web Application buffer overflow vulnerability
Talos Vulnerability Report TALOS-2024-1997 LevelOne WBR-6012 Web Application buffer overflow vulnerability October 30, 2024 CVE Number CVE-2024-28052 SUMMARY The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet gateway for homes and small offices while...
LevelOne WBR-6012 Web Application improper resource allocation vulnerability
Talos Vulnerability Report TALOS-2024-1982 LevelOne WBR-6012 Web Application improper resource allocation vulnerability October 30, 2024 CVE Number CVE-2024-31152 SUMMARY The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation within its web application,...
Weak password vulnerability in TP-LINK TL-R406
The TP-LINK TL-R406 is a SOHO router that provides dynamic IP, static IP and PPPoE access methods, supporting both ADSL line users and cellular broadband users. A weak password vulnerability exists in the TP-LINK TL-R406, which can be exploited by attackers to obtain sensitive information...
Twenty-two brand router vulnerability Distribution Report-vulnerability warning-the black bar safety net
Now, with cybercrime techniques to constantly renovate our home router has also recently become a cyber-attack new target. In fact, home routers indeed there are a lot of security vulnerabilities. Álvaro Folgado Rueda and many other network security experts recently wrote a report, in-depth...
ZTE SOHO ROUTERWEB_SHELL_CMD.GCH 远程命令执行漏洞
漏洞概要 2014 年 3 月 3 日,Rapid7 团队发布了中兴 F460 / F660 后门信息1,任何可以访问设备的用户都可以直接访问一个命令执行的 Web 界面,以 root 权限执行任意命令。 上述设备在中国境内被广泛应用,俗称“电信光猫”。 漏洞描述 ZTE 生产的 SOHO Router 的一些型号中,Web 根目录(/home/httpd )下存在 /webshellcmd.gch 文件,没有任何访问控制,可以直接执行任意系统命令。 以下几点值得注意: Rapid7 于 2014 年 3 月 3 日公布此漏洞,但是根据搜索结果,此问题早在 2012...
ZTE SOHO ROUTER WEB_SHELL_CMD.GCH 远程命令执行
1、漏洞概要2014 年 3 月 3 日,Rapid7 团队发布了中兴 F460 / F660 后门信息1,任何可以访问设备的用户都可以直接访问一个命令执行的 Web 界面,以 root 权限执行任意命令。上述设备在中国境内被广泛应用,俗称“电信光猫”。2.1漏洞描述ZTE 生产的 SOHO Router 的一些型号中,Web 根目录(/home/httpd )下存在 /webshellcmd.gch 文件,没有任何访问控制,可以直接执行任意系统命令。以下几点值得注意:Rapid7 于 2014 年 3 月 3 日公布此漏洞,但是根据搜索结果,此问题早在 2012...
Event tracking: ZTE router SOHO Router)Backdoor has been clear-vulnerability warning-the black bar safety net
2 0 1 4 year 3 month, the black bar safety net coverage of the ZTE company ZTE production of the SOHO Router models the router was traced to the presence of the back door. ZTE products and Incident Response Team in the month to make a response, and in 6 months in ZTE website released a...
MIPS Little Endian Shellcode
MIPS Little Endian Shellcode. CVE-2013-4659. Shellcode exploit for mips platform Disassembled MIPS Little Endian Shellcode Shellcode was designed for ACSD exploit on the ASUS RT-AC66U SOHO router. CVE: CVE-2013-4659 Written by Jacob Holcomb, Security Analyst @ Independent Security Evaluators Blog...
Linksys WAG54G2 - Web Management Console Arbitrary Command Execution
Linksys WAG54G2 - Web Management Console Arbitrary Command Execution 1. Linksys WAG54G2 router is a popular SOHO class device. It provides ADSL / WiFi / Ethernet interfaces. 2. When logged into web management console, it is possible to execute commands as root tested on firmware: V1.00.10. 3. PoC...
Infosmart SOHO Router Default Password (deprecated)
Binary data 4861.prm...
Actiontec MI424WR默认WEP KEY安全绕过漏洞
BUGTRAQ ID: 32271 CNCAN ID:CNCAN-2008111301 Actiontec MI424WR是一款SOHO路由器设备。 Actiontec MI424WR存在默认的WEP加密密钥,攻击者可以轻易的解密无线网络通信,获得敏感信息。并对网络进行进一步攻击。 Actiontec MI424WR 目前没有解决方案提供: http://www.actiontec.com/products/product.php?pid=41...
CVE-2004-0615
CVE-2004-0615 describes a cross-site scripting (XSS) vulnerability in D-Link DI-614+ (firmware 2.30), DI-704 (firmware 2.60B2), and DI-624 routers, exploitable by injecting arbitrary script/HTML via the DHCP HOSTNAME option in a DHCP request. Connected PT-2004-1707 details confirm the affected mo...
webramp-M3.txt
Date: Thu, 21 Jan 1999 01:18:50 -0800 From: John Stanley To: [email protected] Subject: WebRamp M3 remote network access bug I have not seen this problem mentioned on this list. I defer to the moderator's memory and hope this is valuable information... The WebRamp M3 is a small SOHO router wit...