7 matches found
EUVD-2017-18411
Malware in sbrugna...
(0Day) Belkin Wemo Link syseventd Missing Authentication for Critical Function Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Belkin Wemo Link. Authentication is not required to exploit this vulnerability. The specific flaw exists within the syseventd daemon, which listens on TCP port 52367 by default. The issue results...
The vulnerability in the embedded microprogramming software of Comcast’s Cisco DPC3939 allows a hacker to execute arbitrary shell commands with root privileges.
The vulnerability of the embedded microprogramming software in Comcast’s Cisco DPC3939 router is related to deficiencies in access control for the local network. Exploiting this vulnerability allows a malicious actor to execute arbitrary shell commands with root privileges by connecting to the...
Cisco DPC3939 Firmware Arbitrary Command Execution Vulnerability (CNVD-2017-27789)
Cisco DPC3939 is a wireless voice gateway product from Cisco USA. Cisco DPC3939 firmware security vulnerability. Allows a remote attacker to execute arbitrary commands by utilizing local network access and connecting to the server's root syseventd, as evidenced by copying configuration data...
CVE-2017-9479
The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying configuration data into a...
Code injection
The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying configuration data into a...
CVE-2017-9479
The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying configuration data into a...