EUVD-2017-18411

Malware in sbrugna...

(0Day) Belkin Wemo Link syseventd Missing Authentication for Critical Function Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Belkin Wemo Link. Authentication is not required to exploit this vulnerability. The specific flaw exists within the syseventd daemon, which listens on TCP port 52367 by default. The issue results...

Cisco DPC3939 Firmware Arbitrary Command Execution Vulnerability (CNVD-2017-27789)

Cisco DPC3939 is a wireless voice gateway product from Cisco USA. Cisco DPC3939 firmware security vulnerability. Allows a remote attacker to execute arbitrary commands by utilizing local network access and connecting to the server's root syseventd, as evidenced by copying configuration data...

CVE-2017-9479

The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying configuration data into a...

Code injection

The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying configuration data into a...

CVE-2017-9479

The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying configuration data into a...