7 matches found
EUVD-2017-7857
Malware in sbrugna...
EUVD-2012-2211
Malware in sbrugna...
CVE-2017-16673
Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. This allows an attacker to impersonate a Datto Backup Appliance to "pair" with the agent and issue requests to this agent, if the attacker can reach the agent on TCP port 25566 or 25568, and send unspecified...
PT-2025-19713
Name of the Vulnerable Software and Affected Versions Gefen WebFWC In AV over IP products versions 1.70, 1.85h, 1.86v Description An issue in the /usr/local/bin/jncs.sh script allows attackers with network access to connect to the device over TCP port 4444 without authentication and execute...
Code injection
The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory,...
PT-2022-5290 · Abode Systems · Iota All-In-One Security Kit
Name of the Vulnerable Software and Affected Versions: Abode Systems, Inc. iota All-In-One Security Kit version 6.9Z Description: A hard-coded password vulnerability exists in the telnet functionality, allowing an attacker to authenticate with hard-coded credentials. This can lead to arbitrary...
PT-2021-14831 · Garrett Metal Detectors · Garrett Metal Detectors Ic Module Cma
Name of the Vulnerable Software and Affected Versions: Garrett Metal Detectors iC Module CMA version 5.0 Description: A stack-based buffer overflow issue exists in the CMA readfile function of the Garrett Metal Detectors iC Module. The iC Module provides an authenticated command-line interface ov...