EUVD-2001-0185

Malware in sbrugna...

EUVD-2022-39233

Malicious code in bioql PyPI...

CVE-2025-4357 Tenda RX3 telnet command injection

A vulnerability was found in Tenda RX3 16.03.13.11multi. It has been rated as critical. This issue affects some unknown processing of the file /goform/telnet. The manipulation leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...

Siemens Simatic Hmi License Issue Vulnerability

Siemens Simatic Hmi is a device from Siemens Germany that provides human-computer interaction for industrial automation equipment. Siemens Simatic Hmi has an authorization issue vulnerability that can be exploited by an attacker to run code via an unauthenticated Telnet exploit use...

Exploit for Stack-based Buffer Overflow in Juniper Junos

inetutils hasn't been updated in 5 years, and neither has the of...

UNAUTHENTICATED START OF TELNETD ON TENDA AC15 ROUTER

INTRODUCTION We previously showed how the Tenda AC15 router was vulnerable to an unauthenticated remote code execution vulnerability via a stack based buffer overflow. Writing exploits like that can be incredibly interesting, but sometimes, all you need is a GET request to get root. In this post ...

CVE-2010-4221

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

Solaris 2.6/7/8 (TTYPROMPT in.telnet) Remote Authentication Bypass

No description provided by source. Solaris TTYPROMPT Security Vulnerability Telnet This vulnerability is very simple to exploit, since it does not require any code to be compiled by an attacker. The vulnerability only requires the attacker to simply define the environment variable TTYPROMPT to a...

Re[2]: Solaris telnet vulnberability - how many on your network?

Dear Marc, This is hilarious, should there ever be a Top10 of the most weird bugs, this surely is one of them, repost for pure amusement : Solaris 2.6, 7, and 8 /bin/login has a vulnerability involving the environment variable TTYPROMPT. This vulnerability has already been reported to BugTraq and...

Pirelli AGE mB Router Default Password (microbusiness) for 'admin' Account

The remote host is a Pirelli AGE mB microBusiness router with its default password set admin/microbusiness. An attacker could telnet to it and reconfigure it to lock the owner out and to prevent him from using his Internet connection, and do bad things. Changes by Tenable: - only attempt to login...

Solaris TTYPROMPT Remote Login Bypass

Solaris TTYPROMPT Security Vulnerability Telnet This vulnerability is very simple to exploit, since it does not require any code to be compiled by an attacker. The vulnerability only requires the attacker to simply define the environment variable TTYPROMPT to a 6-character string, inside telnet...

Apple Mac OSX 10.2 - Terminal.APP Telnet Link Command Execution

Apple Mac OSX 10.2 - Terminal.APP Telnet Link Command Execution source: https://www.securityfocus.com/bid/5768/info Mac OS X is the BSD-based operating system distributed and maintained by Apple. It has been discovered that some types of links, when clicked on, may result in the execution of...

kicq 2.0.0b1 - Invalid ICQ Packet Denial of Service

source: https://www.securityfocus.com/bid/4018/info kicq 2.0.0b1 is an ICQ client for the K Desktop Environment KDE. kicq can be crashed remotely by initiating a telnet connection to a port it is listening on and sending "random" characters. This does not affect other components of the system, on...

Solaris TelnetD - TTYPROMPT Remote Buffer Overflow (1) (Metasploit)

Solaris TelnetD - TTYPROMPT Remote Buffer Overflow 1 Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

ALCATEL Speed Touch PRO port redirect exploit

Taking advantage from the ALCATEL Speed Touch Pro backdoor and configuration problems, it is possible to obtain a "full priv" access to the router and launch several attack against the internal LAN thanks to the NAT/PAT feature often made available. If the router is "telnetable" it means that "ip...

tetrinet-1.13.dos.txt

Hi, I found a bug in Tetrinet v1.13 PUBLIC RELEASE. If you connect with telnet on the Tetrinet port, and press 'enter' once, keeping the connection idle, will halt all other processes. No one else will be able to connect, send msgs, etc. The players normally see the status of the other players, b...

Webstar 4.0 Buffer overflow vulnerability

Sorry for my poor english ; Webstar 4.0 and earlier, vendor www.starnine.com is popular or not popular -i've never seen MacOS Web, Mail and FTP server for MacOS.One day, when i played with my telnet i found machine with this httpd.When i made long get request 1kb GET /1111111...111.htmlit simply...

squid.exploit.txt

Holla, since some people asked how to exploit the squid bug, I send a description along. Assumptions: 1. You use plain squid-2.2-STABLE5 or below. Also, external authentification is active using a some external authentication program, which basically follows the implementation guidelines given on...

Microsoft Windows 9598 Internet Explorer 5Telnet - Local Heap Overflow

Microsoft Windows 9598 Internet Explorer 5Telnet - Local Heap Overflow // source: https://www.securityfocus.com/bid/586/info Windows 95 and 98 systems running IE4 or specific versions of IE5 5.00.2314.1003 and 5.00.2314.1003IC are susceptible to a remote vulnerability that allows the execution of...

Ipswitch IMail 5.06.0 - Web Service Buffer Overflow (Denial of Service) (PoC)

Ipswitch IMail 5.06.0 - Web Service Buffer Overflow Denial of Service PoC source: https://www.securityfocus.com/bid/505/info The IMail web server can be crashed by requesting an abnormally long URL. Telnet to target machine, port 8383 Send: GET /glob1/ Where glob1 is 3000 characters. Marc Maiffre...