35 matches found
EUVD-2004-0640
Malware in sbrugna...
EUVD-2007-5973
Malware in sbrugna...
EUVD-2006-0950
Malware in sbrugna...
EUVD-2006-0949
Malware in sbrugna...
Thomson SpeedTouch 500 Series LocalNetwork Page name Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16839/info The SpeedTouch 500 series are prone to a cross-site scripting vulnerability. This issue is due to a failure in the devices to properly sanitize user-supplied input. An attacker may leverage this issue to have...
Thomson SpeedTouch 2030 SIP Invite Message Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25446/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this issue allows remote attackers to cause the device ...
Thomson SpeedTouch 2030 SIP Empty Message Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25464/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this issue allows remote attackers to cause the device ...
Thomson SpeedTouch 716 URL Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26808/info Thomson SpeedTouch 716 is prone to a cross-site scripting vulnerability because the device fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
Cross site scripting
Cross-site scripting XSS vulnerability in cgi/b/ic/connect in the Thomson SpeedTouch 716 with firmware 5.4.0.14 allows remote attackers to inject arbitrary web script or HTML via the url parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...
CVE-2007-6003
Cross-site scripting XSS vulnerability in cgi/b/ic/connect in the Thomson SpeedTouch 716 with firmware 5.4.0.14 allows remote attackers to inject arbitrary web script or HTML via the url parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...
CVE-2007-6003
Cross-site scripting XSS vulnerability in cgi/b/ic/connect in the Thomson SpeedTouch 716 with firmware 5.4.0.14 allows remote attackers to inject arbitrary web script or HTML via the url parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...
CVE-2007-6003
CVE-2007-6003 affects the Thomson SpeedTouch 716 router with firmware 5.4.0.14, where a cross-site scripting (XSS) vulnerability exists in the CGI endpoint cgi/b/ic/connect. The underlying issue allows remote attackers to inject arbitrary web script or HTML via the url parameter. The NVD entry li...
Thomson SpeedTouch 716 - 'URL' Cross-Site Scripting
source: https://www.securityfocus.com/bid/26808/info Thomson SpeedTouch 716 is prone to a cross-site scripting vulnerability because the device fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...
Thomson SpeedTouch 716 - URL Cross-Site Scripting
Thomson SpeedTouch 716 - URL Cross-Site Scripting source: https://www.securityfocus.com/bid/26808/info Thomson SpeedTouch 716 is prone to a cross-site scripting vulnerability because the device fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...
Thomson SpeedTouch 2030 SIP畸形INVITE消息远程拒绝服务漏洞
BUGTRAQ ID: 25446 Thomson ST 2030是符合SIP/MGCP协议标准的VoIP电话。 ST 2030处理畸形的INVITE请求时存在漏洞,远程攻击者可能利用此漏洞导致设备不可用。 ST 2030电话没有正确地处理INVITE消息,如果远程攻击者向电话发送的INVITE消息中Via:字段中版本后包含有“/”字符的话,就会导致设备崩溃。 Thomnson SpeedTouch 2030 1.52.1 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Thomson SpeedTouch 2030 - SIP Empty Message Remote Denial of Service
Thomson SpeedTouch 2030 - SIP Empty Message Remote Denial of Service source: https://www.securityfocus.com/bid/25464/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this issue allows...
Thomson SpeedTouch 2030 - SIP Empty Message Remote Denial of Service
source: https://www.securityfocus.com/bid/25464/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this issue allows remote attackers to cause the device to stop responding, thus denying...
Thomson SpeedTouch ST 2030 (SIP Phone) - Remote Denial of Service
Thomson SpeedTouch ST 2030 SIP Phone - Remote Denial of Service !/usr/bin/perl Vulneravility for Thomson 2030 firmware v1.52.1 It provokes a DoS in the device. use IO::Socket::INET; die "Usage $0 " unless $ARGV2; $socket=new IO::Socket::INET-newPeerPort=$ARGV1, Proto='udp', PeerAddr=$ARGV0; $msg ...
Thomson SpeedTouch ST 2030 (SIP Phone) - SIP Invite Message Remote Denial of Service
Thomson SpeedTouch ST 2030 SIP Phone - SIP Invite Message Remote Denial of Service source: https://www.securityfocus.com/bid/25446/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this...
Thomson SpeedTouch ST 2030 (SIP Phone) - Remote Denial of Service
!/usr/bin/perl Vulneravility for Thomson 2030 firmware v1.52.1 It provokes a DoS in the device. use IO::Socket::INET; die "Usage $0 " unless $ARGV2; $socket=new IO::Socket::INET-newPeerPort=$ARGV1, Proto='udp', PeerAddr=$ARGV0; $msg = "INVITE sip:$ARGV2@$ARGV0 SIP/2.0\r\nVia: SIP/2.0/UDP...