Lucene search
+L

30 matches found

osv
osv
added 2019/05/02 5:29 p.m.5 views

CVE-2017-18372

The Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has a command injection vulnerability in the Time Setting function, which is only accessible by an authenticated user. The vulnerability is in the toolstime.asp page and can be exploited through the...

8.8CVSS5.8AI score
Exploits0References3
prion
prion
added 2019/05/02 5:29 p.m.26 views

Command injection

The Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has a command injection vulnerability in the Time Setting function, which is only accessible by an authenticated user. The vulnerability is in the toolstime.asp page and can be exploited through the...

9CVSS8.9AI score0.21887EPSS
Exploits3References3Affected Software3
cvelist
cvelist
added 2019/05/02 4:15 p.m.26 views

CVE-2017-18372

The Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has a command injection vulnerability in the Time Setting function, which is only accessible by an authenticated user. The vulnerability is in the toolstime.asp page and can be exploited through the...

8.9AI score0.21887EPSS
Exploits2References3
cve
cve
added 2019/05/02 4:15 p.m.55 views

CVE-2017-18372

CVE-2017-18372 affects the Billion 5200W-T TCLinux FW 7.3.8.0 v008 130603 router distributed by TrueOnline. The vulnerability is a command injection in the Time Setting function via tools_time.asp, exploitable through uiViewSNTPServer and requires an authenticated user. Authentication can be achi...

9CVSS8.8AI score0.21887EPSS
Exploits2References3Affected Software1
exploitdb
exploitdb
added 2018/08/02 12:0 a.m.38 views

CoSoSys Endpoint Protector 4.5.0.1 - (Authenticated) Remote Root Command Injection

Title : CoSoSys Endpoint Protector - Authenticated Remote Root Command Injection Date : Vulnerability submitted in 01/12/2017 and published in 01/08/2018 Author : 0x09AL Tested on : Endpoint Protector 4.5.0.1 Software Link : https://www.endpointprotector.com/ Vulnerable Versions : Endpoint...

7.4AI score
Exploits0
ptsecurity
ptsecurity
added 2017/08/05 12:0 a.m.5 views

PT-2017-19230 · Sma Solar Technology · Sunny Boy Tlst-21 +2

Name of the Vulnerable Software and Affected Versions: SMA Solar Technology products, specifically Sunny Boy TLST-21, TL-21, and Sunny Tripower TL-10, TL-30 Description: An issue allows an attacker to change the plant time without authentication, potentially affecting system time and making...

7.5CVSS7.2AI score0.01512EPSS
Exploits0References4
archlinux
archlinux
added 2016/01/17 12:0 a.m.55 views

ntp: time alteration

If ntpd is always started with the -g option, which is common and against long-standing recommendation, and if at the moment ntpd is restarted an attacker can immediately respond to enough requests from enough sources trusted by the target, which is difficult and not common, there is a window of...

2AI score0.0913EPSS
Exploits0References3
cve
cve
added 2006/01/09 8:0 p.m.56 views

CVE-2005-4352

The CVE-2005-4352 entry documents a time-wrap flaw in BSD securelevels affecting NetBSD 2.1 and earlier and Linux 2.6.15 and earlier. The root cause is an integer overflow in securelevels that allows a local user to bypass time-change restrictions by setting the clock forward to the 32‑bit Unix e...

2.1CVSS6.3AI score0.00468EPSS
Exploits1References8Affected Software2
nvd
nvd
added 2005/12/31 5:0 a.m.20 views

CVE-2005-4352

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value 19 Jan 2038, which then wraps around to the minimum value 13 Dec 190...

2.1CVSS6.3AI score0.00468EPSS
Exploits1References8
ubuntucve
ubuntucve
added 2005/12/31 5:0 a.m.31 views

CVE-2005-4352

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value 19 Jan 2038, which then wraps around to the minimum value 13 Dec 190...

2.1CVSS5.9AI score0.00468EPSS
Exploits1References1
Rows per page
Query Builder