29 matches found
PT-2026-34975
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A malicious USB device claiming to be a CDC Phonet modem can cause an overflow of the skb shared info-frags array in the rx complete function by sending an unbounded sequence of full-pag...
EUVD-2016-4700
Malware in sbrugna...
EUVD-2017-15849
Malware in sbrugna...
EUVD-2017-15850
Malware in sbrugna...
Design/Logic Flaw
Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 23.015.02.07.1014 and before V200R003B015D02SP08C1014 23.015.02.08.1014 use a weak ACL for the "Mobile Partner" directory, which allows remote attackers to gain SYSTEM privileges by compromising a...
CVE-2014-8358
Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 23.015.02.07.1014 and before V200R003B015D02SP08C1014 23.015.02.08.1014 use a weak ACL for the "Mobile Partner" directory, which allows remote attackers to gain SYSTEM privileges by compromising a...
CVE-2014-8358
Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 23.015.02.07.1014 and before V200R003B015D02SP08C1014 23.015.02.08.1014 use a weak ACL for the "Mobile Partner" directory, which allows remote attackers to gain SYSTEM privileges by compromising a...
CVE-2014-8358
CVE-2014-8358 affects Huawei EC156/EC176/EC177 USB Modem firmware/software prior to UTPS-V200R003B015D02SP07C1014 (23.015.02.07.1014) and before V200R003B015D02SP08C1014 (23.015.02.08.1014). The core issue is a weak Access Control List in the Mobile Partner directory that allows a low-privilege u...
CVE-2017-6796
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to...
CVE-2017-6795
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...
Input validation
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...
Input validation
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to...
CVE-2017-6796
CVE-2017-6796 affects Cisco IOS XE Software on Cisco ASR 920 Series Routers. The vulnerability resides in the USB-modem code and stems from improper input validation of the platform usb modem command in the CLI, enabling an authenticated, local attacker to inject and execute arbitrary commands on...
CVE-2017-6795
Cisco IOS XE Software on Cisco ASR 920 Series Routers is affected by CVE-2017-6795 due to improper input validation in the USB-modem code (platform usb modem CLI command). A local, authenticated attacker could exploit this to overwrite arbitrary files on the device’s underlying operating system. ...
CVE-2017-6796
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to...
CVE-2017-6795
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...
Cisco IOS XE Software for Cisco ASR 920 Series Routers Arbitrary File Overwrite Vulnerability
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...
Cisco IOS XE Software for Cisco ASR 920 Series Routers Arbitrary Command Execution Vulnerability
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to...
Eagle Speed USB Modem Software Privilege Escalation
!/usr/bin/python -w Title : Eagle Speed USB MODEM SOFTWARE Privilege Escalation Date : 28/11/2016 Author : R-73eN Tested on : Windows 7 Latest version of the software Software : N/A Comes with the USB Modem Vulnerability Description: When the Eagle Speed software is installed a service with name...
Eagle Speed USB Modem Software Privilege Escalation Exploit
Eagle Speed USB modem software suffers from a privilege escalation vulnerability. !/usr/bin/python -w Title : Eagle Speed USB MODEM SOFTWARE Privilege Escalation Date : 28/11/2016 Author : R-73eN Tested on : Windows 7 Latest version of the software Software : N/A Comes with the USB Modem...