16 matches found
EUVD-2017-8017
Malware in sbrugna...
Vonage VDV-23 - Denial of Service Exploit
Exploit for hardware platform in category dos / poc Overview During an evaluation of the Vonage home phone router, it was identified that the loginUsername and loginPassword parameters were vulnerable to a buffer overflow. This overflow caused the router to crash and reboot. Further analysis will...
Vonage VDV-23 - Denial of Service
Vonage VDV-23 - Denial of Service Overview During an evaluation of the Vonage home phone router, it was identified that the loginUsername and loginPassword parameters were vulnerable to a buffer overflow. This overflow caused the router to crash and reboot. Further analysis will be performed to...
Vonage VDV-23 - Denial of Service
Overview During an evaluation of the Vonage home phone router, it was identified that the loginUsername and loginPassword parameters were vulnerable to a buffer overflow. This overflow caused the router to crash and reboot. Further analysis will be performed to find out if the the crash is...
CVE-2017-16902
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot...
Code injection
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot...
CVE-2017-16902
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot...
CVE-2017-16902
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot...
CVE-2017-16902
Vonage VDV-23 115 devices running firmware 3.2.11-0.9.40 are affected by CVE-2017-16902. A long string in loginUsername or loginPassword sent to goform/login can trigger a crash and router reboot, effectively a denial-of-service. CNVD-2017-37697 corroborates the reboot via a long login field; 133...
CVE-2017-16843
Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic...
Cross site scripting
Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic...
CVE-2017-16843
Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic...
CVE-2017-16843
The CVE concerns the Vonage VDV-23 115 router (software version 3.2.11-0.9.40) which exposes a stored XSS in the web UI via the NewKeyword or NewDomain fields sent to /goform/RgParentalBasic. The issue is triggered when untrusted input is injected into these fields, leading to arbitrary script/HT...
Vonage VDV23 - Cross-Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Vonage Home Router – Stored Xss Exploit Author: Nu11By73 Hardware Version: VDV-23: 115 Software Version: 3.2.11-0.9.40 CVE : CVE-2017-16843 NewKeyword Parameter: Login to the router Click advanced setup Click parental...
Vonage VDV23 - Cross-Site Scripting
Vonage VDV23 - Cross-Site Scripting Exploit Title: Vonage Home Router – Stored Xss Date: 16/11/2017 Exploit Author: Nu11By73 Hardware Version: VDV-23: 115 Software Version: 3.2.11-0.9.40 CVE : CVE-2017-16843 NewKeyword Parameter: 1. Login to the router 2. Click advanced setup 3. Click parental...
Vonage VDV23 - Cross-Site Scripting
Exploit Title: Vonage Home Router – Stored Xss Date: 16/11/2017 Exploit Author: Nu11By73 Hardware Version: VDV-23: 115 Software Version: 3.2.11-0.9.40 CVE : CVE-2017-16843 NewKeyword Parameter: 1. Login to the router 2. Click advanced setup 3. Click parental controls 4. In the block these keyword...