Konica Bizhub Multifunction Printers Insertion of Sensitive Information into Externally-Accessible File or Directory (CVE-2024-51977)

An unauthenticated attacker who can access either the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP service TCP port 631, can leak several pieces of sensitive information from a vulnerable device. The URI path /etc/mntinfo.csv can be accessed via a GET request and no...

PT-2022-4848 · D Link · D-Link Dir-2150

Name of the Vulnerable Software and Affected Versions: D-Link DIR-2150 version 4.0.1 Description: The issue is related to a stack-based buffer overflow in the anweb service of the D-Link DIR-2150 router. This allows a remote attacker to execute arbitrary code on the affected device. The flaw exis...

AQUATONE - A Tool for Domain Flyovers

AQUATONE is a set of tools for performing reconnaissance on domain names. It can discover subdomains on a given domain by using open sources as well as the more common subdomain dictionary brute force approach. After subdomain discovery, AQUATONE can then scan the hosts for common web ports and...

Enterprise Manager works with http, but not with https

Challenge This article covers two scenarios: The Veeam Backup Enterprise Manager webpage is not able to be reached when using both HTTP and HTTPS. or The Veeam Backup Enterprise Manager webpage is accessible when using HTTP, but fails to load when using HTTPS. Solution Enterprise Manager Webpage ...