21 matches found
EUVD-2025-10421
Malicious code in bioql PyPI...
Security Advisory 0101
Security Advisory 0101 PDF Date: July 9, 2024 Revision | Date | Changes ---|---|--- 1.0 | July 9, 2024 | Initial release 1.1 | Dec 23, 2024 | Update Vulnerability Assessment for EAP and accounting, Update fixed EOS release The CVE-ID tracking this issue: CVE-2024-3596 CVSSv3.1 Base Score: 9.0...
Privacy Implications of Tracking Wireless Access Points
Brian Krebs reports on research into geolocating routers: Apple and the satellite-based broadband service Starlink each recently took steps to address new research into the potential security and privacy implications of how their services geolocate devices. Researchers from the University of...
CVE-2023-28392
Wi-Fi AP UNIT AC-PD-WAPU v1.05B04 and earlier, AC-PD-WAPUM v1.05B04 and earlier, AC-PD-WAPU-P v1.05B04P and earlier, AC-PD-WAPUM-P v1.05B04P and earlier, AC-WAPU-300 v1.00B07 and earlier, AC-WAPU-300-P v1.00B08P and earlier, AC-WAPUM-300 v1.00B07 and earlier, and AC-WAPUM-300-P v1.00B08P and...
New AndoryuBot Malware Exploits Ruckus Wireless Flaw for DDoS Attacks
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary AndoryuBot targets critical Ruckus Wireless Admin panel vulnerability to infect Wi-Fi access points for use in DDoS attacks, malware supports 12 DDoS attack modes and is marketed through YouTube videos. ...
Security Advisory 0080
Security Advisory 0080 . CSAF PDF Date: September 28th 2023 Revision | Date | Changes ---|---|--- 1.5 | September 28th 2023 | Update to include 4.29 to EOS Releases that resolve the CVE's 1.4 | January 11th 2023 | Update the fixed release info of NetVisor OS Software 1.3 | October 24th 2022 |...
How To Secure Your Broadband?
By Owais Sultan Encrypting the Wi-Fi access points can guarantee a stable internet connection by allowing only authorized people to use broadband - Let's dig more into what other options do we have. This is a post from HackRead.com Read the original post: How To Secure Your Broadband?...
CVE-2021-27248
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When parsing the...
CVE-2021-27250
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When...
Design/Logic Flaw
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When...
CVE-2021-27250
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When...
CVE-2021-27248
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When parsing the...
D-Link DAP-2020 webproc getpage Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When parsing the getpage...
CVE-2013-3659
The NTT DOCOMO overseas usage application 2.0.0 through 2.0.4 for Android does not properly connect to Wi-Fi access points, which allows remote attackers to obtain sensitive information by leveraging presence in an 802.11 network's coverage area...
Design/Logic Flaw
The NTT DOCOMO overseas usage application 2.0.0 through 2.0.4 for Android does not properly connect to Wi-Fi access points, which allows remote attackers to obtain sensitive information by leveraging presence in an 802.11 network's coverage area...
Blowback: Microsoft, OnStar Pump the Brakes on Location Tracking
Redmond, Washington software giant, Microsoft, and Detroit based GM subsidiary, OnStar backtracked on policies widely seen as egregious privacy violations following lawsuits and public outcry. Here’s the news: Windows Phone Update Requires User Consent For Tracking Microsoft released their “Mango...
CVE-2009-0052
The Atheros wireless driver, as used in Netgear WNDAP330 Wi-Fi access point with firmware 2.1.11 and other versions before 3.0.3 on the Atheros AR9160-BC1A chipset, and other products, allows remote authenticated users to cause a denial of service device reboot or hang and possibly execute...
Marvell Driver Multiple Information Element Overflows
Title: ------ Marvell Driver Multiple Information Element Overflows Summary: -------- The wireless drivers in some Wi-Fi access points such as the MARVELL-based Linksys WAP4400N do not correctly parse information elements included in association requests. Most information elements are used by the...
Atheros Driver Reserved Frame Vulnerability
Title: ------ Atheros Driver Reserved Frame Vulnerability Summary: -------- The wireless driver in some Wi-Fi access points such as the ATHEROS-based Netgear WNDAP330 do not correctly parse malformed reserved management frames. Assigned CVE: ------------- CVE-2009-0052 Details: -------- The bug c...
Marvell Driver Malformed Association Request Vulnerability
Title: ------ Marvell Driver Malformed Association Request Vulnerability Summary: -------- The wireless drivers in some Wi-Fi access points such as the MARVELL-based Linksys WAP4400N do not correctly parse some malformed 802.11 frames. Assigned CVE: ------------- CVE-2008-4441 Details: -------- T...