64 matches found
EUVD-2006-2559
Malware in sbrugna...
EUVD-2007-6673
Malware in sbrugna...
EUVD-2008-7074
Malware in sbrugna...
Remote code execution
An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware = 4.30.18.006. The CheckTSSI function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated attacker with administrator privileges...
Null pointer dereference
A null pointer dereference vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware = 4.30.18.006. A null pointer dereference in the soapaction function within the upnp binary can be triggered by an unauthenticated attacker via a malicious POST request invoking the...
CVE-2022-43970
The CVE-2022-43970 entry refers to a stack-based buffer overflow in the httpd binary of Linksys WRT54GL Wireless-G Broadband Router (firmware ≤ 4.30.18.006). The Start_EPI function handles untrusted input, enabling an authenticated administrator to execute arbitrary commands as root on the underl...
CVE-2018-14783
NetComm Wireless G LTE Light Industrial M2M Router NWL-25 with firmware 2.0.29.11 and prior. A cross-site request forgery condition can occur, allowing an attacker to change passwords of the device remotely...
Linksys Wireless-G PTZ Access Sensitive Files Vulnerability
Exploit for hardware platform in category web applications Also sold by Cisco, this device, which can be found on ZoomEye here: https://www.zoomeye.org/search?q=Basic%20realm%3D%22Authorization%22%20Boa/0.94.13%20port%3A80&p=4&t=host has a vulnerability in which you can read some sensitive files ...
Netgear WNR500 Wireless Router - 'webproc?getpage' Traversal Arbitrary File Access
Netgear Wireless Router WNR500 Parameter Traversal Arbitrary File Access Exploit Vendor: NETGEAR Product web page: http://www.netgear.com Affected version: WNR500 firmware: 1.0.7.2 Summary: The NETGEAR compact N150 classic wireless router WNR500 improves your legacy Wireless-G network. It is a...
Linksys WVC54GCA 1.00R22/1.00R24 Wireless-G 'adm/file.cgi' Multiple Directory Traversal Vulnerabilities
No description provided by source. !/usr/bin/env python -- coding:utf-8 -- import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class LinksysWVC54GCADirectoryTraversalPOCBase: vulID = '86215' version = '1' vulDate = '2009-04-23' autho...
Linksys WVC54GCA 1.00R22/1.00R24 Wireless-G Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/34714/info Linksys WVC54GCA Wireless-G Internet Home Monitoring Camera is prone to multiple cross-site scripting vulnerabilities because the software fails to sufficiently sanitize user-supplied data. An attacker may...
Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT ActiveX Control PlayerPT.ocx sprintf Buffer Overflow Vulnerability
No description provided by source. !-- Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT ActiveX Control PlayerPT.ocx sprintf Buffer Overflow Vulnerability when viewing the device web interface it asks to install an ActiveX control with the following settings: ProductName: Player...
Linksys WRH54G 1.1.3 - Wireless-G Router Malformed HTTP Request Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29570/info Linksys WRH54G Wireless-G Router is prone to a denial-of-service vulnerability because it fails to adequately handle malformed HTTP requests. As a result, memory becomes corrupted and the device's HTTP service...
Cisco Linksys PlayerPT ActiveX Control SetSource sURL argument Buffer Overflow
Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...
Cisco Linksys PlayerPT ActiveX Control Buffer Overflow
Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...
Cisco Linksys PlayerPT - ActiveX Control Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 HttpClients::IE, :uaminver = "6.0",...
CVE-2012-0284
Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote attackers to execute arbitrary code via a long URL in the first argument aka the sURL argument...
Stack overflow
Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote attackers to execute arbitrary code via a long URL in the first argument aka the sURL argument...
Cisco Linksys WRT54GL CSRF Change Admin Password
Exploit for hardware platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1...
Cisco Linksys PTZ Internet Video Camera PlayerPT ActiveX Overflow
Added: 04/19/2012 BID: 52673 OSVDB: 80297 Background The Cisco WVC200 Wireless-G PTZ Internet Video Camera sends live video through the Internet to a web browser anywhere in the world. Viewers can access the video stream through an HTTP service, which requires an ActiveX client to be installed in...