3 matches found
CVE-2015-2874
CVE-2015-2874 affects Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware older than 3.4.1.105. The root cause is a hardcoded default root password, enabling remote administrative access via TELNET. This creates a h...
CVE-2015-2875
CVE-2015-2875 describes an absolute path traversal in Seagate/LaCie wireless storage firmware prior to 3.4.1.105. A remote attacker with wireless access could read arbitrary files by supplying a full pathname in a download request during a Wi‑Fi session. Affected devices include: Seagate GoFlex S...
CVE-2015-2876
CVE-2015-2876 describes an unrestricted upload vulnerability in Seagate/LaCie wireless storage devices (GoFlex Satellite, Wireless Mobile Storage, Wireless Plus, LaCie FUEL) with firmware versions before 3.4.1.105. An attacker can upload a file to the "/media/sda2" path during a Wi‑Fi session to ...