VARIoT IoT exploits database

Cisco IOS is prone to an unspecified remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected device to reload, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCtd33567.

Cisco IOS is prone to a remote denial-of-service vulnerability. An attacker can exploit these issues to cause an affected device to crash, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCtf17624.

Cisco IOS is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected device to reload, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCtf91428.

Cisco IOS is prone to a remote denial-of-service vulnerability in the Internet Group Management Protocol (IGMP). An attacker can exploit this issue to cause an affected device to reload, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCte14603.

Cisco IOS is prone to an unspecified remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected device to reload, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCtc73759.

Cisco IOS and Unified Communications Manager are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause an interruption in voice services or cause the affected device to reload, denying service to legitimate users. This issue is tracked by Cisco Bug IDs CSCta31358 and CSCta20040.

Cisco IOS and Unified Communications Manager are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause an interruption in voice services or cause the affected device to reload, denying service to legitimate users. This issue is tracked by Cisco Bug IDs CSCtf14987 and CSCtf72678.

Sun Java - Web Start Plugin Command Line Argument Injection (Metasploit). CVE-2010-0886CVE-63648 . remote exploit for Windows platform

Sun Java - Web Start Plugin Command Line Argument Injection (Metasploit). CVE-2010-0886CVE-63648 . remote exploit for Windows platform

Java 6.19 CMM readMabCurveData - Remote Stack Overflow. CVE-2010-0838 . remote exploit for Windows platform

Java 6.19 CMM readMabCurveData - Remote Stack Overflow. CVE-2010-0838 . remote exploit for Windows platform

Linux Kernel 2.6.27 < 2.6.36 (RedHat x86-64) - 'compat' Local Privilege Escalation. CVE-2010-3081CVE-68213 . local exploit for Linux_x86-64 platform

Linux Kernel 2.6.27 < 2.6.36 (RedHat x86-64) - 'compat' Local Privilege Escalation. CVE-2010-3081CVE-68213 . local exploit for Linux_x86-64 platform

Cisco Wireless LAN Controller is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause an affected device to reload, denying service to legitimate users. This issue is tracked by Cisco Bug ID CSCta56653. http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&amp;bugId=CSCsq24002

Hitachi JP1/NETM/Remote Control Agent is prone to a security-bypass vulnerability. Remote attackers can exploit this issue to bypass security restrictions and gain unauthorized access. Other attacks may also be possible.

HP Data Protector - DtbClsLogin Buffer Overflow (Metasploit). CVE-2010-3007CVE-67973 . remote exploit for Windows platform

Open Handset Alliance Android is prone to a privilege-escalation vulnerability. Successfully exploiting this issue can allow attackers to elevate privileges, leading to a complete compromise of the device.

Sony PlayStation 3 (PS3) is prone to a local buffer-overflow vulnerability because the device fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to jailbreak an affected device and execute arbitrary code using a specially crafted USB dongle. Failed exploit attempts will result in a denial-of-service condition. Sony PlayStation 3 (PS3) software version 3.41 and prior is vulnerable.

Accton-based switches are prone to a security vulnerability due to the existence of a backdoor password. Successful exploits will allow remote attackers to perform brute-force attacks and obtain the password used for HTTP, SSH, and Telnet services. The following products are vulnerable: 3Com 3812 3Com 3870 EdgeCore ES4649 Dell PowerConnect 5224 Other products from multiple vendors that re-brand Accton switches may also be affected.

Hycus CMS version 1.0.1 suffers from multiple cross site request forgery vulnerabilities.