VARIoT IoT exploits database
| VAR-E-201008-0121 | No CVE | Hycus CMS 1.0.1 - Multiple Cross-Site Request Forgery Vulnerabilities - PHP webapps Exploit | EDB ID: 14802 |
Hycus CMS 1.0.1 - Multiple Cross-Site Request Forgery Vulnerabilities. CVE-67576 . webapps exploit for PHP platform
| VAR-E-201008-0004 |
CVE-2010-1173 CVE-2012-0053 CVE-2011-3368 |
Linux Kernel 2.6.33.3 - SCTP INIT Remote Denial of Service - Linux dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 14594 |
Linux Kernel 2.6.33.3 - SCTP INIT Remote Denial of Service. CVE-2010-1173 . dos exploit for Linux platform
| VAR-E-201008-1449 |
CVE-2010-1173 CVE-2012-0053 CVE-2011-3368 |
Linux Kernel 2.6.33.3 - SCTP INIT Remote Denial of Service - Linux dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 14594 |
Linux Kernel 2.6.33.3 - SCTP INIT Remote Denial of Service. CVE-2010-1173 . dos exploit for Linux platform
| VAR-E-201008-0003 |
CVE-2010-2939 CVE-2012-0053 CVE-2011-3368 |
OpenSSL - 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption - Linux dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 34427 |
OpenSSL - 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption. CVE-2010-2939CVE-66946 . dos exploit for Linux platform
| VAR-E-201008-1448 |
CVE-2010-2939 CVE-2012-0053 CVE-2011-3368 |
OpenSSL - 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption - Linux dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 34427 |
OpenSSL - 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption. CVE-2010-2939CVE-66946 . dos exploit for Linux platform
| VAR-E-201008-0896 |
CVE-2010-2817 |
Cisco ASA 5500 IKE Message CVE-2010-2817 Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201008-0190 | No EDB ID |
Cisco ASA security appliances are prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause the affected device to reload, denying service to legitimate users.
This issue is documented in Cisco bug ID CSCte46507.
| VAR-E-201008-0050 |
CVE-2011-0340 CVE-2010-2974 CVE-2011-0488 |
InduSoft Web Studio - 'ISSymbol.ocx InternationalSeparator()' Heap Overflow (Metasploit) - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201101-0383, VAR-201008-0279, VAR-201105-0156 | EDB ID: 23500 |
InduSoft Web Studio - 'ISSymbol.ocx InternationalSeparator()' Heap Overflow (Metasploit). CVE-2011-0340CVE-72865 . remote exploit for Windows platform
| VAR-E-201008-0051 |
CVE-2011-2960 CVE-2011-0340 CVE-2010-2974 CVE-2011-0488 |
Sunway ForceControl 6.1 - Multiple Heap Buffer Overflow Vulnerabilities - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201101-0383, VAR-201008-0279, VAR-201107-0260, VAR-201105-0156 | EDB ID: 35864 |
Sunway ForceControl 6.1 - Multiple Heap Buffer Overflow Vulnerabilities. CVE-2011-2960CVE-73124 . remote exploit for Windows platform
| VAR-E-201008-1174 | No CVE | D-Link WBR-2310 1.0.4 - 'GET' Remote Buffer Overflow (PoC) - Hardware dos Exploit | EDB ID: 34394 |
D-Link WBR-2310 1.0.4 - 'GET' Remote Buffer Overflow (PoC).. dos exploit for Hardware platform
| VAR-E-201008-1157 | No CVE | VxWorks Insecure Password Hashing Vulnerability | No EDB ID |
VxWorks is prone to a security vulnerability due to an insecure-hashing algorithm.
Successful exploits will allow remote attackers to perform brute-force attacks and obtain the password used for FTP and Telnet services.
The issue affects multiple products from multiple vendors that ship with the VxWorks operating system.
NOTE: This document previously covered two vulnerabilities in VxWorks. The remote security-bypass issue has been moved to BID 42158 (VxWorks Debugging Service Security-Bypass Vulnerability) to allow for better documentation of both issues.
| VAR-E-201008-0090 |
CVE-2010-2965 |
3COM NBX V3000 Networked Telephony Solution Information Disclosure
Related entries in the VARIoT vulnerabilities database: VAR-201008-0270 | No EDB ID |
| VAR-E-201007-1221 | No CVE | SAP Netweaver 6.4 - 7.0 Cross Site Scripting | No EDB ID |
SAP Netweaver versions 6.4 through 7.0 suffer from a cross site scripting vulnerability.
| VAR-E-201007-1003 | No CVE | SAP NetWeaver 6.4/7.0 - 'wsnavigator' Cross-Site Scripting - JSP webapps Exploit | EDB ID: 34370 |
SAP NetWeaver 6.4/7.0 - 'wsnavigator' Cross-Site Scripting.. webapps exploit for JSP platform
| VAR-E-201007-0824 |
CVE-2010-2772 |
Siemens SIMATIC WinCC Default Password Security Bypass Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201007-0198 | No EDB ID |
Siemens SIMATIC WinCC is affected by a vulnerability that allows attackers to bypass security.
An attacker can exploit this issue to bypass certain security restrictions and gain access to the application's database. Successfully exploiting this issue may lead to further attacks.
| VAR-E-201007-0287 |
CVE-2010-1870 |
Apache Struts < 2.2.0 - Remote Command Execution (Metasploit) - Multiple remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201008-0298 | EDB ID: 17691 |
Apache Struts < 2.2.0 - Remote Command Execution (Metasploit). CVE-2010-1870CVE-66280 . remote exploit for Multiple platform
| VAR-E-201007-0288 |
CVE-2010-1870 |
Struts2/XWork < 2.2.0 - Remote Command Execution - Multiple remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201008-0298 | EDB ID: 14360 |
Struts2/XWork < 2.2.0 - Remote Command Execution. CVE-2010-1870CVE-66280 . remote exploit for Multiple platform
| VAR-E-201007-0301 |
CVE-2010-1575 CVE-2010-1576 CVE-2010-2629 |
Multiple Cisco CSS / ACE Client Certificate And HTTP Header Manipulation Vulnerabilities
Related entries in the VARIoT vulnerabilities database: VAR-201007-0201, VAR-201007-0202, VAR-201007-0238 | No EDB ID |
Virtual Security Research, LLC. Security Advisory - VSR identified multiple weaknesses in the Cisco CSS 11500's handling of HTTP header interpretation and client-side SSL certificates.
| VAR-E-201006-1275 | No CVE | D-Link DAP-1160 Unauthenticated Remote Configuration | No EDB ID |
Unauthenticated access and modification of several device parameters, including Wi-Fi SSID, keys and passphrases is possible on the D-Link DAP-1160. Unauthenticated remote reboot of the device can be also performed.
| VAR-E-201006-0961 | No CVE | D-Link DAP-1160 Web Administration Interface Security Bypass Vulnerability | No EDB ID |
The D-Link DAP-1160 wireless access point (WAP) is prone to a security-bypass vulnerability.
Remote attackers can exploit this issue to bypass security restrictions, access certain administrative functions, alter configuration, or trigger a denial-of-service condition.
D-Link DAP-1160 running firmware v120b06, v130b10, and v131b01 are vulnerable.
| VAR-E-201006-0329 | No CVE | D-Link DAP-1160 Wireless Access Point - DCC Protocol Security Bypass - Hardware remote Exploit | EDB ID: 34208 |
D-Link DAP-1160 Wireless Access Point - DCC Protocol Security Bypass.. remote exploit for Hardware platform