VARIoT IoT exploits database
| VAR-E-201004-1921 |
CVE-2010-0740 CVE-2012-0053 CVE-2011-3368 |
OpenSSL - Remote Denial of Service - Linux dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038, VAR-201003-0281 | EDB ID: 12334 |
OpenSSL - Remote Denial of Service. CVE-2010-0740 . dos exploit for Linux platform
| VAR-E-201004-1925 |
CVE-2010-1157 CVE-2012-0053 CVE-2011-3368 |
Apache Tomcat 5.5.0 < 5.5.29 / 6.0.0 < 6.0.26 - Information Disclosure - Multiple remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 12343 |
Apache Tomcat 5.5.0 < 5.5.29 / 6.0.0 < 6.0.26 - Information Disclosure. CVE-2010-1157 . remote exploit for Multiple platform
| VAR-E-201004-1638 | No CVE | Huawei EchoLife HG520c Denial Of Service | No EDB ID |
Huawei EchoLife HG520c suffers from denial of service and modem reset vulnerabilities.
| VAR-E-201004-0681 | No CVE | HP Operations Manager <= v8.16 - (srcvw4.dll) Unicode Stack Overflow | No EDB ID |
| VAR-E-201004-1036 | No CVE | Huawei EchoLife HG520c - Modem Reset (Denial of Service) - Hardware dos Exploit | EDB ID: 12297 |
Huawei EchoLife HG520c - Modem Reset (Denial of Service). CVE-63991 . dos exploit for Hardware platform
| VAR-E-201004-0608 | No CVE | HTTP File Server 2.2 - Security Bypass / Denial of Service - Windows remote Exploit | EDB ID: 33841 |
HTTP File Server 2.2 - Security Bypass / Denial of Service.. remote exploit for Windows platform
| VAR-E-201004-0206 | No CVE | Huawei EchoLife HG520 - Remote Information Disclosure - Hardware remote Exploit | EDB ID: 12298 |
Huawei EchoLife HG520 - Remote Information Disclosure. CVE-63990 . remote exploit for Hardware platform
| VAR-E-201004-0162 |
CVE-2010-1033 |
HP Operations Manager 8.16 - 'srcvw4.dll' 'LoadFile()'/'SaveFile()' Remote Unicode Stack Overflow (PoC) - Windows dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201004-0240 | EDB ID: 12302 |
HP Operations Manager 8.16 - 'srcvw4.dll' 'LoadFile()'/'SaveFile()' Remote Unicode Stack Overflow (PoC). CVE-63931CVE-2010-1033 . dos exploit for Windows platform
| VAR-E-201004-1225 | No CVE | Iomega Home Media Network Hard Drive 2.038 < 2.061 - File-system Access - Hardware remote Exploit | EDB ID: 12265 |
Iomega Home Media Network Hard Drive 2.038 < 2.061 - File-system Access. CVE-64962 . remote exploit for Hardware platform
| VAR-E-201004-1520 | No CVE | Iomega Home Media Network Hard Drive 'smbwebclient.php' Authentication Bypass Vulnerability | No EDB ID |
Iomega Home Media Network Hard Drive is prone to an authentication-bypass vulnerability.
Attackers can leverage this issue to gain full browser-based read/write access to any visible shares on the device itself or the rest of the device's local network without proper authentication. Successful exploits may lead to other attacks.
This issue affects the Iomega Home Media Network Hard Drive Firmware versions 2.038 - 2.061.
| VAR-E-201004-0213 |
CVE-2010-1465 |
Trellian FTP Client - PASV Buffer Overflow - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201004-0487 | EDB ID: 12152 |
Trellian FTP Client - PASV Buffer Overflow. CVE-63812CVE-2010-1465 . remote exploit for Windows platform
| VAR-E-201004-0004 |
CVE-2010-0886 CVE-2012-0053 CVE-2011-3368 |
Java Deployment Toolkit - Performs Insufficient Validation of Parameters - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 12117 |
Java Deployment Toolkit - Performs Insufficient Validation of Parameters. CVE-2010-0886CVE-63798 . remote exploit for Windows platform
| VAR-E-201004-0006 |
CVE-2010-0886 CVE-2012-0053 CVE-2011-3368 |
JAVA Web Start - Arbitrary Command-Line Injection - Multiple remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 12122 |
JAVA Web Start - Arbitrary Command-Line Injection. CVE-2010-0886CVE-63798 . remote exploit for Multiple platform
| VAR-E-201004-0003 |
CVE-2010-1423 CVE-2010-0886 CVE-2012-0053 CVE-2011-3368 |
Sun Java Web Start Plugin - Command Line Argument Injection (Metasploit) - Windows local Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 41700 |
Sun Java Web Start Plugin - Command Line Argument Injection (Metasploit). CVE-2010-1423CVE-2010-0886CVE-63648 . local exploit for Windows platform
| VAR-E-201004-1920 |
CVE-2010-1423 CVE-2010-0886 CVE-2012-0053 CVE-2011-3368 |
Sun Java Web Start Plugin - Command Line Argument Injection (Metasploit) - Windows local Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 41700 |
Sun Java Web Start Plugin - Command Line Argument Injection (Metasploit). CVE-2010-1423CVE-2010-0886CVE-63648 . local exploit for Windows platform
| VAR-E-201004-1922 |
CVE-2010-0886 CVE-2012-0053 CVE-2011-3368 |
Java Deployment Toolkit - Performs Insufficient Validation of Parameters - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 12117 |
Java Deployment Toolkit - Performs Insufficient Validation of Parameters. CVE-2010-0886CVE-63798 . remote exploit for Windows platform
| VAR-E-201004-1923 |
CVE-2010-0886 CVE-2012-0053 CVE-2011-3368 |
JAVA Web Start - Arbitrary Command-Line Injection - Multiple remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 12122 |
JAVA Web Start - Arbitrary Command-Line Injection. CVE-2010-0886CVE-63798 . remote exploit for Multiple platform
| VAR-E-201003-1727 | No CVE | SAP GUI 7.00 - BExGlobal Active-X unsecure method - Windows remote Exploit | EDB ID: 11879 |
SAP GUI 7.00 - BExGlobal Active-X unsecure method. CVE-64540 . remote exploit for Windows platform
| VAR-E-201003-1411 |
CVE-2010-0586 |
Cisco IOS For Communication Manager Express SCCP (CVE-2010-0586) Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0263 | No EDB ID |
Cisco IOS, configured for use on Cisco Communication Manager Express, is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to cause the affected device to crash and reload, denying service to legitimate users.
This issue is tracked by Cisco Bug ID CSCsz49741.
| VAR-E-201003-0748 |
CVE-2010-0579 |
Cisco IOS SIP Message (CVE-2010-0579) Remote Code Execution Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0232 | No EDB ID |
Cisco IOS is prone to a remote code-execution service vulnerability.
The attacker can exploit this issue to execute arbitrary code with elevated privileges on affected devices. Successful exploits will completely compromise an affected device.
This issue is tracked by Cisco Bug ID CSCtb93416.