VARIoT IoT exploits database
| VAR-E-201003-0747 |
CVE-2010-0576 |
Cisco IOS Multiprotocol Label Switching (MPLS) Malformed Packet Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0248 | No EDB ID |
Cisco IOS is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to reload, denying service to legitimate users.
This issue is tracked by Cisco Bug IDs CSCsz45567 and CSCsj25893.
http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsq24002
| VAR-E-201003-1557 |
CVE-2010-0580 |
Cisco IOS SIP Message (CVE-2010-0580) Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0233 | No EDB ID |
Cisco IOS is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to crash and reload, denying service to legitimate users.
This issue is tracked by Cisco Bug ID CSCsz48680.
| VAR-E-201003-1556 |
CVE-2010-0581 |
Cisco IOS SIP Message (CVE-2010-0581) Remote Code Execution Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0258 | No EDB ID |
Cisco IOS is prone to a remote code-execution service vulnerability.
The attacker can exploit this issue to execute arbitrary code with elevated privileges on affected devices. Successful exploits will completely compromise an affected device.
This issue is tracked by Cisco Bug ID CSCsz89904.
| VAR-E-201003-1412 |
CVE-2010-0585 |
Cisco IOS For Communication Manager Express SCCP (CVE-2010-0585) Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0262 | No EDB ID |
Cisco IOS, configured for use on Cisco Communication Manager Express, is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to cause the affected device to crash and reload, denying service to legitimate users.
This issue is tracked by Cisco Bug ID CSCsz48614.
| VAR-E-201003-1087 |
CVE-2010-0584 |
Cisco IOS NAT SCCP Fragmentation Support Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0261 | No EDB ID |
Cisco IOS is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to reload, denying service to legitimate users.
This issue is being tracked by Cisco Bug ID CSCsy09250.http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsq24002
| VAR-E-201003-0926 |
CVE-2010-0583 |
Cisco IOS H.323 Interface Memory Leak Remote Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0260 | No EDB ID |
Cisco IOS is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to reload, denying service to legitimate users.
This issue is being tracked by Cisco Bug ID CSCtb93855.
| VAR-E-201003-0088 |
CVE-2010-0582 |
Cisco IOS H.323 Interface Queue Resource Exhaustion Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0259 | No EDB ID |
Cisco IOS is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to consume all available space in the H.323 interface queue, resulting in a queue wedge, which may prevent new packets from being processed.
This issue is being tracked by Cisco Bug ID CSCtb19962.
| VAR-E-201003-0212 |
CVE-2010-0619 |
Lexmark Multiple Laser printers - Remote Stack Overflow - Hardware dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201003-0257 | EDB ID: 11880 |
Lexmark Multiple Laser printers - Remote Stack Overflow. CVE-2010-0619CVE-63164 . dos exploit for Hardware platform
| VAR-E-201003-0739 | No CVE | no$gba '.nds' File Remote Buffer Overflow Vulnerability | No EDB ID |
no$gba is prone to a remote buffer-overflow vulnerability because it fails to perform adequate bounds checks on user-supplied input.
Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
no$gba 2.5c is vulnerable; other versions may also be affected.
| VAR-E-201003-0333 |
CVE-2010-1185 |
SAP MaxDB - Malformed Handshake Request Remote Code Execution - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201003-0494 | EDB ID: 11886 |
SAP MaxDB - Malformed Handshake Request Remote Code Execution. CVE-2010-1185CVE-63047 . remote exploit for Windows platform
| VAR-E-201003-0228 | No CVE | SAP GUI 7.10 - WebViewer3D Active-X JIT-Spray - Windows remote Exploit | EDB ID: 11661 |
SAP GUI 7.10 - WebViewer3D Active-X JIT-Spray.. remote exploit for Windows platform
| VAR-E-201003-0761 |
CVE-2010-0103 |
Arugizer Trojan Horse (Energizer DUO) - Code Execution (Metasploit) - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201003-0151 | EDB ID: 16390 |
Arugizer Trojan Horse (Energizer DUO) - Code Execution (Metasploit). CVE-2010-0103CVE-62782 . remote exploit for Windows platform
| VAR-E-201003-0567 |
CVE-2010-0962 |
Multiple Apple Wireless Products FTP Port Forward Security Bypass Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201003-0321 | No EDB ID |
Multiple Apple wireless products are prone to a security-bypass vulnerability.
An attacker can exploit this issue to perform anonymous port scans on a victim's computer and send unsolicited emails and news. Other attacks are also possible.
The following products are affected:
Airport Express Firmware version 7.5
Airport Extreme Firmware version 7.5
Time Capsule Firmware version 7.5
Other products and versions may also be affected.
| VAR-E-201002-0132 |
CVE-2010-1544 |
RCA DCM425 Cable Modem - 'micro_httpd' Denial of Service (PoC) - Hardware dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201004-0415 | EDB ID: 11597 |
RCA DCM425 Cable Modem - 'micro_httpd' Denial of Service (PoC). CVE-2010-1544CVE-62713 . dos exploit for Hardware platform
| VAR-E-201002-0244 | No CVE | Easy FTP Server (AKA UplusFTP) 'Path' Parameter Buffer Overflow Vulnerability | No EDB ID |
Easy FTP Server (also known as UplusFTP) is prone to a buffer-overflow vulnerability.
Successful exploits may allow attackers to execute arbitrary code within the context of the application. Failed exploit attempts will likely result in a denial-of-service condition.
Easy FTP Server 1.7.0.2, 1.7.0.12, and 1.7.1.01 are vulnerable; other versions may also be affected.
| VAR-E-201002-1075 |
CVE-2010-0149 |
Cisco ASA Appliance TCP Connection Exhaustion Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201002-0072 | No EDB ID |
Cisco ASA security appliances are prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to exhaust available TCP connections, resulting in a denial-of-service condition.
This issue is documented in Cisco bug ID CSCsz77717.
| VAR-E-201002-0246 |
CVE-2010-0567 |
Cisco ASA 5500 IKE Message Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201002-0164 | No EDB ID |
Cisco ASA security appliances are prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to cause all IPsec tunnels to terminate.
This issue is documented in Cisco bug ID CSCtc47782.
| VAR-E-201002-0420 |
CVE-2010-0565 |
Cisco ASA 5500 WebVPN DTLS Packet Denial of Service Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201002-0162 | No EDB ID |
Cisco ASA security appliances are prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to cause the device to reload, denying service to legitimate users.
This issue is documented in Cisco bug ID CSCtb64913.
| VAR-E-201002-0001 |
CVE-2010-0415 CVE-2012-0053 CVE-2011-3368 |
Linux Kernel 2.6.18 - 'move_pages()' Information Leak - Linux local Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 40810 |
Linux Kernel 2.6.18 - 'move_pages()' Information Leak. CVE-2010-0415 . local exploit for Linux platform
| VAR-E-201002-1340 |
CVE-2010-0415 CVE-2012-0053 CVE-2011-3368 |
Linux Kernel 2.6.18 - 'move_pages()' Information Leak - Linux local Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201110-0291, VAR-201201-0038 | EDB ID: 40810 |
Linux Kernel 2.6.18 - 'move_pages()' Information Leak. CVE-2010-0415 . local exploit for Linux platform