Sielco Analog FM Transmitter 2.12 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Sielco Analog FM Transmitter version 2.12 suffers from a cross site request forgery vulnerability.
Archive for April, 2023
Sielco Analog FM Transmitter 2.12 Improper Access Control
Posted by deepcore under exploit (No Respond)
Sielco Analog FM Transmitter version 2.12 suffers from an improper access control vulnerability that allows for a lower privileged user to change the administrator’s password.
Sielco Analog FM Transmitter 2.12 Remote Privilege Escalation
Posted by deepcore under exploit (No Respond)
Sielco Analog FM Transmitter version 2.12 suffers from a remote privilege escalation vulnerability.
Sielco Radio Link 2.06 Cookie Brute Force
Posted by deepcore under exploit (No Respond)
Sielco Radio Link version 2.06 suffers from a cookie brute forcing vulnerability that can allow for session hijacking.
Sielco Radio Link 2.06 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Sielco Radio Link version 2.06 suffers from a cross site request forgery vulnerability.
Sielco Radio Link 2.06 Improper Access Control
Posted by deepcore under exploit (No Respond)
Sielco Radio Link version 2.06 suffers from an improper access control vulnerability that allows for a lower privileged user to change the administrator’s password.
Sielco Radio Link 2.06 Remote Privilege Escalation
Posted by deepcore under exploit (No Respond)
Sielco Radio Link version 2.06 suffers from a remote privilege escalation vulnerability.
Sielco PolyEco Digital FM Transmitter 2.0.6 Authentication Bypass
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 suffers from an authentication bypass vulnerability.
Rocket Software Unidata 8.2.4 Build 3003 Buffer Overflow
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an authentication bypass vulnerability in the Linux version of udadmin_server, which is an RPC service that comes with the Rocket Software UniData server, which runs as root. This vulnerability affects UniData versions 8.2.4 build 3003 and earlier (for Linux), but this module specifically targets UniData version 8.2.4 build 3001. Other versions […]
Rocket Software Unidata udadmin_server Authentication Bypass
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an authentication bypass vulnerability in the Linux version of udadmin_server, which is an RPC service that comes with the Rocket Software UniData server. This affects versions of UniData prior to 8.2.4 build 3003. This service typically runs as root. It accepts a username of “:local:” and a password in the form […]