This exploit demonstrates an authentication bypass on multiple MESSOA IP cameras that can change the admin username and password.
>> CATEGORY: exploit
Vanderbilt IP-Camera versions CCPW3025-IR and CVMW3025-IR suffer from a remote credential disclosure vulnerability.
Newtec Satellite Modem version MDM6000 2.2.5 suffers from a cross site scripting vulnerability.
ELIGIBLEBOMBSHELL is a remote code execution exploit for TOPSEC firewalls. It exploits an HTTP cookie command injection vulnerability and uses ETag examination for version detection. Versions affected include 3.2.100.010.1_pbc_17_iv_3 to…
This is an exploit with an unclear attack vector for TOPSEC firewalls running TOS operating system versions 3.2.100.010, 3.3.001.050, 3.3.002.021 and 3.3.002.030. Note that this exploit is part of the…
EGREGIOUSBLUNDER is a remote code execution exploit for Fortigate firewalls. It leverages an HTTP cookie overflow and is different from CVE-2006-6493 as noted by Avast. Models affected include 60, 60M,…
This Metasploit module will create a service on the box, and mark it for auto-restart.
This Metasploit module will create a cron or crontab entry to execute a payload. The module includes the ability to automatically clean up those entries to prevent multiple executions. syslog…
SIEMENS IP Camera CCMW1025 version x.2.2.1798 remote change admin user / password exploit.
Honeywell IP-Camera HICC-1100PT suffers from an unauthenticated remote credential disclosure vulnerability.