Sielco PolyEco Digital FM Transmitter 2.0.6 Authentication Bypass
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 suffers from an authentication bypass vulnerability.
Posts under exploit
Rocket Software Unidata 8.2.4 Build 3003 Buffer Overflow
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an authentication bypass vulnerability in the Linux version of udadmin_server, which is an RPC service that comes with the Rocket Software UniData server, which runs as root. This vulnerability affects UniData versions 8.2.4 build 3003 and earlier (for Linux), but this module specifically targets UniData version 8.2.4 build 3001. Other versions […]
Rocket Software Unidata udadmin_server Authentication Bypass
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an authentication bypass vulnerability in the Linux version of udadmin_server, which is an RPC service that comes with the Rocket Software UniData server. This affects versions of UniData prior to 8.2.4 build 3003. This service typically runs as root. It accepts a username of “:local:” and a password in the form […]
Sielco PolyEco Digital FM Transmitter 2.0.6 Authorization Bypass
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 suffers from an authorization bypass vulnerability.
Sielco PolyEco Digital FM Transmitter 2.0.6 Information Disclosure
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 suffers from an information disclosure vulnerability due to improper access control enforcement. An unauthenticated remote attacker can exploit this issue via a specially crafted request to gain access to sensitive information.
Sielco PolyEco Digital FM Transmitter 2.0.6 POST Manipulation
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 suffers from a radio data system POST manipulation vulnerability.
Sielco PolyEco Digital FM Transmitter 2.0.6 Authentication Bypass
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 suffers from authentication bypass, account takeover / lockout, and privilege escalation vulnerabilities that can be triggered by directly calling the user object and modifying the password of the two constants user/role (user/admin). This can be exploited by an unauthenticated adversary by issuing a single POST request to the […]
Sielco PolyEco Digital FM Transmitter 2.0.6 Cookie Brute Force
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 suffers from a cookie brute forcing vulnerability that can allow for session hijacking.
Sielco PolyEco Digital FM Transmitter 2.0.6 Default Credentials
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 uses a weak set of default administrative credentials that can be easily guessed in remote password attacks to gain full control of the system.
QuaDream Apple Spyware Maker Just Popped Up On The Radar Again
Posted by deepcore under exploit (No Respond)