VARIoT IoT exploits database

ZYXEL ZyWALL 2 3.62 - '/Forms/General_1?sysSystemName' Cross-Site Scripting. CVE-2007-4318CVE-38721 . remote exploit for Hardware platform

Cisco IOS Next Hop Resolution Protocol (NHRP) - Denial of Service. CVE-36692CVE-2007-4286 . dos exploit for Windows platform

Cisco IOS and Unified Communications Manager are prone to multiple denial-of-service and code-execution vulnerabilities. These issues pertain to the following protocols or features: Session Initiation Protocol (SIP) Media Gateway Control Protocol (MGCP) Signaling protocols H.323, H.254 Real-time Transport Protocol (RTP) Facsimile reception A remote attacker can exploit these issues to execute arbitrary code or cause denial-of-service conditions.

Cisco Wireless LAN Controller (WLC) is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to crash the device, denying service to legitimate users. These issues affect Cisco Wireless LAN Control 3.2, 4.0, and 4.1; other versions may also be affected.

EnjoySAP SAP GUI - ActiveX Control Buffer Overflow (Metasploit). CVE-2007-3605CVE-37690 . remote exploit for Windows platform

Ingress Database Server 2.6 - Multiple Remote Vulnerabilities. CVE-2007-3334CVE-37487 . dos exploit for Windows platform

Apache is prone to multiple denial-of-service vulnerabilities. An attacker with the ability to execute arbitrary server-side script-code can exploit these issues to stop arbitrary services on the affected computer in the context of the master webserver process; other attacks may also be possible.

Sony Playstation 3 is prone to multiple denial-of-service vulnerabilities because its browser fails to adequately handle user-supplied data. An attacker can exploit this issue by exhausting memory resources to cause the browser to become unresponsive or to crash the device.

The RSA BSAFE library is prone to a denial-of-service vulnerability because it fails to properly handle malformed ASN.1 data. Exploiting this vulnerability allows attackers to crash applications that use the affected library. The specific impact of this vulnerability depends on the nature of the applications. Local and remote attacks may be possible. Depending on the nature of vulnerable applications, attackers may be able to exploit this issue without authentication. These versions are vulnerable: RSA BSAFE Crypto-C prior to 6.3.1 Cert-C prior to 2.8 The vendor tracks this issue by RSA Bug ID 46337. Cisco tracks this issue as Bug IDs: Cisco IOS: CSCsd85587 Cisco IOS XR: CSCsg41084 Cisco PIX and ASA Security Appliances: CSCse91999 Cisco Firewall Services Module (FWSM): CSCsi97695 Cisco Unified CallManager: CSCsg44348

Cisco IOS 12.3(18) (FTP Server) - Remote (Attached to GDB). CVE-2007-2586 . remote exploit for Hardware platform

Cisco Wireless LAN Controller (WLC) is prone to multiple remote vulnerabilities, including an unauthorized-access vulnerability, an information-disclosure vulnerability, and a vulnerability that prevents the WLAN's ACLs from being installed. An attacker can exploit these issues to completely compromise the affected device, cause a denial-of-service condition, obtain potentially sensitive information, and gain unauthorized access to the affected device.

Miniwebsvr is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context of the affected application. Information obtained may aid in further attacks. Note that the attacker can traverse to only one directory above the current working directory of the webserver application. Miniwebsvr 0.0.7 is vulnerable to this issue; other versions may also be affected. UPDATE (March 4, 2008): Miniwebsvr 0.0.9a is also reported vulnerable.

Apple Mac OS X is prone to multiple security vulnerabilities. These issues affect Mac OS X and various applications, including AFP Client, AirPortDriver module, CoreServices, Libinfo, Login Window, Natd, SMB, System Configuration, URLMount, VideoConference framework, WebDAV, and WebFoundation. Attackers may exploit these issues to execute arbitrary code, trigger denial-of-service conditions, escalate privileges, overwrite files, and access potentially sensitive information. Both local and remote vulnerabilities are present. Apple Mac OS X 10.4.9 and prior versions are vulnerable to these issues.

Apache Tomcat 5.5.15 - cal2.jsp Cross-Site Scripting. CVE-2006-7196CVE-34888 . webapps exploit for JSP platform

Apache Tomcat 6.0.13 - Insecure Cookie Handling Quote Delimiter Session ID Disclosure. CVE-2007-3382CVE-37070 . remote exploit for Multiple platform

Apache Tomcat < 6.0.18 - 'utf8' Directory Traversal. CVE-2008-2938 . remote exploit for Unix platform

Apache Tomcat 5.x/6.0.x - Directory Traversal. CVE-2007-0450CVE-34769 . remote exploit for Linux platform

Apache Tomcat 6.0.13 - JSP Example Web Applications Cross-Site Scripting. CVE-2007-2449CVE-36080 . webapps exploit for JSP platform

Apache Tomcat < 6.0.18 - 'utf8' Directory Traversal (PoC). CVE-47464CVE-2008-2938 . remote exploit for Multiple platform

Apache Tomcat 6.0.13 - Host Manager Servlet Cross-Site Scripting. CVE-2007-3386CVE-36417 . remote exploit for Multiple platform