VARIoT IoT exploits database

Apache Tomcat 6.0.10 - Documentation Sample Application Multiple Cross-Site Scripting Vulnerabilities. CVE-2007-1355CVE-34875 . remote exploit for Multiple platform

Novell Zenworks Desktop Management is prone to a vulnerability that allows attackers to bypass security controls and to upload image files to directories that they normally would not have write access to. Novell Zenworks Desktop Management version 7 Support Pack 1 - ZDM7 SP1 and ZDM7 SP1 Imaging are vulnerable to this issue.

Hitachi Web Server is prone to multiple vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user or to bypass certain security restrictions. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

Multiple Cisco switches and routers running Cisco IOS and Cisco IOS XR are prone to multiple remote code-execution vulnerabilities. These issues occur because the devices fail to handle specially crafted network packets. An attacker can exploit these issues to execute arbitrary code within the context of the affected device. Failed exploit attempts will result in a denial of service. These issues affect only devices that are configured to handle Internet Protocol version 4 (IPv4) packets. These issues do not affect devices that are configured to handle only Internet Protocol version 6 (IPV6) packets. These issues are being tracked by Cisco Bug IDs CSCeh52410 and CSCec71950.

Rumpus 5.1 - Local Privilege Escalation / Remote FTP LIST. CVE-2007-0019 . local exploit for OSX platform

HP Printer FTP Print Server 2.4.5 - 'LIST' Buffer Overflow.. dos exploit for Hardware platform

SAP Web Application Server 6.40 - Arbitrary File Disclosure. CVE-30753CVE-2006-5784 . remote exploit for Windows platform

SAP Web Application Server is prone to a remote denial-of-service vulnerability. Exploiting this issue allows remote attackers to consume excessive system resources until the software becomes unresponsive to further calls, effectively denying service to legitimate users. These versions are affected: - 6.40 patch 135 and prior - 7.00 patch 55 and prior.

vTiger CRM 4.2 - 'calpath' Multiple Remote File Inclusions. CVE-30869CVE-2006-5289CVE-30868CVE-30867 . webapps exploit for PHP platform

vtiger CRM is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. This may allow an attacker to compromise the application and the underlying system; other attacks are also possible. vtiger CRM 4.2 and prior versions are vulnerable; other versions may also be affected.

Multiple SAPID applications are prone to multiple remote file-include vulnerabilities. An attacker can exploit these issues to execute arbitrary malicious PHP code in the context of the webserver process. These may facilitate a compromise of the application and the underlying system; other attacks are also possible.

Linksys WRT54GS is prone to an authentication-bypass vulnerability. Reportedly, the device permits changes in its configuration settings without requring authentication. Linksys WRT54GS is prone to an authentication-bypass vulnerability. The problem presents itself when a victim user visits a specially crafted web page on an attacker-controlled site. An attacker can exploit this vulnerability to bypass authentication and modify the configuration settings of the device. This issue is reported to affect firmware version 1.00.9; other firmware versions may also be affected.

Apache Tomcat 5 - Information Disclosure. CVE-2006-3835CVE-32723 . remote exploit for Multiple platform

MyBulletinBoard (MyBB) 1.1.5 - 'CLIENT-IP' SQL Injection. CVE-84803CVE-2011-5035CVE-2011-5034CVE-2011-4885CVE-2011-4858CVE-2011-4084CVE-2006-3775CVE-84802CVE-78115CVE-78114CVE-78113CVE-78112CVE-27335 . webapps exploit for PHP platform

MyBulletinBoard (MyBB) 1.1.5 - 'CLIENT-IP' SQL Injection. CVE-84803CVE-2011-5035CVE-2011-5034CVE-2011-4885CVE-2011-4858CVE-2011-4084CVE-2006-3775CVE-84802CVE-78115CVE-78114CVE-78113CVE-78112CVE-27335 . webapps exploit for PHP platform

Cisco Secure ACS 2.3 - 'LoginProxy.cgi' Cross-Site Scripting. CVE-2006-3101CVE-26531 . remote exploit for Unix platform

Cisco VPN 3000 Series Concentrators and ASA 5500 Series Adaptive Security Appliances (ASA) are prone to cross-site scripting attacks via the WebVPN Clientless Mode. The issue is due to insufficient sanitization of HTML and script code from error messages that are displayed to users. This vulnerability could result in the execution of attacker-supplied HTML and script code in the session of a victim user. In the worst-case scenario, the attacker could gain unauthorized access to the VPN by stealing the WebVPN session cookie. Cisco tracks this issue as Bug IDs CSCsd81095 and CSCse48193. Update: Cisco states that WebVPN full-network-access mode is not affected by this issue.

Multiple D-Link devices are susceptible to a remote denial-of-service vulnerability. This issue is due to a flaw in affected devices that causes them to fail when attempting to reassemble certain IP packets. This issue allows remote attackers to crash and reboot affected devices, denying service to legitimate users. D-Link DI-524, DI-624, and Di-784 devices are affected by this issue. Due to code reuse among routers, other devices may also be affected. It is reported that US Robotics USR8054 devices are also affected.

Cisco IOS SGBP is prone to a remote denial of service vulnerability. This issue arises on devices that have been configured to run SGBP. A successful attack causes a device to hang and fail to respond to further requests. It should be noted that a system watchdog timer will detect this condition after a delay and restart the device.

Cisco IP Phone 7940 - Reboot (Denial of Service). CVE-22469CVE-2006-0179 . dos exploit for Hardware platform