|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
VH4032N VH4032N_V0.2.35 Universal Plug and Play
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
VH4032N VH4032N_V0.2.35 USB Device Bypass Authentication
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
VH4032N VH4032N_V0.2.35 Bypass Authentication using SMB Symlinks
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
VH4032N VH4032N_V0.2.35 CSRF change FTP password
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
VH4032N VH4032N_V0.2.35 CSRF change admin password
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
VH4032N VH4032N_V0.2.35 Persistent Cross Site Scripting
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
Home Station BHS-RTA v1.1.3 Universal Plug and Play
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
Home Station BHS-RTA v1.1.3 Information Disclosure IP and MAC of clients
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
RTA01N RTK_V2.2.13 Universal Plug and Play
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
RTA01N RTK_V2.2.13 Backdoor admin:7449airocon
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
RTA01N RTK_V2.2.13 Unauthenticated Cross-site Scripting (XSS)
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
RTA01N RTK_V2.2.13 CSRF Denial of Service
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
RTA01N RTK_V2.2.13 CSRF change password from 1234 (default) to newpass
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
RTA01N RTK_V2.2.13 CSRF change DNS servers
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory
|
Full Disclosure.org
|
RTA01N RTK_V2.2.13 Multiple Cross-site Scriptings (XSS)
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
AW4062 1.4.2 CSRF Denial of Service
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Avisory PoC
|
Full Disclosure.org
|
AW4062 1.4.2 Privilege Escalation via FTP file config.xml
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
AW4062 1.4.2 CSRF change DNS servers
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
AW4062 1.4.2 CSRF ping certain IP
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
One click
|
Full Disclosure.org
|
AW4062 1.4.2 CSRF change password from 1234 to 12345
[SET IP]
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
|
2015/05/28
|
Advisory PoC
|
Full Disclosure.org
|
AW4062 1.4.2 Multiple Cross-site Scriptings (XSS)
|
Alvaro Folgado, Jose Rodriguez, Ivan Sanz
|
