|
285621
|
- |
|
verizon
|
wireless_network_extender
|
The Verizon Wireless Network Extender SCS-26UC4 and SCS-2U01 does not use CAVE authentication, which makes it easier for remote attackers to obtain ESN and MIN values from arbitrary phones, and condu…
|
CWE-287
Improper Authentication
|
CVE-2013-4877
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285622
|
- |
|
verizon
|
wireless_network_extender
|
The Verizon Wireless Network Extender SCS-2U01 has a hardcoded password for the root account, which makes it easier for physically proximate attackers to obtain administrative access by leveraging a …
|
CWE-255
Credentials Management
|
CVE-2013-4876
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285623
|
- |
|
verizon
|
wireless_network_extender
|
The Uboot bootloader on the Verizon Wireless Network Extender SCS-2U01 allows physically proximate attackers to bypass the intended boot process and obtain a login prompt by connecting a crafted HDMI…
|
CWE-287
Improper Authentication
|
CVE-2013-4875
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285624
|
- |
|
verizon
|
wireless_network_extender
|
The Uboot bootloader on the Verizon Wireless Network Extender SCS-26UC4 allows physically proximate attackers to obtain root access by connecting a crafted HDMI cable and using a sys session to modif…
|
CWE-287
Improper Authentication
|
CVE-2013-4874
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285625
|
- |
|
yahoo
|
tumblr
|
The Yahoo! Tumblr app before 3.4.1 for iOS sends cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
|
CWE-255
Credentials Management
|
CVE-2013-4873
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285626
|
- |
|
google
|
glass
|
Google Glass before XE6 does not properly restrict the processing of QR codes, which allows physically proximate attackers to modify the configuration or redirect users to arbitrary web sites via a c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4872
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285627
|
- |
|
siemens
|
openscape_session_border_controller
enterprise_openscape_branch
|
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to execute arbitrar…
|
CWE-78
OS Command
|
CVE-2013-4781
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285628
|
- |
|
siemens
|
openscape_session_border_controller
enterprise_openscape_branch
|
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to read arbitrary f…
|
CWE-200
Information Exposure
|
CVE-2013-4780
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285629
|
- |
|
siemens
|
openscape_session_border_controller
enterprise_openscape_branch
|
Cross-site scripting (XSS) vulnerability in core/handleTw.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4779
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285630
|
- |
|
siemens
|
openscape_session_border_controller
enterprise_openscape_branch
|
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to obtain sensitive…
|
CWE-200
Information Exposure
|
CVE-2013-4778
|
2024-11-21 10:56 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
