SEC Consult Vulnerability Lab Security Advisory < 20181130-0 >
===
title: Multiple Vulnerabilities
product: Siglent Technologies SDS 1202X-E Digital Oscilloscope
vulnerable version: V5.1.3.13
Vulnerability found in 2009.
"
And now, change the username to access to application:
https://XXX.XXX/tarantella/cgi-bin/post2get/tarantella/resources/login/sco/tta/boot/strap_.html?action=bootstrap=index.html=DIRECT=
=unique
3. Solution:
The product is discontinued.
Vulnerability found in 2009.
___
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
Product:
"KNC is Kerberised NetCat. It works in basically the same way as either
netcat or stunnel except that it is uses GSS-API to secure the
communication. You can use it to construct client/server applications while
keeping the Kerberos libraries out of your programs address space quickly
and
Moxa NPort W2x50A products with firmware version 2.1 Build_17112017 or lower
are vulnerable to several authenticated OS Command Injection vulnerabilities:
#1 Authenticated OS Command Injection in web server ping functionality
Reserverd CVE ID: CVE-2018-19659
A specially crafted HTTP POST
Black Arch
Thu, May 31, 12:47 AM
to fulldisclosure
Dear list,
We've released the new BlackArch Linux ISOs and OVA image (version:
2018.12.01) along with many many improvements. They include more than
2050 tools now. The armv6h, armv7h and aarch64 repositories are filled
with about 1950 tools.