The most comprehensive collection of exploits gathered through direct submissions, mailing Non-profit project that is provided as a public service by Offensive Security.Ĭompliant archive of public exploits and corresponding vulnerable software,ĭeveloped for use by penetration testers and vulnerability researchers. That provides various Information Security Certifications as well as high end penetration testing services. The Exploit Database is maintained by Offensive Security, an information security training company
The author prohibits any malicious use of security related information The author is not responsible for any misuse of the information contained herein and accepts no responsibilityįor any damage caused by the use or misuse of this information. Permission is explicitly given for insertion in vulnerability databases and similar, provided that due credit Permission is hereby granted for the redistribution of this advisory, provided that it is not altered except by reformatting it, and The information contained within this advisory is supplied "as-is" with no warranties or guarantees of fitness of use or otherwise. NEC "Requests public disclosure after December 1st." : November 19, 2018 JPCERT "Vendor release October 2018" : September 12, 2018 JPCERT "vendor working on a release" : August 23 2018 JPCERT again contacts NEC : August 21, 2018 JPCERT shares information with NEC : June 7, 2018 If re.findall(r"\bProgramming Password Setup\b",res)!=-1: # We hit an active session.įor sessid in range(1000,15000): #test 14109 #check application is NEC and vuln version Print "NEC Univerge Sv9100 WebPro - 6.00.00 / Remote 0day Exploit POC" # "GOTO(8)" will retrieve all account usernames and cleartext passwords. #Dumps user accounts and plaintext passwords stored in Web UI in Administrator Programming Password Setup' webpage NEC Univerge WebPro suffers from a "Predictable Session ID" that can potentially disclose all user account information including passwords stored in clear text in the Web UI.Īttackers can simply increment numbers until arriving at a live session, then by using a specific URI dump the entire account information for all users including the clear text passwords.
Make repeated remote HTTP requests until arriving at a valid authenticated sessionId. Predictable Session ID - CVE-2018-11741 / Cleartext Password Storage - CVE-2018-11742 Public facing installations as of Dec 1, 2018 NEC Univerge WebPro, is a web-based programming tool for the NEC Switch, which is used to program corporate Telephone systems.
0 kommentar(er)
