no one is safe ...

Advisory

Multiple Vulnerabilities in Netgear SPH200D [Update: 03.02.2013]

Device Name: SPH200D
Vendor: Netgear

============ Vulnerable Firmware Releases: ============

Firmware Version : 1.0.4.80
Kernel Version : 4.1-18
Web Server Version : 1.5

============ Device Description: ============

http://support.netgear.com/product/SPH200D

============ Shodan Torks ============

Shodan Search: SPH200D
=> Results 337 devices

============ Vulnerability Overview: ============

  • directory traversal:

Multiple Vulnerabilities in Linksys WRT54GL

Device Name: Linksys WRT54GL v1.1
Vendor: Linksys/Cisco

============ Vulnerable Firmware Releases: ============

Firmware Version: 4.30.15 build 2, 01/20/2011

============ Device Description: ============

The Router lets you access the Internet via a wireless connection, broadcast at up to 54 Mbps, or through one of its four switched ports. You can also use the Router to share resources such as computers, printers and files. A variety of security features help to protect your data and your privacy while online. Security features include WPA2 security, a Stateful Packet Inspection (SPI) firewall and NAT technology. Configuring the Router is easy using the provided browser-based utility.

Source: http://homesupport.cisco.com/en-us/support/routers/WRT54GL

Advisory / Exploit: Sielco Sistemi Winlog Buffer Overflow <= v2.07.16 [Update: 02.07.2012]

Update - 22.06.2012: checked out the new version 2.07.16 and it is also vulnerable!

Internet Resources:

Advisories - DLL hijacking of some forensic and security related products

Die heutigen Tests einiger Forensik und Sicherheitsprodukte, die ich teilweise auch selber im Einsatz habe, brachten für mich einige überraschende und sogleich erschreckende Ergebnisse. Nahezu jedes der getesteten Produkte wies die DLL Hijacking Schwachstelle auf. Folgende Auflistung mit den Links zu den Advisories gibt eine kurze Übersicht:

Encase v6.15.0.82/6.16.2/6.17.0.90
# Filetype endump
# Advisory: http://www.s3cur1ty.de/m1adv2010-003

PGP Desktop 9.8 - 9.8.3 Build 4028
# Filetype pgp
# Advisory: http://www.s3cur1ty.de/m1adv2010-004

Advisory: Forensic Toolkit - Insecure Library Loading Allows Remote Code Execution (DLL Hijacking) [Update: 02.09.2010]

---------------------------------------------
Forensic Toolkit - Insecure Library Loading Allows Remote Code Execution (DLL Hijacking)
Date: 29.08.2010
---------------------------------------------

- Forensic Toolkit Description

Forensic Toolkit (FTK) is recognized around the world as the standard in computer forensics software. This court-validated digital investigations platform delivers cutting-edge computer forensic analysis, decryption and password cracking all within an intuitive and customizable interface.