LifeSize ClearSea is a client/server solution for desktop and mobile video collaboration. Version 3.1.4 has been End of Life since Jan 14 2017, and suffers from directory traversal vulnerabilities. After authenticated as admin on Control Panel, attacker will be able to 1) Download arbitrary file; 2) Upload arbitrary file (leading to code execution).
By default WebLog Expert Enterprise 9.4 runs scheduled tasks under Local System account. If WebLog Expert Schedule Service is installed by an administrator, regular users have the ability to run tasks as Local System. To exploit this vulnerability, an attacker must already have access to a system running WebLog Expert and WebLog Expert Schedule Service using a low-privileged user account. The vulnerability allows local attackers to escalate privileges and execute arbitrary code as Local System.
Having local access to the network but being unauthenticated to the administrator panel, a user can disclose the built in Admin username/password to access the admin panel. By accessing the default gateway/router login page, a user can login with Username Admin and put any random password. Then, by clearing the password that was set, a POST request will come back with the Admin username/password.
The application suffers from an authenticated arbitrary file disclosure vulnerability including no session expiration. Input passed via the 'ID' parameter in several Perl scripts is not properly verified before being used to download system files. This can be exploited to disclose the contents of arbitrary files via directory traversal attacks.
CSRF (Cross site request forgery) in WampServer 3.1.2 which allows a remote attacker to force any victim to add or delete virtual hosts.
XSS: cross site scripting via CSRF is remotely exploitable. An attacker can exploit this vulnerability by intercepting the request using a proxy tool and changing the value of the parameter virtual_del[] to '><img src=x onerror=alert(1)>' and forwarding it. This will trigger the XSS vulnerability.
The application source code is coded in a way which allows malicious HTML request to be executed without veryifying source of request.This leads to arbitary execution with malicous request which will lead to the creation of a privileged user.
Faleemi Desktop Software for Windows and its Beta version (Faleemi Plus Desktop Software for Windows(Beta)) are vulnerable to Buffer Overflow exploit. When overly input is given to DDNS/IP parameter, it overflows the buffer corrupting EIP which can utilized cleverly for local arbitrary code execution. If this software is running as admin and if a low priv user has access to this application to enter new device, he can exploit the Buffer Overflow in the DDNS/IP parameter to obtain Admin privs. An attacker could exploit this vulnerability to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition.
Once modified, systems use foreign DNS servers, which are usually set up by cybercriminals. Users with vulnerable systems or devices who try to access certain sites are instead redirected to possibly malicious sites. Modifying systems' DNS settings allows cybercriminals to perform malicious activities like steering unknowing users to bad sites, replacing ads on legitimate sites, controlling and redirecting network traffic, and pushing additional malware.
Once modified, systems use foreign DNS servers, which are usually set up by cybercriminals. Users with vulnerable systems or devices who try to access certain sites are instead redirected to possibly malicious sites. Modifying systems' DNS settings allows cybercriminals to perform malicious activities like steering unknowing users to bad sites, replacing ads on legitimate sites, controlling and redirecting network traffic, and pushing additional malware.
Services By CQR