DelspoN - Security Researcher - Exploit Intelligence Platform

CVE-2024-57376 NOMISEC HIGH WORKING POC

D-Link DSR-150/150N/250/250N/500/1000N 3.13-3.17B901C - Unauthenticated Remote Code Execution via Buffer Overflow

Buffer Overflow vulnerability in D-Link DSR-150, DSR-150N, DSR-250, DSR-250N, DSR-500N, DSR-1000N from 3.13 to 3.17B901C allows unauthenticated users to execute remote code execution.

1 stars

CVSS 8.8

View Code

CVE-2019-18929 WRITEUP HIGH WORKING POC

Western Digital My Cloud EX2 Ultra <2.31.183 - RCE

Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users (including guest accounts) to remotely execute arbitrary code via a download_mgr.cgi stack-based buffer overflow.

CVSS 8.8

View Code

CVE-2019-18930 WRITEUP HIGH WRITEUP

Western Digital My Cloud EX2 Ultra 2.31.183 - RCE

Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users (including guest account) to remotely execute arbitrary code via a stack-based buffer overflow. There is no size verification logic in one of functions in libscheddl.so, and download_mgr.cgi makes it possible to enter large-sized f_idx inputs.

CVSS 8.8

View Code

CVE-2018-18695 WRITEUP HIGH WORKING POC

M2SOFT Report Designer Viewer 5.0 - Buffer Overflow via Crafted MRD File

M2SOFT Report Designer Viewer 5.0 allows a Buffer Overflow with Extended Instruction Pointer (EIP) control via a crafted MRD file.

CVSS 7.8

View Code

CVE-2019-18929 WRITEUP HIGH WRITEUP

Western Digital My Cloud EX2 Ultra <2.31.183 - RCE

Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users (including guest accounts) to remotely execute arbitrary code via a download_mgr.cgi stack-based buffer overflow.

CVSS 8.8

View Code

CVE-2019-18930 WRITEUP HIGH WORKING POC

Western Digital My Cloud EX2 Ultra 2.31.183 - RCE

Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users (including guest account) to remotely execute arbitrary code via a stack-based buffer overflow. There is no size verification logic in one of functions in libscheddl.so, and download_mgr.cgi makes it possible to enter large-sized f_idx inputs.

CVSS 8.8

View Code

CVE-2019-18931 WRITEUP HIGH WORKING POC

Western Digital My Cloud EX2 Ultra <2.31.195 - Buffer Overflow

Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer Overflow with Extended Instruction Pointer (EIP) control via crafted GET/POST parameters.

CVSS 8.8

View Code