Quentin Olagne

2 exploits Active since Mar 2017
CVE-2017-6351 EXPLOITDB HIGH text WRITEUP
WePresent WiPG-1500 Firmware 1.0.3.7 - Use of Hard-coded Credentials via Telnet Debug Mode
The WePresent WiPG-1500 device with firmware 1.0.3.7 has a manufacturer account that has a hardcoded username / password. Once the device is set to DEBUG mode, an attacker can connect to the device using the telnet protocol and log into the device with the 'abarco' hardcoded manufacturer account. This account is not documented, nor is the DEBUG feature or the use of telnetd on port tcp/5885.
CVSS 8.1
CVE-2017-6552 EXPLOITDB HIGH python WORKING POC
Sagemcom Livebox 3 SG30_sip-fr-5.15.8.1 - Denial of Service via IPv6 Routing Table Exhaustion
Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 devices have an insufficiently large default value for the maximum IPv6 routing table size: it can be filled within minutes. An attacker can exploit this issue to render the affected system unresponsive, resulting in a denial-of-service condition for telephone, Internet, and TV services.
CVSS 7.5