Showing 1 - 3 of 3

Files from Alejandro Alvarez Bravo

IBM 1754 GCM KVM Code Execution / File Read / XSS: Posted Jul 21, 2014; Authored by Alejandro Alvarez Bravo; The IBM 1754 GCM KVM suffers from code execution, arbitrary file read, and cross site scripting vulnerabilities. Versions 1.20.0.22575 and below are vulnerable.; tags | exploit, arbitrary, vulnerability, code execution, xss; advisories | CVE-2014-2085, CVE-2014-3080, CVE-2014-3081; SHA-256 | 34b46f6efc7a6f5be6994d9dd9ba60ffa5ba29218e6a3823dedc1b4384fc4d64; Download | Favorite | View

IBM 1754 GCM16 1.18.0.22011 Command Execution: Posted Aug 16, 2013; Authored by Alejandro Alvarez Bravo; IBM 1754 GCM16 versions 1.18.0.22011 and below contain a flaw that allows a remote authenticated user to execute unauthorized commands as root. This flaw exist because webapp variables are not sanitized. In this case, parameters $count and $size from ping.php allow to create a special crafted URL to inject text to an exec() so it can be arbitrary used to execute any command on the KVM embedded linux.; tags | exploit, remote, arbitrary, root, php; systems | linux; advisories | CVE-2013-0526; SHA-256 | 44101c7790ad77030789c00566685d651abc1d129781a7ca33533e87d6ef5da9; Download | Favorite | View

Netgear CG3100D Residential Gateway Privilege Escalation: Posted Oct 15, 2010; Authored by Alejandro Alvarez Bravo; The Netgear CG3100D Residential Gateway suffers from multiple bypass vulnerabilities that allow for privilege escalation.; tags | exploit, vulnerability; SHA-256 | fc6235aa4f028ef06046b5a00203fcf2b6c847bd5c4aaba421f0fbac687bb523; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days