Twenty Year Anniversary
Showing 1 - 25 of 57 RSS Feed

Files from Karn Ganeshen

Email addresskarnganeshen at gmail.com
First Active2010-02-05
Last Active2017-12-29
Cambium ePMP1000 2.5 Command Injection
Posted Dec 29, 2017
Authored by Karn Ganeshen | Site metasploit.com

This Metasploit module exploits an OS Command Injection vulnerability in Cambium ePMP1000 device management portal. It requires any one of the following login credentials - admin/admin, installer/installer, home/home - to set up a reverse netcat shell.

tags | exploit, shell
MD5 | e8f57e714dbbdcf280d1f87e4b85a1b3
Cambium ePMP1000 3.1-3.5-RC7 Command Injection
Posted Dec 29, 2017
Authored by Karn Ganeshen | Site metasploit.com

This Metasploit module exploits an OS Command Injection vulnerability in Cambium ePMP1000 device management portal. It requires any one of the following login credentials - admin/admin, installer/installer, home/home - to set up a reverse netcat shell. The module has been tested on versions 3.1-3.5-RC7.

tags | exploit, shell
advisories | CVE-2017-5255
MD5 | 5481d93d50d546555a22281fcd4dd6d7
Progea Movicon 11.5.1181 Search Path Issues
Posted Oct 31, 2017
Authored by Karn Ganeshen

Progea Movicon versions 11.5.1181 and below suffer from search path related vulnerabilities.

tags | exploit, vulnerability
advisories | CVE-2017-14017, CVE-2017-14019
MD5 | 1de6e04aa62eca5a923d8fc55a9f1748
SpiderControl SCADA Web Server 2.02.0007 Improper Privilege Management
Posted Oct 31, 2017
Authored by Karn Ganeshen

SpiderControl SCADA Web Server versions 2.02.0007 and below suffer from an improper privilege management vulnerability.

tags | exploit, web
advisories | CVE-2017-12728
MD5 | d6acb33e7b8598a0c01679e484876aef
JanTek JTC-200 RS232-NET Connector CSRF / Missing Authentication
Posted Oct 31, 2017
Authored by Karn Ganeshen

JanTek JTC-200 RS232-NET Connector suffers from cross site request forgery and missing authentication vulnerabilities.

tags | exploit, vulnerability, csrf
advisories | CVE-2016-5789, CVE-2016-5791
MD5 | 020bc5ac941329974bf88c561dc914f2
Trihedral VTScada DoS / XSS / Information Disclosure
Posted Jun 30, 2017
Authored by Karn Ganeshen

Trihedral VTScada versions prior to 11.2.26 suffer from resource consumption, cross site scripting, and information disclosure vulnerabilities.

tags | advisory, vulnerability, xss, info disclosure
MD5 | cb976665ca752634c866774df96acaff
Schneider Electric Wonderware InduSoft Web Studio 8.0 Patch 3 Insecure Permissions
Posted Jun 30, 2017
Authored by Karn Ganeshen

Schneider Electric Wonderware InduSoft Web Studio versions 8.0 Patch 3 and below suffer from having incorrect default permissions.

tags | exploit, web
MD5 | 2b609eb1e1a05b44853880ed5da03f26
Digital Canal Structural Wind Analysis 9.1 Buffer Overflow
Posted Jun 30, 2017
Authored by Karn Ganeshen

Digital Canal Structural Wind Analysis versions 9.1 and below suffer from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | a7290e29db03e678669abbc187954af5
Microsoft Machine Debug Manager (mdm) DLL Hijacking
Posted Jun 30, 2017
Authored by Karn Ganeshen

Microsoft Machine Debug Manager (mdm) suffers from dll hijacking vulnerabilities.

tags | exploit, vulnerability
systems | windows
MD5 | 3c06775c91214d9d0ce304e8f6548704
Microsoft Office Patch Installer DLL Hijacking
Posted Jun 30, 2017
Authored by Karn Ganeshen

Microsoft Office Patch Installer suffers from dll hijacking vulnerabilities.

tags | advisory, vulnerability
systems | windows
MD5 | 2b690a8c242cf48c547db68a1f8c4cd8
Cambium SNMP Access Controls
Posted Apr 6, 2017
Authored by Karn Ganeshen

Cambium products suffer from SNMP access control issues that may allow for unauthorized changes to the device configuration. Models affected include Cambium ePMP 1000, Cambium ePMP 2000, Cambium PMP XXX, and Cambium ForceXXX models.

tags | exploit, bypass
MD5 | 554ca0450724f285790b803edba59020
SenNet Data Logger / Electricity Meter Code Execution
Posted Apr 6, 2017
Authored by Karn Ganeshen

SenNet data logger and electricity meter appliances suffer from insecure configuration and OS command injection vulnerabilities.

tags | exploit, vulnerability
MD5 | 5ed44024950355678f2a08408a51601d
Sistemi Winlog SCADA Software DLL Hijacking
Posted Apr 6, 2017
Authored by Karn Ganeshen

Sielco Sistemi Winlog SCADA Software versions prior to 3.02.01 suffer from a dll hijacking vulnerability.

tags | exploit
systems | windows
advisories | CVE-2017-5161
MD5 | aeab43959e2123f0d35c8a06fcd50a72
VMU-C CSRF / XSS / Access Control
Posted Apr 6, 2017
Authored by Karn Ganeshen

The VMU-C webserver suffers from cross site request forgery, cross site scripting, access control, weak credential management, and insecure storage vulnerabilities. VMU-C EM prior to firmware Version A11_U05 and VMU-C PV prior to firmware Version A17 are affected.

tags | advisory, vulnerability, xss, info disclosure, csrf
advisories | CVE-2017-5144, CVE-2017-5145, CVE-2017-5146
MD5 | 07e16456b846d15782e24a428bd71425
LAquis SCADA 4.1 Access Control
Posted Apr 6, 2017
Authored by Karn Ganeshen

LAquis SCADA version 4.1 suffers from access control issues.

tags | advisory, bypass
advisories | CVE-2017-6016
MD5 | ceb0e533f4ea33ad349ea2f06a537f58
BINOM3 Power Meter CSRF / XSS / Credential Management
Posted Sep 16, 2016
Authored by Karn Ganeshen

BINOM3 power meter suffers from cross site request forgery, weak credential management, information leakage, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | d3b962dd9399e12820541f494aab84e9
ELNet Power Meter Unauthenticated Access / Weak Credential Management
Posted Sep 7, 2016
Authored by Karn Ganeshen

ELNet Power Meter suffers from unauthenticated web management access and weak credential management vulnerabilities.

tags | exploit, web, vulnerability
MD5 | cf1143f9d2b04d82c5fbab8053f374b0
Powerlogic / Schneider Electric IONXXXX CSRF / Missing Access Controls
Posted Sep 7, 2016
Authored by Karn Ganeshen

Powerlogic / Schneider Electric IONXXXX series smart meters suffers from cross site request forgery and missing access control vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | 107490206644c5dbd12193222b6899e7
Halliburton LogView Pro 9.7.5 Crash
Posted Aug 2, 2016
Authored by Karn Ganeshen

Halliburton LogView Pro version 9.7.5 crash proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | ad3d14dfe852c992951fd5f07efd5672
mySCADAPro 7 Privilege Escalation
Posted Aug 2, 2016
Authored by Karn Ganeshen

mySCADAPro version 7 suffers from a local privilege escalation vulnerability.

tags | exploit, local
MD5 | 13ca9dd3461d2330fde02a8f60761b2c
MediaCoder 0.8.43.5852 SEH Overflow
Posted Jul 25, 2016
Authored by Karn Ganeshen

MediaCoder version 0.8.43.5852 SEH buffer overflow exploit that spawns calc.exe.

tags | exploit, overflow
MD5 | 1c1fa76792e4d6df15ec3eff7959ef23
CoolPlayer+ Portable 2.19.6 Stack Overflow
Posted Jul 25, 2016
Authored by Karn Ganeshen

CoolPlayer+ Portable version 2.19.6 m3u stack overflow exploit with egghunter shellcode and aslr bypass.

tags | exploit, overflow, shellcode
MD5 | 76cdc69cd07deceac6f7097d0e6c81f3
TFTP Server 1.4 WRQ Buffer Overflow
Posted Jul 21, 2016
Authored by Karn Ganeshen

TFTP server version 1.4 WRQ buffer overflow exploit with egghunter shellcode.

tags | exploit, overflow, shellcode
MD5 | fe5dce41ea7ae479599f167ae29fb639
RS232-NET Converter (JTC-200) CSRF / Weak Credentials / Unauthenticated Access
Posted Jul 6, 2016
Authored by Karn Ganeshen

RS232-NET Converter (JTC-200) suffers from cross site request forgery and weak credential management vulnerabilities along with unauthenticated access over telnet.

tags | exploit, vulnerability, bypass, csrf
MD5 | 95d9eee550ca7a6c748d43980a13c9a7
CIMA DocuClass ECM CSRF / XSS / SQL Injection
Posted Jul 6, 2016
Authored by Karn Ganeshen

CIMA DocuClass ECM suffers from cross site request forgery, cross site scripting, direct object reference, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | 39195591cc4aeb66a93e69cc233cb79f
Page 1 of 3
Back123Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

July 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    1 Files
  • 2
    Jul 2nd
    26 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    13 Files
  • 6
    Jul 6th
    4 Files
  • 7
    Jul 7th
    4 Files
  • 8
    Jul 8th
    1 Files
  • 9
    Jul 9th
    16 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    32 Files
  • 12
    Jul 12th
    22 Files
  • 13
    Jul 13th
    15 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    1 Files
  • 16
    Jul 16th
    3 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close