CVSS: 7.8EPSS: 5%CPEs: 1EXPL: 3CVE-2006-5196 – Motorola SB4200 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-5196
The HTTP interface in the Motorola SURFboard SB4200 Cable Modem allows remote attackers to cause a denial of service (device crash) via a request with MfcISAPICommand set to SecretProc and a long string in the Secret parameter. La interfaz HTTP en Motorola SURFboard SB4200 Cable Modem permite a un atacante remoto provocar denegación de servicio (caida de servicio) a través de una pregunta con MfcISAPICommand fijado a SecretProc y una secuencia larga en el parámetro Secret. • https://www.exploit-db.com/exploits/28739 http://downloads.securityfocus.com/vulnerabilities/exploits/20309.pl http://secunia.com/advisories/22359 http://www.securityfocus.com/bid/20309 http://www.vupen.com/english/advisories/2006/4054 https://exchange.xforce.ibmcloud.com/vulnerabilities/29617 •
CVSS: 6.8EPSS: 13%CPEs: 2EXPL: 2CVE-2006-1367 – Motorola - BlueTooth Interface Dialog Spoofing
https://notcve.org/view.php?id=CVE-2006-1367
The Motorola PEBL U6 08.83.76R, the Motorola V600, and possibly the Motorola E398 and other Motorola P2K-based phones does not require pairing for a connection related to the Headset Audio Gateway service, which allows user-assisted remote attackers to obtain AT level access and view phonebook entries and saved SMS messages by connecting on Bluetooth channel 3 and tricking the user into pressing Grant, aka a "Blueline" attack. NOTE: while user-assisted, the attack is made more feasible because of a GUI misrepresentation issue that allows a default message to be replaced by an attacker-specified one. • https://www.exploit-db.com/exploits/27454 http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044287.html http://secunia.com/advisories/19319 http://www.digitalmunition.com/DMA%5B2006-0321a%5D.txt http://www.securityfocus.com/archive/1/428431/100/0/threaded http://www.securityfocus.com/bid/17190 http://www.vupen.com/english/advisories/2006/1045 https://exchange.xforce.ibmcloud.com/vulnerabilities/25402 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 1CVE-2006-1365
https://notcve.org/view.php?id=CVE-2006-1365
The Motorola PEBL U6, the Motorola V600, and possibly the Motorola E398 and other Motorola phones allow remote attackers to add an entry for their own Bluetooth device to a target device's list of trusted devices (aka Device History), and possibly obtain AT level access to the target device, by initiating and interrupting an OBEX Push Profile that pretends to send a vCard, aka a "HeloMoto" attack. • http://trifinite.org/trifinite_stuff_helomoto.html http://www.digitalmunition.com/DMA%5B2006-0321a%5D.txt http://www.securityfocus.com/archive/1/428431/100/0/threaded •
CVSS: 7.8EPSS: 7%CPEs: 1EXPL: 1CVE-2006-1366
https://notcve.org/view.php?id=CVE-2006-1366
Buffer overflow in the Motorola PEBL U6 08.83.76R, and possibly other Motorola P2K-based phones, allows remote attackers to cause a denial of service (device shutdown), and possibly execute arbitrary code, via a long OBEX setpath to the OBEX File Transfer (aka FTP) service on Bluetooth channel 9. • http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044287.html http://secunia.com/advisories/19319 http://www.digitalmunition.com/DMA%5B2006-0321a%5D.txt http://www.securityfocus.com/archive/1/428431/100/0/threaded http://www.securityfocus.com/bid/17185 http://www.vupen.com/english/advisories/2006/1045 https://exchange.xforce.ibmcloud.com/vulnerabilities/25401 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2005-4215
https://notcve.org/view.php?id=CVE-2005-4215
Motorola SB5100E Cable Modem allows remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (aka LAND). El Cable Módem Motorola SB5100E permite a atacantes remtoso causar una denegación de servicio (caída del dispositivo) mediante un paquete IP con direcciones IP y puertos de origen y destino iguales y la bandera SYN establecida. • http://marc.info/?l=bugtraq&m=113416527000313&w=2 http://secunia.com/advisories/17996 http://www.securityfocus.com/bid/15795 http://www.vupen.com/english/advisories/2005/2864 •