Posts Tagged ‘access’

Android Private Internet Access Denial Of Service

The Android application provided by Private Internet Access (PIA) VPN service can be crashed by downloading a large file containing a list of current VPN servers. This can be exploited by an MITM attacker via intercepting and replacing this file. While the file is digitally signed, it is not served over SSL and the application […]

REDDOXX Appliance Unauthenticated Access

RedTeam Pentesting discovered a vulnerability which allows attackers unauthenticated access to the diagnostic functions of the administrative interface of the REDDOXX appliance. The functions allow, for example, to capture network traffic on the appliance’s interfaces. Affected versions include build 2032 and 2.0.625. Source: REDDOXX Appliance Unauthenticated Access