papers

What this paper is This paper details a vulnerability in Pacer Edition CMS version 2.1 (specifically SVN revision 867). The vulnerability allows an attacker to delete arbitrary files on the web server by exploiting a fla

What this paper is This paper details a vulnerability in Polycom IP Phones that allows an unauthenticated attacker to retrieve the SIP (Session Initiation Protocol) registration password for a phone line. The vulnerabili

What this paper is This paper details a vulnerability in the Aastra IP Phone 9480i's web interface. Specifically, it describes how an unauthenticated attacker can access sensitive SIP (Session Initiation Protocol) config

What this paper is This paper, published in 2011 by Sideswipe, describes a SQL injection vulnerability found in a web application called "EquiPCS". The vulnerability allows an attacker to manipulate database queries by i

What this paper is This paper details a Metasploit module that exploits a buffer overflow vulnerability in 7-Technologies IGSS 9's process. The vulnerability can be triggered by sending a specially crafted, overly long s

What this paper is This paper details a remote buffer overflow vulnerability in the ActFax Server software. Specifically, it targets the FTP service of the ActFax server, allowing an attacker to execute arbitrary code on