Recently I discovered vulnerabilities in Castle Rock Computing’s SNMPc Enterprise, specifically SNMPc OnLine 12.10.10 before 2020-01-28. Instead of writing my usual blog post containing the coordinated disclosure information, I thought I would do something a little bit different this time and create a simple tutorial for new players regarding the importance of bug chaining. We’ll […]
#——————————————————————– # Multiple Vulnerabilities # NETSAS Pty Ltd’s Enigma NMS # Working exploits: Yes # Vendor Homepage: https://www.netsas.com.au/ # Software Link: https://www.netsas.com.au/enigma-nms-introduction/ # Version: Enigma NMS 65.0.0 # Public Disclosure Date: 22 August 2019 (30 days) # CVE-IDs: CVE-2019-16061 > CVE-2019-16072 # Author: Mark Cross (@xerubus | mogozobo.com) #——————————————————————– On the 20th July 2019 I […]