Vulnerabilities > Motorola
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-12-23 | CVE-2015-7935 | Information Exposure vulnerability in Motorola Moscad IP Gateway Firmware Motorola Solutions MOSCAD IP Gateway allows remote attackers to read arbitrary files via unspecified vectors. | 5.0 |
| 2015-02-16 | CVE-2015-1496 | Permissions, Privileges, and Access Controls vulnerability in Motorola Scanner SDK Motorola Scanner SDK uses weak permissions for (1) CoreScanner.exe, (2) rsmdriverproviderservice.exe, and (3) ScannerService.exe, which allows local users to gain privileges via unspecified vectors. | 7.2 |
| 2015-02-16 | CVE-2015-1495 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Motorola Scanner SDK Multiple stack-based buffer overflows in Motorola Scanner SDK allow remote attackers to execute arbitrary code via a crafted string to the Open method in (1) IOPOSScanner.ocx or (2) IOPOSScale.ocx. | 6.8 |
| 2013-09-25 | CVE-2013-5933 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Stack-based buffer overflow in the sub_E110 function in init in a certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless allows local users to gain privileges or cause a denial of service (memory corruption) by writing a long string to the /dev/socket/init_runit socket that is inconsistent with a certain length value that was previously written to this socket. | 6.9 |
| 2013-09-25 | CVE-2013-4777 | Permissions, Privileges, and Access Controls vulnerability in multiple products A certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless uses init to create a /dev/socket/init_runit socket that listens for shell commands, which allows local users to gain privileges by interacting with a LocalSocket object. | 6.9 |
| 2013-04-13 | CVE-2013-3051 | Configuration vulnerability in multiple products The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local users to unlock the bootloader by using kernel mode to perform crafted 0x9 and 0x2 SMC operations, a different vulnerability than CVE-2013-2596. | 6.2 |
| 2010-06-16 | CVE-2010-2307 | Path Traversal vulnerability in Motorola Surfboard Sbv6120E Sbv6X2X1.0.0.5Scm02Shpc Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via (1) "//" (multiple leading slash), (2) ../ (dot dot) sequences, and encoded dot dot sequences in a URL request. | 5.0 |
| 2009-06-26 | CVE-2009-1394 | Buffer Errors vulnerability in Motorola Timbuktu PRO 8.6.5 Stack-based buffer overflow in Motorola Timbuktu Pro 8.6.5 on Windows allows remote attackers to execute arbitrary code by sending a long malformed string over the PlughNTCommand named pipe. | 9.3 |
| 2009-02-03 | CVE-2009-0393 | Cross-Site Scripting vulnerability in Motorola Cpei300 Cross-site scripting (XSS) vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to inject arbitrary web script or HTML via the page parameter. | 3.5 |
| 2009-02-03 | CVE-2009-0392 | Path Traversal vulnerability in Motorola Cpei300 Directory traversal vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to read arbitrary files via a .. | 6.8 |