White pages are back!: Aeronet Wireless exposes customer info over SNMP

By |2022-06-15T00:33:52-04:00October 12th, 2018|Categories: Disclosure, e-Discovery|Tags: , , |

Problem CompSec Direct recently became aware of an information disclosure problem affecting Aeronet Wireless customers in Puerto Rico. In short, querying Shodan.io for Aeronet Wireless and SNMP presents publicly accessible information, such as customer names, IP’s, possible account ID’s and geographic locations. Code Proof https://www.shodan.io/search?query=org%3A%22Aeronet+Wireless%22+port%3A%22161%22 162.246.174.134    161    Linux XXX XXX 2.6.32.27 #2 Tue Dec 5 14:09:43 [...]

Comments Off on White pages are back!: Aeronet Wireless exposes customer info over SNMP

Judicial branch of Puerto Rico exposes sensitive court documents

By |2022-06-15T00:43:34-04:00May 31st, 2017|Categories: Hacking, Laws, Reports|Tags: , , , , , |

Problem CompSec Direct recently became aware of an information disclosure problem with the https://unired.ramajudicial.pr/lawyernotificationauthentication/ application used by the judicial branch of the Puerto Rico government. The application uses a weak sequential ID string that is provided to attorneys and clients in order to view sensitive legal documents. Manipulating the ID string with simple math, similar to the overturned [...]

Comments Off on Judicial branch of Puerto Rico exposes sensitive court documents
Go to Top