NetWin SurgeFTP - (Authenticated) Admin Command Injection (Metasploit)

NetWin SurgeFTP - Authenticated Admin Command Injection Metasploit require 'msf/core' class Metasploit3 'SurgeFTP Remote Command Execution', 'Description' = %q This module exploits a flaw in the SurgeFTP server's web-based administrative console to execute arbitary commands. , 'Author' = 'Spencer...

CVE-2009-1178

Unspecified vulnerability in the server in IBM Tivoli Storage Manager TSM 5.3.x before 5.3.2 and 6.x before 6.1 has unknown impact and attack vectors related to the "admin command line."...

Design/Logic Flaw

Unspecified vulnerability in the server in IBM Tivoli Storage Manager TSM 5.3.x before 5.3.2 and 6.x before 6.1 has unknown impact and attack vectors related to the "admin command line."...

CVE-2009-1178

Technical details about CVE-2009-1178 are not publicly provided in the supplied sources; no concrete impact, vector, or remediation is documented here. Monitor for updates.

CVE-2009-1178

Unspecified vulnerability in the server in IBM Tivoli Storage Manager TSM 5.3.x before 5.3.2 and 6.x before 6.1 has unknown impact and attack vectors related to the "admin command line."...

Command injection

Texas Imperial Software WFTPD and WFTPD Pro Server 3.25 and earlier allow remote attackers to cause a denial of service application crash via a long SITE ADMIN command...

CVE-2007-0311

Texas Imperial Software WFTPD and WFTPD Pro Server 3.25 and earlier allow remote attackers to cause a denial of service application crash via a long SITE ADMIN command...

WFTPD Server SITE ADMIN命令远程拒绝服务漏洞

WFTPD Server是一款FTP服务程序。 WFTPD Server处理SITE ADMIN命令存在问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 提交恶意字符串作为SITE ADMIN命令参数，可导致应用程序崩溃，造成拒绝服务攻击。 Texas Imperial Software WFTPD Pro 3.21 R2 Texas Imperial Software WFTPD Pro 3.21 R3 Texas Imperial Software WFTPD Pro 3.21 R1 Texas Imperial Software WFTPD Pro 3.21 Texas...

PHP-Nuke 6.x7.07.1 - Image Tag Admin Command Execution

PHP-Nuke 6.x7.07.1 - Image Tag Admin Command Execution source: https://www.securityfocus.com/bid/9895/info It has been reported that PHP-Nuke is prone to a remote admin command execution vulnerability. This issue is due to a design error that allows an attacker to specify arbitrary URI values in...

Vulnerable: Conference Room Professional-Developer Edititon.

Vulnerable: Conference Room Professional-Developer Edititon. www.webmaster.com Only tested on Windows NT 4.0 sp6a and Windows 2000 pro. Conference Room 1.8.1x or older versions are subject to a DoS attack when following commands are used. Make to connections to the irc server second being the clo...

Cayman 3220-H DSL Router DOS

Cayman 3220-H DSL Router DOS - Intro Simple DOS attack against Cayman 3220-H DSL Router. This message has been copied to Cayman. Description Large username or password strings sent to the Cayman HTTP admin interface restart the router. Router log will show "restart not in response to admin...