Lucene search
K

61 matches found

Metasploit
Metasploit
added 2013/03/27 8:26 a.m.47 views

D-Link DIR-615H HTTP Login Utility

This module attempts to authenticate to different D-Link HTTP management services. It has been tested successfully on D-Link DIR-615 Hardware revision H devices. It is possible that this module also works with other models. This module requires Metasploit: https://metasploit.com/download Current...

7.5CVSS7AI score0.53618EPSS
Exploits41
Exploit DB
Exploit DB
added 2010/10/18 12:0 a.m.45 views

RedHat Piranha Virtual Server Package - 'passwd.php3' Arbitrary Command Execution (Metasploit)

$Id: piranhapasswdexec.rb 10729 2010-10-18 15:41:13Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2010/10/05 12:0 a.m.71 views

Alcatel-Lucent OmniPCX Enterprise - masterCGI Arbitrary Command Execution (Metasploit)

$Id: alcatelomnipcxmastercgiexec.rb 10556 2010-10-05 23:13:04Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

10CVSS7AI score0.97759EPSS
Exploits8
Packet Storm
Packet Storm
added 2010/02/15 12:0 a.m.53 views

RedHat Piranha Virtual Server Package passwd.php3 Arbitrary Command Execution

$Id: piranhapasswdexec.rb 8497 2010-02-14 20:27:24Z patrickw $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

10CVSS1AI score0.73662EPSS
Exploits3
Packet Storm
Packet Storm
added 2009/10/27 12:0 a.m.45 views

Alcatel-Lucent OmniPCX Enterprise masterCGI Arbitrary Command Execution

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Alcatel-Luce...

10CVSS1.1AI score0.97759EPSS
Exploits8
Packet Storm
Packet Storm
added 2009/10/27 12:0 a.m.104 views

DD-WRT HTTP Daemon Arbitrary Command Execution

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'DD-WRT HTTP...

8.3CVSS0.6AI score0.82504EPSS
Exploits7
Metasploit
Metasploit
added 2009/09/01 3:43 a.m.81 views

Alcatel-Lucent OmniPCX Enterprise masterCGI Arbitrary Command Execution

This module abuses a metacharacter injection vulnerability in the HTTP management interface of the Alcatel-Lucent OmniPCX Enterprise Communication Server 7.1 and earlier. The Unified Maintenance Tool contains a 'masterCGI' binary which allows an unauthenticated attacker to execute arbitrary...

9.8CVSS0.9AI score0.97759EPSS
Exploits8
exploitpack
exploitpack
added 2009/07/20 12:0 a.m.22 views

DD-WRT HTTP v24-SP1 - Command Injection

DD-WRT HTTP v24-SP1 - Command Injection $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

7.8AI score0.82504EPSS
Exploits7
Metasploit
Metasploit
added 2009/07/01 3:57 a.m.18 views

3Com SuperStack Switch Denial of Service

This module causes a temporary denial of service condition against 3Com SuperStack switches. By sending excessive data to the HTTP Management interface, the switch stops responding temporarily. The device does not reset. Tested successfully against a 3300SM firmware v2.66. Reported to affect...

7.1CVSS6.9AI score0.39064EPSS
Exploits2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.18 views

Fedora Update for fedora-ds-admin FEDORA-2008-3220

Check for the Version of fedora-ds-admin OpenVAS Vulnerability Test Fedora Update for fedora-ds-admin FEDORA-2008-3220 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

9CVSS6.4AI score0.1402EPSS
Exploits1References2
exploitpack
exploitpack
added 2007/09/17 12:0 a.m.24 views

Alcatel-Lucent OmniPCX Enterprise Communication Server 7.1 - masterCGI Command Injection (Metasploit)

Alcatel-Lucent OmniPCX Enterprise Communication Server 7.1 - masterCGI Command Injection Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing a...

0.3AI score0.97759EPSS
Exploits8
seebug.org
seebug.org
added 2007/09/17 12:0 a.m.33 views

Alcatel-Lucent OmniPCX Enterprise Communication Server <= 7.1 masterCGI Command Injection

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

7.1AI score0.97759EPSS
Exploits8
CERT
CERT
added 2006/06/29 12:0 a.m.20 views

Cisco Access Point Web Browser Interface contains a vulnerability

Overview A vulnerability in the HTTP management interface for some configurations of Cisco wireless access points could allow a remote attacker to take complete control over the affected device. Description Cisco wireless access points allow administrators to create more than one set of...

9.3CVSS6.8AI score0.03739EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/05/04 10:0 a.m.19 views

CVE-2006-2166

Unspecified vulnerability in the HTTP management interface in Cisco Unity Express CUE 2.22 and earlier, when running on any CUE Advanced Integration Module AIM or Network Module NM, allows remote authenticated attackers to reset the password for any user with an expired password...

6.5AI score0.01616EPSS
Exploits0References7
securityvulns
securityvulns
added 2006/05/02 12:0 a.m.25 views

[Full-disclosure] Cisco Security Advisory: Cisco Unity Express Expired Password Reset Privilege Escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Unity Express Expired Password Reset Privilege Escalation Advisory ID: cisco-sa-20060501-cue http://www.cisco.com/warp/public/707/cisco-sa-20060501-cue.shtml Revision 1.0 For Public Release 2006 May 01 2300 UTC GMT...

7.1AI score
Exploits0
NVD
NVD
added 2005/10/20 10:2 a.m.12 views

CVE-2005-3182

Buffer overflow in the HTTP management interface for GFI MailSecurity 8.1 allows remote attackers to execute arbitrary code via long headers such as 1 Host and 2 Accept in HTTP requests. NOTE: the vendor suggests that this issues is "in an underlying Microsoft technology" which, if true, could me...

7.5CVSS7.9AI score0.03995EPSS
Exploits0References8
CVE
CVE
added 2005/10/20 4:0 a.m.47 views

CVE-2005-3182

CVE-2005-3182 : A buffer overflow in the HTTP management interface of GFI MailSecurity 8.1 allows remote attackers to execute arbitrary code by sending overly long HTTP headers (notably Host and Accept ). The issue is described as occurring in the web/HTTP management component, with the vendor no...

7.5CVSS7.9AI score0.03995EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2005/10/20 4:0 a.m.20 views

CVE-2005-3182

Buffer overflow in the HTTP management interface for GFI MailSecurity 8.1 allows remote attackers to execute arbitrary code via long headers such as 1 Host and 2 Accept in HTTP requests. NOTE: the vendor suggests that this issues is "in an underlying Microsoft technology" which, if true, could me...

7.9AI score0.03995EPSS
Exploits0References8
securityvulns
securityvulns
added 2004/09/14 12:0 a.m.29 views

@stake advisory: Pingtel Xpressa Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Pingtel Xpressa Denial of Service Release Date: 09-13-2004 Device: Xpressa phone Model PX-1 Firmware: Core Apps: 2.1.11.24 Kernel: 2.1.11.24 Severity: An attacker can cause the phone to fai...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2003/01/08 12:0 a.m.31 views

[INetCop Security Advisory] Remote format string vulnerability in Tanne.

======================================== INetCop Security Advisory 2003-0x82-012 ======================================== Title: Remote format string vulnerability in Tanne. 0x01. Description About: tanne is a small, secure session-management solution for HTTP. It replaces common sessions with a...

7.2AI score
Exploits0
Rows per page
Query Builder