213 matches found
FTP Fetch, Linux Command Shell, Bind TCP Stager (Linux x86)
Fetch and execute a x86 payload from an FTP server. Spawn a command shell staged. Listen for a connection Linux x86 Module Options msf use payload/cmd/linux/ftp/x86/shell/bindtcp msf payloadbindtcp show actions ...actions... msf payloadbindtcp set ACTION msf payloadbindtcp show options ...show an...
FTP Fetch, Linux Command Shell, Bind TCP Random Port Inline
Fetch and execute a x86 payload from an FTP server. Listen for a connection in a random port and spawn a command shell. Use nmap to discover the open port: 'nmap -sS target -p-'. Module Options msf use payload/cmd/linux/ftp/x86/shellbindtcprandomport msf payloadshellbindtcprandomport show actions...
Attackers replaced JDownloader installer downloads with malware
If you downloaded the JDownloader installer during the compromise window May 6-7, you are advised to verify the file. JDownloader is a popular download management application, particularly favored for automated downloads from file-hosting services, video sites, and premium link generators. The...
CVE-2021-47796
Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...
CVE-2021-47796
Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...
CVE-2021-47796
Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...
PT-2026-3168
Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...
EUVD-2018-1017
Malware in sbrugna...
EUVD-2018-1005
Malware in sbrugna...
EUVD-2018-1008
Malware in sbrugna...
EUVD-2019-10313
Malware in sbrugna...
EUVD-2018-1016
Malware in sbrugna...
EUVD-2019-10213
Malware in sbrugna...
EUVD-2018-10275
Malware in sbrugna...
EUVD-2018-1006
Malware in sbrugna...
EUVD-2018-0992
Malware in sbrugna...
EUVD-2016-6726
Malware in sbrugna...
EUVD-2025-20791
Malicious code in bioql PyPI...
EUVD-2025-12140
Malicious code in bioql PyPI...
CVE-2025-27027
A user with vpuser credentials that opens an SSH connection to the device, gets a restricted shell rbash that allows only a small list of allowed commands. This vulnerability enables the user to get a full-featured Linux shell, bypassing the rbash restrictions...