KeyFocus KF Web Server File Disclosure Vulnerability

KeyFocus Web server is a Win32 HTTP server with web administration, a variety of logging formats, such as NCSA and W3C, CGI, compression, memory caching of static documents, directory indexing, pre-defined MIME settings, internal authentication with support for multiple realms, and a variety of U...

Oracle9iAS.dos.pl

-----BEGIN PGP SIGNED MESSAGE----- hiya ppl, I have made a quick script to demonstrate the Oracle DOS described in @stakes advisory: Oracle9iAS Web Cache Denial of Service please find the perl script pasted below. regards: eip/deadbeat/AnGrYSQl p.s. I did have about 10submissions but due to...

web602dir.pl

/usr/bin/perl web602 cezch version driectory tree exploit.. Written by eip aka deadbeat aka AnGrYSQl use IO::Socket; print "\nWeb602 czech version Directory Tee Exploit\n"; if !$ARGV\n"; $host = $ARGV0; $sox = IO::Socket::INET-new Proto="tcp", PeerPort="80", PeerAddr=$host, ; print "Connected..DO...

sql2kx2.txt

!/usr/local/bin/perl ----------------------------------------------------------- Exploit will create file '\scansql2kbo2.' SQL Server 2000 'Hello Bug' for Win2kSP2 by [email protected] & spoonfork Bug found by Dave Aitel http://online.securityfocus.com/archive/1/286311/2002-08-02/2002-08-08/...

int.exp.txt

First off, great site ! I appreciate all the work you do. I just wanted to send in a quick and dirty perl script to retrieve any file from a server running RedHat's Interchange commerce system. The temp fix for this can be to use ipchains/iptables to block access to the port from outside the...

badexploit.txt

!/usr/bin/perl - ElectronicSouls Private Do Not Distrobute - Remote Exploit For BadBlue 1.5 Web Server www.badblue.com A transversal bug has been discovered in BadBlue HTTP Daemon SoftWare. This is a gay bug, yes I know. But it can be kinda funny for those days you are bored = Vulnerable System:...

CGIScript.net - csMailto Hidden Form Field Remote Command Execution

source: https://www.securityfocus.com/bid/4579/info CGIScript.NET csMailto is a Perl script designed to support multiple mailto: forms. A vulnerability has been reported in some versions of this script. Reportedly, configuration values used by the script are contained in hidden form values. As a...

IBM Informix Web DataBlade: Local root by design

IBM Informix Web DataBlade: Local root by design By Simon Lodal, Denmark Vendor status: Notified months ago, said they would be working on updates, never heard anything. Software: Web DataBlade 4.12, IDS 9.20/9.21, Linux 2.2/2.4, SunOS 5.7 OS, IDS and WDB versions seem to be irrelevant. Impact: A...

CGIscript.net - csSearch.cgi - Remote Code Execution (up to 17,000 sites vulnerable)

CGIscript.net - csSearch.cgi - Remote Code Execution up to 17,000 sites vulnerable --------------------------------------------------------------------- Name : csSearch.cgi - Remote Code Execution Date : March 25, 2002 Product : csSearch Version : 2.3 vulnerable Vuln Type : Access Validation Erro...

"Cthulhu xhAze" - Command execution in Ans.pl

!/exploit/by/b0iler script name: Ans.PL Primary author of script: Avenger script url: http://ans.gq.nu/ "Avenger's News System ANS is a PERL-based solution to creating an easy-to-update and easy-to-maintain web site. Instead of constantly uploading new news pages and wrestling with HTML, you can...

McKesson Pathways Homecare 6.5 - Weak Username and Password Encryption

McKesson Pathways Homecare 6.5 - Weak Username and Password Encryption source: https://www.securityfocus.com/bid/3653/info McKesson Pathways Homecare is a client/server application which is used to track patient information, billing information and medical records for home care patients. The...

suse: sdbsearch.cgi vulnerability

Hello, I found weakness in sdbsearch.cgi script which is a part of Suse distribution. This is perl script and since Suse 7.1 they have introduced some form of protection interpreter is called with tainting checking. However, I think it isn't enough and this bug still may produce danger...

Webspirs remote script explotation

This Perl script can be used to exploit the vulnerability on webspirs.cgi, installed on any machine. The vulnerability allow to view any file on the machine, breaking the webroot. !/usr/bin/perl Remote Script to exploit bug in webspirs.cgi Affected systems: any where webspirs.cgi are installed...

Ananconda Partners Clipper anacondaclip.pl Traversal Arbitrary File Access

The CGI script 'anacondaclip', which comes with anacondaclip.pl, is installed on this machine. This CGI has a well-known security flaw that allows an attacker to read arbitrary files on the remote system with the privileges of the HTTP daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable...

CVE-2001-0113

statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script...

CVE-2001-0113

statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script...

CVE-2001-0113

CVE-2001-0113 : In OmniHTTPd 2.07, statsconfig.pl can be abused by a crafted mostbrowsers parameter to execute arbitrary commands because its value is incorporated into a generated Perl script. This is the core vulnerability described in the CVE. The connected documents confirm the affected produ...

Netscape Enterprise Server 4.0/sparc/SunOS 5.7 - Remote Command Execution

!/usr/bin/perl Remote sploit for Netscape Enterprise Server 4.0/sparc/SunOS 5.7 usage: ns-shtml.pl 'command line' | nc victim port Sometimes server may hang or coredump.. eek ;- [email protected] $cmdline="echo 'ingreslock stream tcp nowait root /bin/sh sh -i' /tmp/bob; /usr/sbin/inetd -s...

thong.pl

Written by hypoclear - http://hypoclear.cjb.net Thong-th-thong-th-thong.pl AKA thong.pl is a PERL script which automates several attacks against various Cisco products. To be specific: 12-13-00 - Cisco Catalyst ssh Protocol Mismatch DoS Vulnerability 11-28-00 - Cisco 675 Web Administration Denial...

IMAP4rev1 10.190 Authentication Stack Overflow Exploit

Exploit for linux platform in category remote exploits ====================================================== IMAP4rev1 10.190 Authentication Stack Overflow Exploit ====================================================== !/usr/bin/perl Successfully tested on IMAP4rev1 v10.190 Written by:...