Fastgraf's whois.cgi - Remote Command Execution

!/usr/bin/perl whois.pl - Marco van Berkum - [email protected] homepage: http://ws.obit.nl - exploits Fastgraf's whois.cgi DO NOT EDIT THIS HEADER, else the bedbugs will bite Greets to sigmo for finding stupid POST examples Also greetings to DUCKEL YES YOU HAVE CREDIT NOW ; Use like this:...

Input validation error in quikstore.cgi allows attackers to execute commands

Overview The quikstore shopping cart script contains an input validation error that allows attackers to execute commands on affected web servers. Description The quikstore.cgi script is written in Perl and provides its users with shopping cart software for e-commerce transactions. In November 200...

rpc-everythingform.txt

Hi All, This is Yet Another Bad Perl Script. everythingform.cgi uses a hidden field 'config' to determine where to read configuration data from. --code snippit-- .. $ConfigFile = $inconfig; .. openCONFIG, "$configdir$ConfigFile" || &Error"I can't open $ConfigFile in the ReadConfig subroutine...

Insecure input validation in everythingform.cgi (remote command execution)

Hi All, This is Yet Another Bad Perl Script. everythingform.cgi uses a hidden field 'config' to determine where to read configuration data from. --code snippit-- .. $ConfigFile = $inconfig; .. openCONFIG, "$configdir$ConfigFile" || &Error"I can't open $ConfigFile in the ReadConfig subroutine...

Leif M. Wright everythingform.cgi 2.0 - Arbitrary Command Execution

Leif M. Wright everythingform.cgi 2.0 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2101/info An input validation vulnerability exists in Leif M. Wright's everything.cgi, a Perl-based form design tool. The script fails to properly filter shell commands from user-supplied...

Endymion MailMan 3.0.x - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/2063/info A vulnerability exists in 3.x versions of Endymion MailMan Webmail prior to release 3.0.26. The widely-used Perl script provides a web-email interface. Affected versions make insecure use of the perl open function. Attackers can control the way...

Endymion MailMan 3.0.x - Arbitrary Command Execution

Endymion MailMan 3.0.x - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2063/info A vulnerability exists in 3.x versions of Endymion MailMan Webmail prior to release 3.0.26. The widely-used Perl script provides a web-email interface. Affected versions make insecure use of t...

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal (8)

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal 8 !/usr/bin/perl See http://www.securityfocus.com/vdb/bottom.html?section=exploit&vid=1806 Very simple PERL script to execute commands on IIS Unicode vulnerable servers Use port number with SSLproxy for testing SSL sites Usage:...

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal (7)

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal 7 !/usr/bin/perl IIS 4.0/5.0 Unicode Exploit Checks for each script that has been posted on the BugTraq Lis Shouts to bighawkthats for help, datagram, Ghost Rider, The Duke, p4, kript0n and others Since It Uses fork, you gotta ke...

Poll It CGI v2.0 exploit

Exploit for cgi platform in category web applications ======================== Poll It CGI v2.0 exploit ======================== !/usr/bin/perl Poll It CGI v2.0 exploit shouts to modjo, p, zen, kd, ab, all the script kiddies. use Socket; $host, $cgiloc = @ARGV0,1; $ip=inetaton$host; print"\n\t+--...

YaBB 9.11.2000 - search.pl Arbitrary Command Execution

YaBB 9.11.2000 - search.pl Arbitrary Command Execution source: https://www.securityfocus.com/bid/1921/info YaBB Yet Another Bulletin Board is a popular perl-based bulletin board scripting package. search. pl, one of several perl scripts which comprise YaBB, fails to properly validate user input...

iis-unicode.txt

Recently I received an email from Par Osterberg that directed my attention to a post in the Packetstorm forums: http://209.143.242.119/cgi-bin/cbmc/forums.cgi?authkey=anonymous&uname=anonymous&datopic=Windows&mesgcheck=defined&gum=474&editoron= An anonymous person posts that they can run arbitrar...

Mail File POST Vulnerability

MailFile v 1.10 by Oatmeal-Studios http://www.oatmeal-studios.com This Perl script enables a site's visitor to have a given file dispatched to a specified email address. The visitor is required to select the file from a given list and to enter his or her email address. The data will then be...

Дырка в YaBB

Проблема "ядовитого нуля" poisoned null byte в перл-скрипте позволяет выполнение кода на сервере...

srcgrab.pl.txt

Subject: Re: Translate:f summary, history and thoughts Simple perl script exploit for the problem. Please find a simple perl script included at the bottom that exploits below described problem. ----- Original Message ----- From: "Daniel Doèekal" To: Sent: Tuesday, August 15, 2000 7:39 PM Subject:...

DoS in FirstClass Internet Services 5.770

We got a bizarre malformed mail from some dot com that hasn't learned about BCC yet with a 1.4 meg To: Header. The mail was handled fine by Software.com's Post.Office, but when Post.Office tried to pass the mail to our FirstClass server, the First Class Internet Services process would hang. I wro...

CGI: Selena Sol's WebBanner ( Random Banner Generator ) Vulnerability

Application Name: WebBanner Random Banner Generator Application Authors: Eric Tachibana Selena Sol and Gunther Birznieks Version: 4.0 Last Modified: 17NOV98 Site: http://www.extropia.com Origin: Script design fault Consequence: User can view files as user the server are running Solution: See at t...

majordomo.txt

Hi, Majordomo is a perl script for managing mailing lists. The package comes with several scripts and a program written in C wrapper that runs setuid to ensure that majordomo performs all the work with proper permissions for further information you can check the FAQ that comes with the package...

kill_sntsd.pl

I noticed an uncommon scanf overflow in the Simple Network Time Sync daemon and client version 1.0, tested on Redhat 6.1. I haven't looked into this fully yet, but it looks as tho it could be root comprimising as it sits on a priveledged udp port and seems to coredump, but looks like it only give...

Уязвимость в infosrch.cgi

Некорректно разбираемая переменная fname позволяет выполнить приложение через perl-скрипт используя стандартный прием с | в имени файла. Кроме того, можно получить содержимое любого файла...