1619 matches found
CVE-2006-2043
na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 allows local users to gain Unix shell access via "" backtick characters in the appliance's command line interface CLI...
Command injection
Cisco CiscoWorks Wireless LAN Solution Engine WLSE and WLSE Express before 2.13, Hosting Solution Engine HSE and User Registration Tool URT before 20060419, and all versions of Ethernet Subscriber Solution Engine ESSE and CiscoWorks2000 Service Management Solution SMS allow local users to gain...
CVE-2006-1961
CiscoWorks WLSE/WLSE Express <2.13, HSE and URT
CVE-2006-1961
Cisco CiscoWorks Wireless LAN Solution Engine WLSE and WLSE Express before 2.13, Hosting Solution Engine HSE and User Registration Tool URT before 20060419, and all versions of Ethernet Subscriber Solution Engine ESSE and CiscoWorks2000 Service Management Solution SMS allow local users to gain...
Re: Multiple vulnerabilities in Linux based Cisco products
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 This is Cisco PSIRT's response to the privilege escalation vulnerability independently announced by Adam Pointon of Assurance.com.au and Mathieu Pepin of Axen Consulting. We would like to thank both Adam and Mathieu for bringing this issue to our...
Clipcomm CPW-100E wireless VoIP phone backdoor
Undocumented TCP/60023 shell access allows remote unauthorized phone control, including calls...
rssh -- privilege escalation vulnerability
Pizzashack reports: Max Vozeler has reported a problem whereby rssh can allow users who have shell access to systems where rssh is installed and rsshchroothelper is installed SUID to gain root access to the system, due to the ability to chroot to arbitrary locations. There are a lot of potentiall...
Multiple Hitachi Wi-Fi VoIP phones vulnerabilities
Information leak, SNMP access, built-in hardware password, unauthenticated Web access TCP/8080 and shell access TCP/3390...
F5 Device Default Support Password
This F5 Networks system still has the default password set for the support user account. This account normally provides read/write access to the web configuration utility. An attacker could take advantage of this to reconfigure your systems and possibly gain shell access to the system with...
Apache mod_rootme Backdoor
The remote system appears to be running the modrootme module, this module silently allows a user to gain a root shell access to the machine via HTTP requests. OpenVAS Vulnerability Test $Id: modrootmebackdoor.nasl 7175 2017-09-18 11:55:15Z cfischer $ Description: Apache modrootme Backdoor Authors...
IMAP arbitrary file retrieval
The target is running an IMAP daemon that allows an authenticated user to retrieve and manipulate files that would be available to that user via a shell. If IMAP users are denied shell access, you may consider this a vulnerability. OpenVAS Vulnerability Test $Id: imaparbitraryfileretrieval.nasl...
IMAP arbitrary file retrieval
The target is running an IMAP daemon that allows an authenticated user to retrieve and manipulate files that would be available to that user via a shell. If IMAP users are denied shell access, you may consider this a vulnerability. SPDX-FileCopyrightText: 2004 George A. Theall Some text...
Apache HTTP Server 'mod_rootme' Backdoor
The remote system appears to be running the modrootme module, this module silently allows a user to gain a root shell access to the machine via HTTP requests. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
BasiliX Attachment Disclosure Vulnerability
The remote web server contains a series of PHP scripts that are prone to information disclosure. Description : The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions save attachments by default under SPDX-FileCopyrightText: 2004 George A. Theall Some text descriptio...
nbSMTP 0.99 - util.c Client-Side Command Execution
nbSMTP 0.99 - util.c Client-Side Command Execution / nbSMTPfsexp.c nbSMTP v0.99 remote format string exploit by CoKi root@nosystem:/home/coki/audi ./nbSMTPfsexp nbSMTP v0.99 remote format string exploit by CoKi Use: ./nbSMTPfsexp options options: -t type of target system -r return address -s...
GNU Mailutils imap4d <= 0.6 Remote Format String Exploit
Exploit for linux platform in category remote exploits ======================================================== GNU Mailutils imap4d Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities email protected:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils...
GNU Mailutils imap4d 0.6 - Remote Format String
GNU Mailutils imap4d 0.6 - Remote Format String / mu-imap4dfsexp.c GNU Mailutils imap4d v0.6 remote format string exploit by CoKi Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities coki@nosystem:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils imap4d...
GNU Mailutils imap4d 0.6 - Remote Format String
/ mu-imap4dfsexp.c GNU Mailutils imap4d v0.6 remote format string exploit by CoKi Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities coki@nosystem:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils imap4d v0.6 remote format string exploit by CoKi use:...
FreeBSD : bnc -- remotely exploitable buffer overflow in getnickuserhost (9be819c6-4633-11d9-a9e7-0001020eed82)
A LSS Security Advisory reports : There is a buffer overflow vulnerability in getnickuserhost function that is called when BNC is processing response from IRC server. Vulnerability can be exploited if attacker tricks user to connect to his fake IRC server that will exploit this vulnerability. If...
[Full-disclosure] iDEFENSE Security Advisory 06.22.05: Multiple Vendor Cacti config_settings.php Remote Code Execution Vulnerability
Multiple Vendor Cacti configsettings.php Remote Code Execution Vulnerability iDEFENSE Security Advisory 06.22.05 www.idefense.com/application/poi/display?id=266&type=vulnerabilities June 22, 2005 I. BACKGROUND Cacti is a round-robin database RRD tool that helps create graphs from database...