RHEL 6 : logrotate (RHSA-2011:0407)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2011:0407 advisory. The logrotate utility simplifies the administration of multiple log files, allowing the automatic rotation, compression, removal, and mailin...

logrotate: Shell command injection by using the shred configuration directive

The shredfile function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name...

Moderate: Red Hat Security Advisory: logrotate security update

An updated logrotate package that fixes multiple security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings...

Debian DSA-2182-1 : logwatch - shell command injection

Dominik George discovered that Logwatch does not guard against shell meta-characters in crafted log file names such as those produced by Samba. As a result, an attacker might be able to execute shell commands on the system running Logwatch. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

[SECURITY] [DSA 2182-1] logwatch security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2182-1 [email protected] http://www.debian.org/security/ March 04, 2011 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package :...

FreeBSD : rubygem-mail -- Remote Arbitrary Shell Command Injection Vulnerability (1cae628c-3569-11e0-8e81-0022190034c0)

Secunia reports : Input passed via an email from address is not properly sanitised in the 'deliver' function lib/mail/network/deliverymethods/sendmail.rb before being used as a command line argument. This can be exploited to inject arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network...

ftp-proftpd-backdoor NSE Script

Tests for the presence of the ProFTPD 1.3.3c backdoor reported as BID 45150. This script attempts to exploit the backdoor using the innocuous id command by default, but that can be changed with the ftp-proftpd-backdoor.cmd script argument. Script Arguments ftp-proftpd-backdoor.cmd Command to...

CVE-2010-3037

goform/websXMLAdminRequestCgi.cgi in Cisco Unified Videoconferencing UVC System 5110 and 5115, and possibly Unified Videoconferencing System 3545 and 5230, Unified Videoconferencing 3527 Primary Rate Interface PRI Gateway, Unified Videoconferencing 3522 Basic Rate Interfaces BRI Gateway, and...

CVE-2010-3037

CVE-2010-3037 affects Cisco Unified Videoconferencing (UVC) products (5110/5115 Linux; 3545, 5230 VxWorks; 3527 PRI Gateway; 3522 BRI Gateway; 3515 MCU). The flaw is a remote command-injection in the web interface via the /goform/websXMLAdminRequestCgi.cgi, allowing an authenticated administrator...

FreeNAS Remote Shell Command Execution Vulnerability

FreeNAS is prone to a shell-command-execution vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit the remote shell-command-execution issue to execute arbitrary shell commands in the context of the webserver process. FreeNAS versions prior ...

FreeNAS Remote Shell Command Execution Vulnerability

FreeNAS is prone to a shell-command-execution vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit the remote shell-command-execution issue to execute arbitrary shell commands in the context of the webserver process. FreeNAS versions prior ...

JAF CMS <= 4.0 RC2 Multiple Vulnerabilities

JAF CMS is prone to a shell command execution vulnerability and multiple remote file include vulnerabilities because the application fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and a...

Reverse Shell Applet

Added: 10/10/2010 Background This tool runs an exploit server which delivers a signed java applet, embedded in an HTML page, to the target hosts. The user is presented with a signed digital certificate which, when accepted, establishes a reverse shell connection back to the exploit server. Proble...

CMSQLite 1.2 / CMySQLite 1.3.1 - Remote Code Execution

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Natural Killer "; if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n";...

PH Pexplorer <= 0.4.7.1 (lang.php) Remote Code Execution Exploit

Exploit for php platform in category web applications ================================================================ PH Pexplorer Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail : submitatinj3ct0r.com 1 0 0 1 1 0 I'm...

ValidForm Builder script - Remote Command Execution

Exploit Title: ValidForm Builder script Remote Command Execution Vulnerability Date: 2010/07/23 Author: HackeR aRaR Email: [email protected] My Sites : www.vbspiders.com Script home: http://www.phpgalleryscript.org download Script: http://validformbuilder.googlecode.com/files/validformbuilderv.1.0.z...

Joomla Camp26 VisitorData Module Shell Command Injection Vulnerability

No description provided by source. A vulnerability has been discovered in the Camp26 VisitorData module for Joomla, which can be exploited by malicious people to compromise a vulnerable system. Input passed via the "X-Forwarded-For" HTTP header is not properly sanitised before being used as a...

Nagios statuswml.cgi Command Injection

Added: 04/13/2010 CVE: CVE-2009-2288 BID: 35464 OSVDB: 55281 Background Nagios is a network host and service monitoring and management system. Problem The Nagios statuswml.cgi script passes unsanitized data to the ping and traceroute commands, resulting in shell command execution via...

Nagios statuswml.cgi Command Injection

Added: 04/13/2010 CVE: CVE-2009-2288 BID: 35464 OSVDB: 55281 Background Nagios is a network host and service monitoring and management system. Problem The Nagios statuswml.cgi script passes unsanitized data to the ping and traceroute commands, resulting in shell command execution via...

Nagios statuswml.cgi Command Injection

Added: 04/13/2010 CVE: CVE-2009-2288 BID: 35464 OSVDB: 55281 Background Nagios is a network host and service monitoring and management system. Problem The Nagios statuswml.cgi script passes unsanitized data to the ping and traceroute commands, resulting in shell command execution via...