CVE-2020-4887

IBM AIX 7.1, 7.2 and AIX VIOS 3.1 could allow a local user to exploit a vulnerability in the gencore user command to create arbitrary files in any directory. IBM X-Force ID: 190911...

[SECURITY] Fedora 33 Update: sudo-1.9.5p1-1.fc33

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

CVE-2020-5759

Grandstream UCM6200 series firmware version 1.0.20.23 and below is vulnerable to OS command injection via SSH. An authenticated remote attacker can execute commands as the root user by issuing a specially crafted "unset" command...

Win10 MailCarrier 2.51 - POP3 User Remote Buffer Overflow

Win10 MailCarrier 2.51 - POP3 User Remote Buffer Overflow Exploit Title: Win10 MailCarrier 2.51 - 'POP3 User' Remote Buffer Overflow Date: 2019-10-01 Author: Lance Biggerstaff Original Exploit Author: Dino Covotsos - Telspace Systems Vendor Homepage: https://www.tabslab.com/ Version: 2.51 Tested...

SUSE-SU-2019:0838-2 Security update for bash

This update for bash fixes the following issues: Security issue fixed: - CVE-2019-9924: Fixed a vulnerability in which shell did not prevent user BASHCMDS allowing the user to execute any command with the permissions of the shell bsc1130324...

MailCarrier 2.51 - POP3 USER Buffer Overflow

MailCarrier 2.51 - POP3 USER Buffer Overflow !/usr/bin/python Exploit Title: MailCarrier 2.51 - Remote Buffer Overflow in "USER" commandPOP3 Date: 14/04/2019 Exploit Author: Dino Covotsos - Telspace Systems Vendor Homepage: https://www.tabslab.com/ Version: 2.51 Software Link: N.A Contact:...

MailCarrier 2.51 - POP3 (USER) Buffer Overflow Exploit

!/usr/bin/python Exploit Title: MailCarrier 2.51 - Remote Buffer Overflow in "USER" commandPOP3 Exploit Author: Dino Covotsos - Telspace Systems Vendor Homepage: https://www.tabslab.com/ Version: 2.51 Software Link: N.A Contact: [email protected] Twitter: @telspacesystems Greets to the...

Ubiquiti Inc.: EdgeSwitch Command Injection

In EdgeSwitch X v1.1.0 and prior, a privileged user can execute arbitrary shell commands over the SSH CLI interface. This allows to execute shell commands under the root user...

Konica Minolta FTP Utility Denial of Service Vulnerability

KONICA MINOLTA FTP Utility is a software used by KONICA MINOLTA copiers. Konica Minolta FTP Utility 1.0 is implemented with a buffer overflow vulnerability. A remote attacker could cause a denial of service application crash by exploiting this vulnerability via a longer USER command...

CVE-2015-7767

Buffer overflow in Konica Minolta FTP Utility 1.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a long USER command...

Buffer overflow

Buffer overflow in Konica Minolta FTP Utility 1.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a long USER command...

CVE-2015-7767

Buffer overflow in Konica Minolta FTP Utility 1.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a long USER command...

Ricoh DL FTP Server Buffer Overflow Vulnerability

Ricoh DL FTP Server is an FTP server from Ricoh Japan. A buffer overflow vulnerability exists in Ricoh DL FTP Server 1.1.0.6 and earlier versions. The vulnerability can be exploited by a remote attacker to execute arbitrary code via a long USER command...

Buffer overflow

Buffer overflow in Ricoh DL FTP Server 1.1.0.6 and earlier allows remote attackers to execute arbitrary code via a long USER command...

Konica Minolta FTP Utility 1.0 - Remote DoS PoC

Exploit for windows platform in category dos / poc !/usr/bin/python Exploit Title: Konica Minolta FTP Utility 1.0 Remote DoS PoC Date: 21-08-2015 Exploit Author: Shankar Damodaran Vendor Homepage: http://www.konicaminolta.com/ Software Link:...

Ability FTP Server 2.1.4 - 'afsmain.exe' 'USER' Remote Denial of Service

!/usr/bin/env python Exploit Title: Ability FTP Server afsmain.exe USER Command Remote Dos Date: 2015-08-15 Exploit Author: St0rn Twitter: st0rnpentest Vendor Homepage: www.codecrafters.com Software Link: http://www.codecrafters.com/AbilityFTPServer Version: 2.1.4 Tested on: Windows 7 import sock...

Ability FTP Server 2.1.4 - afsmain.exe USER Remote Denial of Service

Ability FTP Server 2.1.4 - afsmain.exe USER Remote Denial of Service !/usr/bin/env python Exploit Title: Ability FTP Server afsmain.exe USER Command Remote Dos Date: 2015-08-15 Exploit Author: St0rn Twitter: st0rnpentest Vendor Homepage: www.codecrafters.com Software Link:...

Golden FTP 5.00 Denial Of Service

!/usr/bin/python Both Golden Pro And Free FTP server is prone to a remote DOS vulnerability.POC Attackers can exploit this issue to execute arbitrary code or cause denial-of-service conditions. ------------------------------------------------------------------------- Exploit Title : Golden FTP...

ALCASAR-Remote

By sending a specially crafted value in the "host" HTTP header, it is possible to inject the exec function in order to execute commands as Apache user. !/usr/bin/env python -- coding: utf-8 -- ALCASAR = 2.8 Remote Root Code Execution Vulnerability Author: eF Date : 2014-02-10 db 88 ,ad8888ba, db...

Destoon最新 V5.0-UTF8 正式版命令执行漏洞（后台）

简要描述： RT 详细说明： 后台一处命令执行漏洞，可添加系统账户。 漏洞位于admin/tag.inc.php case 'preview': $db-halt = 0; $destoontask = ''; if$tagcss $tagcss = stripslashes$tagcss; if$taghtmls $taghtmls = stripslashes$taghtmls; if$taghtmle $taghtmle = stripslashes$taghtmle; if$tagcode $tagcode = stripslashes$tagcode; if$tagjs...