Remote root vuln in HSphere WebShell

Hi all, Below is an advisory on a remote and local root vulnerability in the HSphere product by Positive Software which is used by many web-hosting providers. The vulnerability is in the WebShell component installed by default. Proof of concept exploits are provided and links to patched versions ...

HSphere WebShell buffer overflow

Buffer overflow in MIME boundary...

H-Sphere WebShell 2.4 - Remote Command Execution

H-Sphere WebShell 2.4 - Remote Command Execution / source: https://www.securityfocus.com/bid/6527/info A vulnerability has been discovered in H-Sphere Webshell. During the pre-authentication phase Webshell fails to perform sufficient bounds checking on user-supplied HTTP parameters. As a result, ...

H-Sphere WebShell 2.4 - Local Privilege Escalation

H-Sphere WebShell 2.4 - Local Privilege Escalation // source: https://www.securityfocus.com/bid/6527/info A vulnerability has been discovered in H-Sphere Webshell. During the pre-authentication phase Webshell fails to perform sufficient bounds checking on user-supplied HTTP parameters. As a resul...

H-Sphere WebShell 2.4 - Remote Command Execution

/ source: https://www.securityfocus.com/bid/6527/info A vulnerability has been discovered in H-Sphere Webshell. During the pre-authentication phase Webshell fails to perform sufficient bounds checking on user-supplied HTTP parameters. As a result, a malicious attacker may be able to trigger a...

H-Sphere WebShell 2.4 - Local Privilege Escalation

// source: https://www.securityfocus.com/bid/6527/info A vulnerability has been discovered in H-Sphere Webshell. During the pre-authentication phase Webshell fails to perform sufficient bounds checking on user-supplied HTTP parameters. As a result, a malicious attacker may be able to trigger a...