2 matches found
Acccheck Command Injection Vulnerability
acccheck is a suite of password brute force tools used in penetration testing to perform Windows authentication over the SMB protocol. A command injection vulnerability exists in the acccheck.pl file in version 0.2.1, which stems from the program's lack of filtering of user input. The vulnerabili...
CVE-2018-12268
acccheck.pl in acccheck 0.2.1 allows Command Injection via shell metacharacters in a username or password file, as demonstrated by injection into an smbclient command line...