58 matches found
webcal-sql.txt
!/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND ASCIISUBSTRINGSELECT CONCATlogin,char58,password,char...
Web Calendar <= 4.1 Blind SQL Injection Exploit
Exploit for unknown platform in category web applications =============================================== Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND...
Web Calendar 4.1 - Blind SQL Injection
Web Calendar 4.1 - Blind SQL Injection !/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND...
Web Calendar 4.1 - Blind SQL Injection
!/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND ASCIISUBSTRINGSELECT CONCATlogin,char58,password,char...
CVE-2006-2856
ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious sitecustomize.pl file in that directory. NOTE: The provenance of this information is unknown; the...
Design/Logic Flaw
ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious sitecustomize.pl file in that directory. NOTE: The provenance of this information is unknown; the...
CVE-2006-2856
ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious sitecustomize.pl file in that directory. NOTE: The provenance of this information is unknown; the...
CVE-2006-2856
ActivePerl 5.8.8.817 for Windows is affected. The vulnerability arises from configuring the site/lib directory with write access to the Users group, allowing local users to create a malicious sitecustomize.pl and escalate privileges. The available sources describe the root cause and impact as loc...
ActivePerl perlIS.dll Buffer Overflow
An attacker can run arbitrary code on the remote computer. This is because the remote IIS server is running a version of ActivePerl prior to 5.6.1.630 and has the Check that file exists option disabled for the perlIS.dll. OpenVAS Vulnerability Test $Id: perlISdllbufferoverflow.nasl 8023 2017-12-0...
ActivePerl perlIS.dll Buffer Overflow Vulnerability - Active Check
An attacker can run arbitrary code on the remote computer. This is because the remote IIS server is running a version of ActivePerl prior to 5.6.1.630 and has the Check that file exists option disabled for the perlIS.dll. SPDX-FileCopyrightText: 2001 HD Moore & Drew Hintz Some text descriptions...
CVE-2004-2286
CVE-2004-2286 maps to an integer overflow in ActivePerl’s duplication operator, enabling remote DoS and potentially arbitrary code execution via a large multiplier. Affected: ActivePerl 5.x up to 5.8.3 and earlier. Root cause: overflow during duplication. Impact: Denial of service and possible co...
CVE-2004-2286
Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow...
CVE-2004-2022
ActivePerl 5.8.x and Perl 5.6.1 (Windows) are affected by CVE-2004-2022, allowing a denial of service (crash) and potentially arbitrary code execution via a long argument to the system() command, due to a stack-based buffer overflow. The root cause is unclear whether the flaw lies in Perl or the ...
CVE-2004-2022
ActivePerl 5.8.x and others, and Larry Wall's Perl 5.6.1 and others, when running on Windows systems, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a long argument to the system command, which leads to a stack-based buffer overflow. NOTE: it is unclea...
CVE-2004-2286
Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow...
KLA10053 DoS vulnerability in ActivePerl
An integer overflow vulnerability was found in ActivePerl. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited at a point related to the duplication operator via a large multiplier. Original advisories...
ActivePerl 5.x / Cygwin 1.5.x - System Function Call Buffer Overflow
source: https://www.securityfocus.com/bid/10375/info ActiveState Perl and Perl for cygwin are both reported to be prone to a buffer overflow vulnerability. The issue is reported to exist due to a lack of sufficient bounds checking that is performed on data that is passed to a Perl system function...
ActivePerl 5.x / Larry Wall Perl 5.x - Duplication Operator Integer Overflow
source: https://www.securityfocus.com/bid/10380/info ActiveState Perl is reported to be prone to an integer overflow vulnerability. It is revealed through testing that other implementations are also vulnerable. The issue is reported to exist due to a lack of sufficient bounds checking that is...
ActivePerl 5.x Cygwin 1.5.x - System Function Call Buffer Overflow
ActivePerl 5.x Cygwin 1.5.x - System Function Call Buffer Overflow source: https://www.securityfocus.com/bid/10375/info ActiveState Perl and Perl for cygwin are both reported to be prone to a buffer overflow vulnerability. The issue is reported to exist due to a lack of sufficient bounds checking...
ActivePerl 5.x Larry Wall Perl 5.x - Duplication Operator Integer Overflow
ActivePerl 5.x Larry Wall Perl 5.x - Duplication Operator Integer Overflow source: https://www.securityfocus.com/bid/10380/info ActiveState Perl is reported to be prone to an integer overflow vulnerability. It is revealed through testing that other implementations are also vulnerable. The issue i...