Lucene search
K

33 matches found

0day.today
0day.today
added 2020/02/24 12:0 a.m.130 views

Apache James Server 2.3.2 - Insecure User Creation Arbitrary File Write Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Apache James Server 2.3.2 Insecure User Creation Arbitrary File Write", 'Description' = %q This module exploits a vulnerability that exists due t...

9.3CVSS8.1AI score0.68603EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/02/24 12:0 a.m.202 views

Apache James Server 2.3.2 - Insecure User Creation Arbitrary File Write (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Apache James Server 2.3.2 Insecure User Creation Arbitrary File Write", 'Description' = %q This module exploits a vulnerability that exists due t...

9.3CVSS7.4AI score0.68603EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/02/20 12:0 a.m.112 views

Apache James Server 2.3.2 Insecure User Creation / Arbitrary File Write

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Apache James Server 2.3.2 Insecure User Creation Arbitrary File Write", 'Description' = %q This module exploits a vulnerability that exists due t...

9.3CVSS0.68603EPSS
Exploits5
NVD
NVD
added 2016/06/07 2:6 p.m.10 views

CVE-2015-7611

Apache James Server 2.3.2, when configured with file-based user repositories, allows attackers to execute arbitrary system commands via unspecified vectors...

9.3CVSS8.3AI score0.68603EPSS
Exploits5References6
Cvelist
Cvelist
added 2016/06/07 2:0 p.m.30 views

CVE-2015-7611

Apache James Server 2.3.2, when configured with file-based user repositories, allows attackers to execute arbitrary system commands via unspecified vectors...

8.3AI score0.68603EPSS
Exploits5References6
CVE
CVE
added 2016/06/07 2:0 p.m.125 views

CVE-2015-7611

Apache James Server 2.3.2 with file-based user repositories is affected by CVE-2015-7611, a command-injection vulnerability that allows remote attackers to execute arbitrary system commands via insecure user-creation handling. The root cause is insufficient input validation during user creation, ...

9.3CVSS8.2AI score0.68603EPSS
Exploits5References6Affected Software1
CNVD
CNVD
added 2015/10/29 12:0 a.m.6 views

Apache James Server Command Execution Vulnerability

Apache James Server is the United States Apache Apache Software Foundation of a pure Java technology development of open source SMTP and POP3 mail server and NNTP news server. A command execution vulnerability exists in Apache James Server version 2.3.2. A remote attacker could exploit this...

9.3CVSS7.8AI score0.68603EPSS
Exploits5References1
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.67 views

Apache James Server 2.3.2 security vulnerability fixed

Severity: Important Vendor: The Apache Software Foundation Versions Affected: James Server 2.3.2 Description: Apache James Server 2.3.2 has security issue that can let a user execute arbitrary system command for servers configured with file based user repositories. Mitigation: 2.3.2 users should...

1.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/10/01 12:0 a.m.31 views

FreeBSD : james -- multiple vulnerabilities (be3069c9-67e7-11e5-9909-002590263bf5)

The Apache James Project reports : This release has many enhancements and bug fixes over the previous release. See the Release Notes for a detailed list of changes. Some of the earlier defects could turn a James mail server into an Open Relay and allow files to be written on disk. All users of...

9.3CVSS7.5AI score0.68603EPSS
Exploits5References5
seebug.org
seebug.org
added 2015/09/07 12:0 a.m.95 views

Apache James Server 2.3.2 - Remote Command Execution

Exploit Title: Apache James Server 2.3.2 Authenticated User Remote Command Execution Date: 16\10\2014 Vendor Homepage: http://james.apache.org/server/ Software Link: http://ftp.ps.pl/pub/apache/james/server/apache-james-2.3.2.zip 版本: Apache James Server 2.3.2 Tested on: Ubuntu, Debian...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2015/01/04 4:19 p.m.18 views

Apache-James-Server-2.3.2

Software Link: http://ftp.ps.pl/pub/apache/james/server/apache-james-2.3.2.zip Version: Apache James Server 2.3.2 Tested on: Ubuntu, Debian Info: This exploit works on default installation of Apache James Server 2.3.2 Info: Example paths that will automatically execute payload on some action:...

2.6AI score
Exploits0
exploitpack
exploitpack
added 2014/12/10 12:0 a.m.30 views

Apache James Server 2.3.2 - Remote Command Execution

Apache James Server 2.3.2 - Remote Command Execution !/usr/bin/python Exploit Title: Apache James Server 2.3.2 Authenticated User Remote Command Execution Date: 16\10\2014 Exploit Author: Jakub Palaczynski, Marcin Woloszyn, Maciej Grabiec Vendor Homepage: http://james.apache.org/server/ Software...

Exploits0
Exploit DB
Exploit DB
added 2014/12/10 12:0 a.m.160 views

Apache James Server 2.3.2 - Remote Command Execution

!/usr/bin/python Exploit Title: Apache James Server 2.3.2 Authenticated User Remote Command Execution Date: 16\10\2014 Exploit Author: Jakub Palaczynski, Marcin Woloszyn, Maciej Grabiec Vendor Homepage: http://james.apache.org/server/ Software Link:...

7.4AI score
Exploits0
Rows per page
Query Builder